Update to last version (#131)

cbravobernal · web-flow · commit afaaabe89f24 · 2025-05-14T16:59:21.000+02:00
diff --git a/includes/fields/class-acf-field-flexible-content.php b/includes/fields/class-acf-field-flexible-content.php
@@ -1017,7 +1017,7 @@ public function get_layout( $name, $field ) {
 		public function delete_row( $i, $field, $post_id ) {
 
 			// vars
-			$value = acf_get_metadata( $post_id, $field['name'] );
+			$value = acf_get_metadata_by_field( $post_id, $field );
 
 			// bail early if no value
 			if ( ! is_array( $value ) || ! isset( $value[ $i ] ) ) {
@@ -1113,7 +1113,7 @@ public function update_value( $value, $post_id, $field ) {
 
 			// vars
 			$new_value = array();
-			$old_value = acf_get_metadata( $post_id, $field['name'] );
+			$old_value = acf_get_metadata_by_field( $post_id, $field );
 			$old_value = is_array( $old_value ) ? $old_value : array();
 
 			// update
@@ -1185,7 +1185,7 @@ public function update_value( $value, $post_id, $field ) {
 		public function delete_value( $post_id, $key, $field ) {
 
 			// vars
-			$old_value = acf_get_metadata( $post_id, $field['name'] );
+			$old_value = acf_get_metadata_by_field( $post_id, $field['name'] );
 			$old_value = is_array( $old_value ) ? $old_value : array();
 
 			// bail early if no rows or no sub fields
diff --git a/includes/fields/class-acf-field-repeater.php b/includes/fields/class-acf-field-repeater.php
@@ -142,8 +142,10 @@ public function pre_render_fields( $fields, $post_id = false ) {
 		 * @param array $field An array holding all the field's data.
 		 */
 		public function render_field( $field ) {
+			$_field              = $field;
 			$field['orig_name']  = $this->get_field_name_from_input_name( $field['name'] );
-			$field['total_rows'] = (int) acf_get_metadata( $this->post_id, $field['orig_name'] );
+			$_field['name']      = $field['orig_name'];
+			$field['total_rows'] = (int) acf_get_metadata_by_field( $this->post_id, $_field );
 			$table               = new ACF_Repeater_Table( $field );
 			$table->render();
 		}
@@ -610,7 +612,7 @@ public function update_value( $value, $post_id, $field ) {
 			}
 
 			$new_value = 0;
-			$old_value = (int) acf_get_metadata( $post_id, $field['name'] );
+			$old_value = (int) acf_get_metadata_by_field( $post_id, $field );
 
 			if ( ! empty( $field['pagination'] ) && did_action( 'acf/save_post' ) && ! isset( $_POST['_acf_form'] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Value not used.
 				$old_rows       = acf_get_value( $post_id, $field );
@@ -778,7 +780,7 @@ public function delete_field( $field ) {
 		 */
 		public function delete_value( $post_id, $key, $field ) {
 			// Get the old value from the database.
-			$old_value = (int) acf_get_metadata( $post_id, $field['name'] );
+			$old_value = (int) acf_get_metadata_by_field( $post_id, $field );
 
 			// Bail early if no rows or no subfields.
 			if ( ! $old_value || empty( $field['sub_fields'] ) ) {
diff --git a/includes/fields/class-acf-repeater-table.php b/includes/fields/class-acf-repeater-table.php
@@ -163,13 +163,14 @@ public function render() {
 			'data-min'        => $this->field['min'],
 			'data-max'        => $this->field['max'],
 			'data-pagination' => ! empty( $this->field['pagination'] ),
+			'data-prefix'     => $this->field['prefix'],
 		);
 
 		if ( $this->field['pagination'] ) {
 			$div['data-per_page']   = $this->field['rows_per_page'];
 			$div['data-total_rows'] = $this->field['total_rows'];
 			$div['data-orig_name']  = $this->field['orig_name'];
-			$div['data-nonce']      = wp_create_nonce( $this->field['key'] );
+			$div['data-nonce']      = wp_create_nonce( 'acf_field_' . $this->field['type'] . '_' . $this->field['key'] );
 		}
 
 		if ( empty( $this->value ) ) {
diff --git a/includes/forms/form-front.php b/includes/forms/form-front.php
@@ -8,28 +8,39 @@
 	#[AllowDynamicProperties]
 	class acf_form_front {
 
-		/** @var array An array of registered form settings */
+		/**
+		 * An array of registered form settings.
+		 *
+		 * @var array
+		 */
 		private $forms = array();
 
-		/** @var array An array of default fields */
+		/**
+		 * An array of default fields.
+		 *
+		 * @var array
+		 */
 		public $fields = array();
 
+		/**
+		 * Constructs the class.
+		 *
+		 * @since ACF 5.0.0
+		 */
+		public function __construct() {
+			add_action( 'acf/validate_save_post', array( $this, 'validate_save_post' ), 1 );
+			add_filter( 'acf/pre_save_post', array( $this, 'pre_save_post' ), 5, 2 );
+		}
 
 		/**
-		 * This function will setup the class functionality
+		 * Returns fields used by frontend forms.
 		 *
-		 * @type    function
-		 * @date    5/03/2014
-		 * @since   ACF 5.0.0
+		 * @since SCF 6.5
 		 *
-		 * @param   n/a
-		 * @return  n/a
+		 * @return array
 		 */
-		function __construct() {
-
-			// vars
+		public function get_default_fields(): array {
 			$this->fields = array(
-
 				'_post_title'     => array(
 					'prefix'   => 'acf',
 					'name'     => '_post_title',
@@ -56,19 +67,13 @@ function __construct() {
 					'value'   => '',
 					'wrapper' => array( 'style' => 'display:none !important;' ),
 				),
-
 			);
 
-			// actions
-			add_action( 'acf/validate_save_post', array( $this, 'validate_save_post' ), 1 );
-
-			// filters
-			add_filter( 'acf/pre_save_post', array( $this, 'pre_save_post' ), 5, 2 );
+			return $this->fields;
 		}
 
-
 		/**
-		 * description
+		 * Validates form arguments and applies defaults.
 		 *
 		 * @type    function
 		 * @date    28/2/17
@@ -183,6 +188,15 @@ function get_form( $id = '' ) {
 			return $this->forms[ $id ];
 		}
 
+		/**
+		 * Returns all registered forms.
+		 *
+		 * @type    function
+		 * @date    28/2/17
+		 * @since   ACF 5.5.8
+		 *
+		 * @return forms (array)
+		 */
 		function get_forms() {
 			return $this->forms;
 		}
@@ -200,7 +214,7 @@ function get_forms() {
 		function validate_save_post() {
 
 			// register field if isset in $_POST
-			foreach ( $this->fields as $k => $field ) {
+			foreach ( $this->get_default_fields() as $k => $field ) {
 
 				// bail early if no in $_POST
 				if ( ! isset( $_POST['acf'][ $k ] ) ) { // phpcs:ignore WordPress.Security.NonceVerification.Missing -- Verified elsewhere.
@@ -444,7 +458,7 @@ function render_form( $args = array() ) {
 			acf_update_setting( 'uploader', $args['uploader'] );
 
 			// Register local fields.
-			foreach ( $this->fields as $k => $field ) {
+			foreach ( $this->get_default_fields() as $k => $field ) {
 				acf_add_local_field( $field );
 			}
 
@@ -513,9 +527,9 @@ function render_form( $args = array() ) {
 
 			// display form
 			if ( $args['form'] ) : ?>
-		<form <?php echo acf_esc_attrs( $args['form_attributes'] ); ?>>
+				<form <?php echo acf_esc_attrs( $args['form_attributes'] ); ?>>
 				<?php
-		endif;
+			endif;
 
 			// Render hidde form data.
 			acf_form_data(
@@ -533,12 +547,12 @@ function render_form( $args = array() ) {
 				<?php echo $args['html_after_fields']; ?><?php //phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- designed to contain potentially unsafe HTML, set by developers. ?>
 			</div>
 			<?php if ( $args['form'] ) : ?>
-			<div class="acf-form-submit">
-				<?php printf( $args['html_submit_button'], $args['submit_value'] ); ?><?php //phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- designed to contain potentially unsafe HTML, set by developers. ?>
-				<?php echo $args['html_submit_spinner']; ?><?php //phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- designed to contain potentially unsafe HTML, set by developers. ?>
-			</div>
-		</form>
-		<?php endif;
+				<div class="acf-form-submit">
+					<?php printf( $args['html_submit_button'], $args['submit_value'] ); ?><?php //phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- designed to contain potentially unsafe HTML, set by developers. ?>
+					<?php echo $args['html_submit_spinner']; ?><?php //phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- designed to contain potentially unsafe HTML, set by developers. ?>
+				</div>
+				</form>
+			<?php endif;
 		}
 	}
 
diff --git a/includes/validation.php b/includes/validation.php
@@ -131,13 +131,19 @@ public function reset_errors() {
 		 */
 		public function ajax_validate_save_post() {
 			if ( ! acf_verify_ajax() ) {
+				if ( empty( $_REQUEST['nonce'] ) ) {
+					$nonce_error = __( 'SCF was unable to perform validation because no nonce was received by the server.', 'secure-custom-fields' );
+				} else {
+					$nonce_error = __( 'SCF was unable to perform validation because the provided nonce failed verification.', 'secure-custom-fields' );
+				}
+
 				wp_send_json_success(
 					array(
 						'valid'  => 0,
 						'errors' => array(
 							array(
 								'input'   => false,
-								'message' => __( 'ACF was unable to perform validation due to an invalid security nonce being provided.', 'secure-custom-fields' ),
+								'message' => __( 'SCF was unable to perform validation due to an invalid security nonce being provided.', 'secure-custom-fields' ),
 							),
 						),
 					)
