123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848 |
- <?php
- /**
- * REST API: WP_REST_Application_Passwords_Controller class
- *
- * @package WordPress
- * @subpackage REST_API
- * @since 5.6.0
- */
- /**
- * Core class to access a user's application passwords via the REST API.
- *
- * @since 5.6.0
- *
- * @see WP_REST_Controller
- */
- class WP_REST_Application_Passwords_Controller extends WP_REST_Controller {
- /**
- * Application Passwords controller constructor.
- *
- * @since 5.6.0
- */
- public function __construct() {
- $this->namespace = 'wp/v2';
- $this->rest_base = 'users/(?P<user_id>(?:[\d]+|me))/application-passwords';
- }
- /**
- * Registers the REST API routes for the application passwords controller.
- *
- * @since 5.6.0
- */
- public function register_routes() {
- register_rest_route(
- $this->namespace,
- '/' . $this->rest_base,
- array(
- array(
- 'methods' => WP_REST_Server::READABLE,
- 'callback' => array( $this, 'get_items' ),
- 'permission_callback' => array( $this, 'get_items_permissions_check' ),
- 'args' => $this->get_collection_params(),
- ),
- array(
- 'methods' => WP_REST_Server::CREATABLE,
- 'callback' => array( $this, 'create_item' ),
- 'permission_callback' => array( $this, 'create_item_permissions_check' ),
- 'args' => $this->get_endpoint_args_for_item_schema(),
- ),
- array(
- 'methods' => WP_REST_Server::DELETABLE,
- 'callback' => array( $this, 'delete_items' ),
- 'permission_callback' => array( $this, 'delete_items_permissions_check' ),
- ),
- 'schema' => array( $this, 'get_public_item_schema' ),
- )
- );
- register_rest_route(
- $this->namespace,
- '/' . $this->rest_base . '/introspect',
- array(
- array(
- 'methods' => WP_REST_Server::READABLE,
- 'callback' => array( $this, 'get_current_item' ),
- 'permission_callback' => array( $this, 'get_current_item_permissions_check' ),
- 'args' => array(
- 'context' => $this->get_context_param( array( 'default' => 'view' ) ),
- ),
- ),
- 'schema' => array( $this, 'get_public_item_schema' ),
- )
- );
- register_rest_route(
- $this->namespace,
- '/' . $this->rest_base . '/(?P<uuid>[\w\-]+)',
- array(
- array(
- 'methods' => WP_REST_Server::READABLE,
- 'callback' => array( $this, 'get_item' ),
- 'permission_callback' => array( $this, 'get_item_permissions_check' ),
- 'args' => array(
- 'context' => $this->get_context_param( array( 'default' => 'view' ) ),
- ),
- ),
- array(
- 'methods' => WP_REST_Server::EDITABLE,
- 'callback' => array( $this, 'update_item' ),
- 'permission_callback' => array( $this, 'update_item_permissions_check' ),
- 'args' => $this->get_endpoint_args_for_item_schema( WP_REST_Server::EDITABLE ),
- ),
- array(
- 'methods' => WP_REST_Server::DELETABLE,
- 'callback' => array( $this, 'delete_item' ),
- 'permission_callback' => array( $this, 'delete_item_permissions_check' ),
- ),
- 'schema' => array( $this, 'get_public_item_schema' ),
- )
- );
- }
- /**
- * Checks if a given request has access to get application passwords.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has read access, WP_Error object otherwise.
- */
- public function get_items_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'list_app_passwords', $user->ID ) ) {
- return new WP_Error(
- 'rest_cannot_list_application_passwords',
- __( 'Sorry, you are not allowed to list application passwords for this user.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Retrieves a collection of application passwords.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function get_items( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $passwords = WP_Application_Passwords::get_user_application_passwords( $user->ID );
- $response = array();
- foreach ( $passwords as $password ) {
- $response[] = $this->prepare_response_for_collection(
- $this->prepare_item_for_response( $password, $request )
- );
- }
- return new WP_REST_Response( $response );
- }
- /**
- * Checks if a given request has access to get a specific application password.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has read access for the item, WP_Error object otherwise.
- */
- public function get_item_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'read_app_password', $user->ID, $request['uuid'] ) ) {
- return new WP_Error(
- 'rest_cannot_read_application_password',
- __( 'Sorry, you are not allowed to read this application password.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Retrieves one application password from the collection.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function get_item( $request ) {
- $password = $this->get_application_password( $request );
- if ( is_wp_error( $password ) ) {
- return $password;
- }
- return $this->prepare_item_for_response( $password, $request );
- }
- /**
- * Checks if a given request has access to create application passwords.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has access to create items, WP_Error object otherwise.
- */
- public function create_item_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'create_app_password', $user->ID ) ) {
- return new WP_Error(
- 'rest_cannot_create_application_passwords',
- __( 'Sorry, you are not allowed to create application passwords for this user.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Creates an application password.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function create_item( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $prepared = $this->prepare_item_for_database( $request );
- if ( is_wp_error( $prepared ) ) {
- return $prepared;
- }
- $created = WP_Application_Passwords::create_new_application_password( $user->ID, wp_slash( (array) $prepared ) );
- if ( is_wp_error( $created ) ) {
- return $created;
- }
- $password = $created[0];
- $item = WP_Application_Passwords::get_user_application_password( $user->ID, $created[1]['uuid'] );
- $item['new_password'] = WP_Application_Passwords::chunk_password( $password );
- $fields_update = $this->update_additional_fields_for_object( $item, $request );
- if ( is_wp_error( $fields_update ) ) {
- return $fields_update;
- }
- /**
- * Fires after a single application password is completely created or updated via the REST API.
- *
- * @since 5.6.0
- *
- * @param array $item Inserted or updated password item.
- * @param WP_REST_Request $request Request object.
- * @param bool $creating True when creating an application password, false when updating.
- */
- do_action( 'rest_after_insert_application_password', $item, $request, true );
- $request->set_param( 'context', 'edit' );
- $response = $this->prepare_item_for_response( $item, $request );
- $response->set_status( 201 );
- $response->header( 'Location', $response->get_links()['self'][0]['href'] );
- return $response;
- }
- /**
- * Checks if a given request has access to update application passwords.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has access to create items, WP_Error object otherwise.
- */
- public function update_item_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'edit_app_password', $user->ID, $request['uuid'] ) ) {
- return new WP_Error(
- 'rest_cannot_edit_application_password',
- __( 'Sorry, you are not allowed to edit this application password.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Updates an application password.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function update_item( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $item = $this->get_application_password( $request );
- if ( is_wp_error( $item ) ) {
- return $item;
- }
- $prepared = $this->prepare_item_for_database( $request );
- if ( is_wp_error( $prepared ) ) {
- return $prepared;
- }
- $saved = WP_Application_Passwords::update_application_password( $user->ID, $item['uuid'], wp_slash( (array) $prepared ) );
- if ( is_wp_error( $saved ) ) {
- return $saved;
- }
- $fields_update = $this->update_additional_fields_for_object( $item, $request );
- if ( is_wp_error( $fields_update ) ) {
- return $fields_update;
- }
- $item = WP_Application_Passwords::get_user_application_password( $user->ID, $item['uuid'] );
- /** This action is documented in wp-includes/rest-api/endpoints/class-wp-rest-application-passwords-controller.php */
- do_action( 'rest_after_insert_application_password', $item, $request, false );
- $request->set_param( 'context', 'edit' );
- return $this->prepare_item_for_response( $item, $request );
- }
- /**
- * Checks if a given request has access to delete all application passwords for a user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has access to delete the item, WP_Error object otherwise.
- */
- public function delete_items_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'delete_app_passwords', $user->ID ) ) {
- return new WP_Error(
- 'rest_cannot_delete_application_passwords',
- __( 'Sorry, you are not allowed to delete application passwords for this user.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Deletes all application passwords for a user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function delete_items( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $deleted = WP_Application_Passwords::delete_all_application_passwords( $user->ID );
- if ( is_wp_error( $deleted ) ) {
- return $deleted;
- }
- return new WP_REST_Response(
- array(
- 'deleted' => true,
- 'count' => $deleted,
- )
- );
- }
- /**
- * Checks if a given request has access to delete a specific application password for a user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has access to delete the item, WP_Error object otherwise.
- */
- public function delete_item_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'delete_app_password', $user->ID, $request['uuid'] ) ) {
- return new WP_Error(
- 'rest_cannot_delete_application_password',
- __( 'Sorry, you are not allowed to delete this application password.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Deletes an application password for a user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function delete_item( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $password = $this->get_application_password( $request );
- if ( is_wp_error( $password ) ) {
- return $password;
- }
- $request->set_param( 'context', 'edit' );
- $previous = $this->prepare_item_for_response( $password, $request );
- $deleted = WP_Application_Passwords::delete_application_password( $user->ID, $password['uuid'] );
- if ( is_wp_error( $deleted ) ) {
- return $deleted;
- }
- return new WP_REST_Response(
- array(
- 'deleted' => true,
- 'previous' => $previous->get_data(),
- )
- );
- }
- /**
- * Checks if a given request has access to get the currently used application password for a user.
- *
- * @since 5.7.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return true|WP_Error True if the request has read access for the item, WP_Error object otherwise.
- */
- public function get_current_item_permissions_check( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( get_current_user_id() !== $user->ID ) {
- return new WP_Error(
- 'rest_cannot_introspect_app_password_for_non_authenticated_user',
- __( 'The authenticated application password can only be introspected for the current user.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Retrieves the application password being currently used for authentication of a user.
- *
- * @since 5.7.0
- *
- * @param WP_REST_Request $request Full details about the request.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function get_current_item( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $uuid = rest_get_authenticated_app_password();
- if ( ! $uuid ) {
- return new WP_Error(
- 'rest_no_authenticated_app_password',
- __( 'Cannot introspect application password.' ),
- array( 'status' => 404 )
- );
- }
- $password = WP_Application_Passwords::get_user_application_password( $user->ID, $uuid );
- if ( ! $password ) {
- return new WP_Error(
- 'rest_application_password_not_found',
- __( 'Application password not found.' ),
- array( 'status' => 500 )
- );
- }
- return $this->prepare_item_for_response( $password, $request );
- }
- /**
- * Performs a permissions check for the request.
- *
- * @since 5.6.0
- * @deprecated 5.7.0 Use `edit_user` directly or one of the specific meta capabilities introduced in 5.7.0.
- *
- * @param WP_REST_Request $request
- * @return true|WP_Error
- */
- protected function do_permissions_check( $request ) {
- _deprecated_function( __METHOD__, '5.7.0' );
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- if ( ! current_user_can( 'edit_user', $user->ID ) ) {
- return new WP_Error(
- 'rest_cannot_manage_application_passwords',
- __( 'Sorry, you are not allowed to manage application passwords for this user.' ),
- array( 'status' => rest_authorization_required_code() )
- );
- }
- return true;
- }
- /**
- * Prepares an application password for a create or update operation.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request Request object.
- * @return object|WP_Error The prepared item, or WP_Error object on failure.
- */
- protected function prepare_item_for_database( $request ) {
- $prepared = (object) array(
- 'name' => $request['name'],
- );
- if ( $request['app_id'] && ! $request['uuid'] ) {
- $prepared->app_id = $request['app_id'];
- }
- /**
- * Filters an application password before it is inserted via the REST API.
- *
- * @since 5.6.0
- *
- * @param stdClass $prepared An object representing a single application password prepared for inserting or updating the database.
- * @param WP_REST_Request $request Request object.
- */
- return apply_filters( 'rest_pre_insert_application_password', $prepared, $request );
- }
- /**
- * Prepares the application password for the REST response.
- *
- * @since 5.6.0
- *
- * @param array $item WordPress representation of the item.
- * @param WP_REST_Request $request Request object.
- * @return WP_REST_Response|WP_Error Response object on success, or WP_Error object on failure.
- */
- public function prepare_item_for_response( $item, $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $fields = $this->get_fields_for_response( $request );
- $prepared = array(
- 'uuid' => $item['uuid'],
- 'app_id' => empty( $item['app_id'] ) ? '' : $item['app_id'],
- 'name' => $item['name'],
- 'created' => gmdate( 'Y-m-d\TH:i:s', $item['created'] ),
- 'last_used' => $item['last_used'] ? gmdate( 'Y-m-d\TH:i:s', $item['last_used'] ) : null,
- 'last_ip' => $item['last_ip'] ? $item['last_ip'] : null,
- );
- if ( isset( $item['new_password'] ) ) {
- $prepared['password'] = $item['new_password'];
- }
- $prepared = $this->add_additional_fields_to_object( $prepared, $request );
- $prepared = $this->filter_response_by_context( $prepared, $request['context'] );
- $response = new WP_REST_Response( $prepared );
- if ( rest_is_field_included( '_links', $fields ) || rest_is_field_included( '_embedded', $fields ) ) {
- $response->add_links( $this->prepare_links( $user, $item ) );
- }
- /**
- * Filters the REST API response for an application password.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Response $response The response object.
- * @param array $item The application password array.
- * @param WP_REST_Request $request The request object.
- */
- return apply_filters( 'rest_prepare_application_password', $response, $item, $request );
- }
- /**
- * Prepares links for the request.
- *
- * @since 5.6.0
- *
- * @param WP_User $user The requested user.
- * @param array $item The application password.
- * @return array The list of links.
- */
- protected function prepare_links( WP_User $user, $item ) {
- return array(
- 'self' => array(
- 'href' => rest_url(
- sprintf(
- '%s/users/%d/application-passwords/%s',
- $this->namespace,
- $user->ID,
- $item['uuid']
- )
- ),
- ),
- );
- }
- /**
- * Gets the requested user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request The request object.
- * @return WP_User|WP_Error The WordPress user associated with the request, or a WP_Error if none found.
- */
- protected function get_user( $request ) {
- if ( ! wp_is_application_passwords_available() ) {
- return new WP_Error(
- 'application_passwords_disabled',
- __( 'Application passwords are not available.' ),
- array( 'status' => 501 )
- );
- }
- $error = new WP_Error(
- 'rest_user_invalid_id',
- __( 'Invalid user ID.' ),
- array( 'status' => 404 )
- );
- $id = $request['user_id'];
- if ( 'me' === $id ) {
- if ( ! is_user_logged_in() ) {
- return new WP_Error(
- 'rest_not_logged_in',
- __( 'You are not currently logged in.' ),
- array( 'status' => 401 )
- );
- }
- $user = wp_get_current_user();
- } else {
- $id = (int) $id;
- if ( $id <= 0 ) {
- return $error;
- }
- $user = get_userdata( $id );
- }
- if ( empty( $user ) || ! $user->exists() ) {
- return $error;
- }
- if ( is_multisite() && ! user_can( $user->ID, 'manage_sites' ) && ! is_user_member_of_blog( $user->ID ) ) {
- return $error;
- }
- if ( ! wp_is_application_passwords_available_for_user( $user ) ) {
- return new WP_Error(
- 'application_passwords_disabled_for_user',
- __( 'Application passwords are not available for your account. Please contact the site administrator for assistance.' ),
- array( 'status' => 501 )
- );
- }
- return $user;
- }
- /**
- * Gets the requested application password for a user.
- *
- * @since 5.6.0
- *
- * @param WP_REST_Request $request The request object.
- * @return array|WP_Error The application password details if found, a WP_Error otherwise.
- */
- protected function get_application_password( $request ) {
- $user = $this->get_user( $request );
- if ( is_wp_error( $user ) ) {
- return $user;
- }
- $password = WP_Application_Passwords::get_user_application_password( $user->ID, $request['uuid'] );
- if ( ! $password ) {
- return new WP_Error(
- 'rest_application_password_not_found',
- __( 'Application password not found.' ),
- array( 'status' => 404 )
- );
- }
- return $password;
- }
- /**
- * Retrieves the query params for the collections.
- *
- * @since 5.6.0
- *
- * @return array Query parameters for the collection.
- */
- public function get_collection_params() {
- return array(
- 'context' => $this->get_context_param( array( 'default' => 'view' ) ),
- );
- }
- /**
- * Retrieves the application password's schema, conforming to JSON Schema.
- *
- * @since 5.6.0
- *
- * @return array Item schema data.
- */
- public function get_item_schema() {
- if ( $this->schema ) {
- return $this->add_additional_fields_schema( $this->schema );
- }
- $this->schema = array(
- '$schema' => 'http://json-schema.org/draft-04/schema#',
- 'title' => 'application-password',
- 'type' => 'object',
- 'properties' => array(
- 'uuid' => array(
- 'description' => __( 'The unique identifier for the application password.' ),
- 'type' => 'string',
- 'format' => 'uuid',
- 'context' => array( 'view', 'edit', 'embed' ),
- 'readonly' => true,
- ),
- 'app_id' => array(
- 'description' => __( 'A UUID provided by the application to uniquely identify it. It is recommended to use an UUID v5 with the URL or DNS namespace.' ),
- 'type' => 'string',
- 'format' => 'uuid',
- 'context' => array( 'view', 'edit', 'embed' ),
- ),
- 'name' => array(
- 'description' => __( 'The name of the application password.' ),
- 'type' => 'string',
- 'required' => true,
- 'context' => array( 'view', 'edit', 'embed' ),
- 'minLength' => 1,
- 'pattern' => '.*\S.*',
- ),
- 'password' => array(
- 'description' => __( 'The generated password. Only available after adding an application.' ),
- 'type' => 'string',
- 'context' => array( 'edit' ),
- 'readonly' => true,
- ),
- 'created' => array(
- 'description' => __( 'The GMT date the application password was created.' ),
- 'type' => 'string',
- 'format' => 'date-time',
- 'context' => array( 'view', 'edit' ),
- 'readonly' => true,
- ),
- 'last_used' => array(
- 'description' => __( 'The GMT date the application password was last used.' ),
- 'type' => array( 'string', 'null' ),
- 'format' => 'date-time',
- 'context' => array( 'view', 'edit' ),
- 'readonly' => true,
- ),
- 'last_ip' => array(
- 'description' => __( 'The IP address the application password was last used by.' ),
- 'type' => array( 'string', 'null' ),
- 'format' => 'ip',
- 'context' => array( 'view', 'edit' ),
- 'readonly' => true,
- ),
- ),
- );
- return $this->add_additional_fields_schema( $this->schema );
- }
- }
|