WP_Customize_Manager::get_allowed_urls PHP Method

WP_Customize_Manager Class Documentation Usage Examples Of WP_Customize_Manager::get_allowed_urls Show file Open project: johnpbloch/wordpress

get_allowed_urls() public method

If the front end and the admin are served from the same domain, load the preview over ssl if the Customizer is being loaded over ssl. This avoids insecure content warnings. This is not attempted if the admin and front end are on different domains to avoid the case where the front end doesn't have ssl certs. Domain mapping plugins can allow other urls in these conditions using the customize_allowed_urls filter.
Since: 4.7.0
public get_allowed_urls ( ) 
    public function get_allowed_urls()
    {
        $allowed_urls = array(home_url('/'));
        if (is_ssl() && !$this->is_cross_domain()) {
            $allowed_urls[] = home_url('/', 'https');
        }
        /**
         * Filters the list of URLs allowed to be clicked and followed in the Customizer preview.
         *
         * @since 3.4.0
         *
         * @param array $allowed_urls An array of allowed URLs.
         */
        $allowed_urls = array_unique(apply_filters('customize_allowed_urls', $allowed_urls));
        return $allowed_urls;
    }

Usage Example

Example #1
0
 /**
  * Test WP_Customize_Manager::get_allowed_urls().
  *
  * @ticket 30937
  * @covers WP_Customize_Manager::get_allowed_urls()
  */
 function test_get_allowed_urls()
 {
     $wp_customize = new WP_Customize_Manager();
     $this->assertFalse(is_ssl());
     $this->assertFalse($wp_customize->is_cross_domain());
     $allowed = $wp_customize->get_allowed_urls();
     $this->assertEquals($allowed, array(home_url('/', 'http')));
     add_filter('customize_allowed_urls', array($this, 'filter_customize_allowed_urls'));
     $allowed = $wp_customize->get_allowed_urls();
     $this->assertEqualSets($allowed, array('http://headless.example.com/', home_url('/', 'http')));
 }
WP_Customize_Manager
__construct
_cmp_priority
_filter_revision_post_has_changed
_publish_changeset_values
_render_custom_logo_partial
_sanitize_background_setting
_sanitize_header_textcolor
_save_starter_content_changeset
_validate_external_header_video
_validate_header_video
add_control
add_dynamic_settings
add_panel
add_section
add_setting
add_state_query_params
after_setup_theme
changeset_data
changeset_post_id
changeset_uuid
containers
controls
current_theme
customize_pane_settings
customize_preview_base
customize_preview_html5
customize_preview_init
customize_preview_loading_style
customize_preview_override_404_status
customize_preview_settings
customize_preview_signature
doing_ajax
enqueue_control_scripts
export_header_video_settings
filter_iframe_security_headers
find_changeset_post_id
get_allowed_urls
get_autofocus
get_changeset_post_data
get_control
get_document_title_template
get_messenger_channel
get_nonces
get_panel
get_preview_url
get_previewable_devices
get_return_url
get_section
get_setting
get_stylesheet
get_stylesheet_root
get_template
get_template_root
has_published_pages
import_theme_starter_content
is_cross_domain
is_ios
is_preview
is_theme_active
panels
post_value
prepare_controls
prepare_setting_validity_for_js
refresh_nonces
register_control_type
register_controls
register_dynamic_settings
register_panel_type
register_section_type
remove_control
remove_frameless_preview_messenger_channel
remove_panel
remove_preview_signature
remove_section
remove_setting
render_control_templates
render_panel_templates
render_section_templates
save
save_changeset_post
sections
set_autofocus
set_post_value
set_preview_url
set_return_url
settings
setup_theme
start_previewing_theme
stop_previewing_theme
theme
unsanitized_post_values
update_stashed_theme_mod_settings
validate_setting_values
wp_die
wp_die_handler
wp_loaded
wp_redirect_status