Adds AI Settings Screen #10904
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,102 @@ | ||
| <?php | ||
| /** | ||
| * AI Services settings administration panel. | ||
| * | ||
| * @package WordPress | ||
| * @subpackage Administration | ||
| * @since 7.0.0 | ||
| */ | ||
|
|
||
| /** WordPress Administration Bootstrap */ | ||
| require_once __DIR__ . '/admin.php'; | ||
|
|
||
| if ( ! current_user_can( 'manage_options' ) ) { | ||
| wp_die( __( 'Sorry, you are not allowed to manage options for this site.' ) ); | ||
| } | ||
|
|
||
| // Used in the HTML title tag. | ||
| $title = __( 'AI Services Settings' ); | ||
| $parent_file = 'options-general.php'; | ||
|
|
||
| $credentials_manager = $GLOBALS['wp_ai_client_credentials_manager']; | ||
|
|
||
| $cloud_providers = $credentials_manager->get_all_cloud_providers_metadata(); | ||
|
|
||
| $settings_section = 'wp-ai-client-provider-credentials'; | ||
|
|
||
| add_settings_section( | ||
| $settings_section, | ||
| '', | ||
| static function () { | ||
| ?> | ||
| <p class="description"> | ||
| <?php _e( 'Paste your API credentials for one or more AI providers you would like to use throughout your site.' ); ?> | ||
| </p> | ||
| <?php | ||
| }, | ||
| 'ai' | ||
| ); | ||
|
|
||
| foreach ( $cloud_providers as $provider_metadata ) { | ||
| $provider_id = $provider_metadata->getId(); | ||
| $provider_name = $provider_metadata->getName(); | ||
| $provider_credentials_url = $provider_metadata->getCredentialsUrl(); | ||
|
|
||
| $field_id = 'wp-ai-client-provider-api-key-' . $provider_id; | ||
| $field_args = array( | ||
| 'type' => 'password', | ||
| 'label_for' => $field_id, | ||
| 'id' => $field_id, | ||
| 'name' => WP_AI_Client_Credentials_Manager::OPTION_PROVIDER_CREDENTIALS . '[' . $provider_id . ']', | ||
| ); | ||
| if ( $provider_credentials_url ) { | ||
| $field_args['description'] = sprintf( | ||
| /* translators: 1: AI provider name, 2: URL to the provider's API credentials page. */ | ||
| __( 'Create and manage your %1$s API keys in the <a href="%2$s" target="_blank" rel="noopener noreferrer">%1$s account settings<span class="screen-reader-text"> (opens in a new tab)</span></a>.' ), | ||
| $provider_name, | ||
| esc_url( $provider_credentials_url ) | ||
| ); | ||
| } | ||
|
|
||
| add_settings_field( | ||
| $field_id, | ||
| $provider_name, | ||
| 'wp_ai_client_render_credential_field', | ||
| 'ai', | ||
| $settings_section, | ||
| $field_args | ||
| ); | ||
| } | ||
|
|
||
| $ai_help = '<p>' . __( 'This screen allows you to configure API credentials for AI service providers. These credentials are used by AI-powered features throughout your site.' ) . '</p>'; | ||
| $ai_help .= '<p>' . __( 'You must click the Save Changes button at the bottom of the screen for new settings to take effect.' ) . '</p>'; | ||
|
|
||
| get_current_screen()->add_help_tab( | ||
| array( | ||
| 'id' => 'overview', | ||
| 'title' => __( 'Overview' ), | ||
| 'content' => $ai_help, | ||
| ) | ||
| ); | ||
|
|
||
| get_current_screen()->set_help_sidebar( | ||
| '<p><strong>' . __( 'For more information:' ) . '</strong></p>' . | ||
| '<p>' . __( '<a href="https://wordpress.org/support/forums/">Support forums</a>' ) . '</p>' | ||
| ); | ||
|
|
||
| require_once ABSPATH . 'wp-admin/admin-header.php'; | ||
|
|
||
| ?> | ||
|
|
||
| <div class="wrap"> | ||
| <h1><?php echo esc_html( $title ); ?></h1> | ||
|
|
||
| <form action="options.php" method="post"> | ||
| <?php settings_fields( 'ai' ); ?> | ||
| <?php do_settings_sections( 'ai' ); ?> | ||
| <?php submit_button(); ?> | ||
| </form> | ||
|
|
||
| </div> | ||
|
|
||
| <?php require_once ABSPATH . 'wp-admin/admin-footer.php'; ?> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -32,3 +32,72 @@ | |
| function wp_ai_client_prompt( $prompt = null ) { | ||
| return new WP_AI_Client_Prompt_Builder( AiClient::defaultRegistry(), $prompt ); | ||
| } | ||
|
|
||
| /** | ||
| * Renders a credential input field for the AI Services settings page. | ||
| * | ||
| * @since 7.0.0 | ||
| * @access private | ||
| * | ||
| * @param array $args { | ||
| * Field arguments set up during add_settings_field(). | ||
| * | ||
| * @type string $type Input type. Default 'text'. | ||
| * @type string $id Field ID attribute. | ||
| * @type string $name Field name attribute, may include array notation. | ||
| * @type string $description Optional. Field description HTML. | ||
| * } | ||
| */ | ||
| function wp_ai_client_render_credential_field( $args ) { | ||
| $type = isset( $args['type'] ) ? $args['type'] : 'text'; | ||
| $id = isset( $args['id'] ) ? $args['id'] : ''; | ||
| $name = isset( $args['name'] ) ? $args['name'] : ''; | ||
| $description = isset( $args['description'] ) ? $args['description'] : ''; | ||
| $description_id = $id . '_description'; | ||
|
|
||
| if ( str_contains( $name, '[' ) ) { | ||
| $parts = explode( '[', $name, 2 ); | ||
| $option = get_option( $parts[0] ); | ||
| $subkey = trim( $parts[1], ']' ); | ||
| if ( is_array( $option ) && isset( $option[ $subkey ] ) && is_string( $option[ $subkey ] ) ) { | ||
| $value = $option[ $subkey ]; | ||
| } else { | ||
| $value = ''; | ||
| } | ||
| } else { | ||
| $option = get_option( $name ); | ||
| $value = is_string( $option ) ? $option : ''; | ||
| } | ||
|
|
||
| ?> | ||
| <input | ||
| type="<?php echo esc_attr( $type ); ?>" | ||
| id="<?php echo esc_attr( $id ); ?>" | ||
| name="<?php echo esc_attr( $name ); ?>" | ||
| value="<?php echo esc_attr( $value ); ?>" | ||
|
There was a problem hiding this comment. Something we just fixed in ClassifAI that came in from a security review was to ensure credentials (like API keys) were obfuscated prior to rendering in our settings screens. While I know this will render as a password input, you can still easily inspect the source and get the value of the input. I also realize only those with the I do think this is an edge case so not saying it needs to be changed, just fresh on my mind as I just adjusted this behavior myself a few days ago :) |
||
| class="regular-text" | ||
| <?php echo $description ? 'aria-describedby="' . esc_attr( $description_id ) . '"' : ''; ?> | ||
| > | ||
| <?php | ||
|
|
||
| if ( $description ) { | ||
| $allowed_html = array( | ||
| 'a' => array( | ||
| 'class' => array(), | ||
| 'href' => array(), | ||
| 'target' => array(), | ||
| 'rel' => array(), | ||
| ), | ||
| 'strong' => array(), | ||
| 'em' => array(), | ||
| 'span' => array( | ||
| 'class' => array(), | ||
| ), | ||
| ); | ||
| ?> | ||
| <p id="<?php echo esc_attr( $description_id ); ?>" class="description"> | ||
| <?php echo wp_kses( $description, $allowed_html ); ?> | ||
| </p> | ||
| <?php | ||
| } | ||
| } | ||
Oops, something went wrong.
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There's a chance both
$idand$nameare empty. Might be better to not render these attributes in that case instead of rendering them as empty attributes