Fix templates (#175)

* Fix grammar

* Fix rendering logo

* Fix saving objects with html

* Fix warnings

* Fix logo without a custom logo

* Fix warning

* Fix saving content

* Add feature to allow admins to edit user accounts

* Update readme

Author: superdav42

inc/class-wp-ultimo.php

@@ -603,6 +603,7 @@ function () {
 		 * Now it is native, but needs to be activated on Multisite Ultimate settings.
 		 */
 		\WP_Ultimo\Compat\Multiple_Accounts_Compat::get_instance();
+		\WP_Ultimo\Compat\Edit_Users_Compat::get_instance();
 
 		/*
 		 * Network Admin Widgets

inc/compat/class-edit-users-compat.php

@@ -0,0 +1,116 @@
+<?php
+/**
+ * Adds support to for site owners to edit user accounts for users on their site.
+ *
+ * WordPress, even in multisite mode, has only one User database table.
+ * This can cause problems in a WaaS environment.
+ *
+ * A site owner with administrator role wants to edit the display name of a subscriber.
+ * In the default Multisite only super admins can edit user accounts.
+ * This makes it possible for Admins to edit users in their own sites.
+ *
+ * @package WP_Ultimo
+ * @subpackage Compat/Edit_Users_Compat
+ * @since 2.4.4
+ */
+
+namespace WP_Ultimo\Compat;
+
+class Edit_Users_Compat {
+
+	use \WP_Ultimo\Traits\Singleton;
+
+	public function init(): void {
+		// Add the settings to enable or disable this feature.
+		add_action('wu_settings_login', [$this, 'add_settings'], 10);
+
+		if ($this->should_load()) {
+			// Apply the update_users_caps function to the 'map_meta_cap' filter.
+			add_filter('map_meta_cap', [$this, 'update_users_caps'], 1, 4);
+
+			// Add a filter to enable editing any user configuration.
+			add_filter('enable_edit_any_user_configuration', '__return_true', 15);
+		}
+	}
+
+	/**
+	 * Allows subsite administrators to edit users in a WordPress Multisite network.
+	 *
+	 * In a WordPress 3.x Network, the Super Admin role is the only role allowed to edit users.
+	 *
+	 * @param array  $caps    The user's capabilities.
+	 * @param string $cap     The capability being checked.
+	 * @param int    $user_id The user ID.
+	 * @param mixed  $args    Additional arguments.
+	 *
+	 * @return array Modified user capabilities.
+	 */
+	function update_users_caps($caps, $cap, $user_id, $args) {
+		foreach ($caps as $key => $capability) {
+			if ('do_not_allow' !== $capability) {
+				continue;
+			}
+
+			switch ( $cap ) {
+				case 'edit_user':
+					// Editing a user profile.
+					if (empty($args[0]) || is_super_admin($args[0])) {
+						// Trying to edit a super admin while not being a super admin.
+						$caps[] = 'do_not_allow';
+					} elseif ( ! is_user_member_of_blog($args[0], get_current_blog_id()) || ! is_user_member_of_blog($user_id, get_current_blog_id())) {
+						// Editing user and edited user aren't members of the same blog.
+						$caps[] = 'do_not_allow';
+					} else {
+						$caps[ $key ] = 'edit_users';
+					}
+
+					break;
+				case 'edit_users':
+					$caps[ $key ] = 'edit_users';
+					break;
+				case 'delete_user':
+				case 'delete_users':
+					$caps[ $key ] = 'delete_users';
+					break;
+				case 'create_users':
+					$caps[ $key ] = $cap;
+					break;
+			}
+		}
+
+		return $caps;
+	}
+
+	/**
+	 * Allow plugin developers to disable this functionality to prevent compatibility issues.
+	 *
+	 * @since 2.0.0
+	 *
+	 * @return boolean
+	 */
+	public function should_load() {
+
+		return apply_filters('wu_should_load_edit_user_support', wu_get_setting('enable_edit_users', false));
+	}
+
+	/**
+	 * Add edit user setting to enable or disable this feature.
+	 *
+	 * @since 2.0.0
+	 *
+	 * @return void.
+	 */
+	public function add_settings(): void {
+
+		wu_register_settings_field(
+			'login-and-registration',
+			'enable_edit_users',
+			[
+				'title'   => __('Enable Edit User Capability', 'multisite-ultimate'),
+				'desc'    => __('Allow site owners to edit the user accounts of users on their own site.', 'multisite-ultimate'),
+				'type'    => 'toggle',
+				'default' => 0,
+			]
+		);
+	}
+}

inc/helpers/class-validator.php

@@ -73,7 +73,7 @@ public function __construct() {
 				'required_without' => $field_required_message,
 				'required_with'    => $field_required_message,
 				// translators: %s is the email field identifier
-				'email'            => sprintf(__('The %s is not valid email', 'multisite-ultimate'), ':attribute'),
+				'email'            => sprintf(__('The %s is not a valid email', 'multisite-ultimate'), ':attribute'),
 				// translators: 1st %s is the field name; 2nd is the allowed value
 				'min'              => sprintf(__('The %1$s minimum is %2$s', 'multisite-ultimate'), ':attribute', ':min'),
 				// translators: 1st %s is the field name; 2nd is the allowed value

inc/invoices/class-invoice.php

@@ -97,6 +97,7 @@ private function pdf_setup(): void {
 				'tempDir'          => get_temp_dir(),
 			]
 		);
+		$this->printer->curlFollowLocation = true;
 
 		$this->printer->setDefaultFont($this->font);
 

inc/models/class-post-base-model.php

@@ -96,6 +96,20 @@ class Post_Base_Model extends Base_Model {
 	 */
 	protected $query_class = \WP_Ultimo\Database\Posts\Post_Query::class;
 
+
+	/**
+	 * @return $this
+	 */
+	public function load_attributes_from_post() {
+		parent::load_attributes_from_post();
+
+		if (isset($_POST['content'])) { // phpcs:ignore WordPress.Security.NonceVerification
+			$this->set_content(sanitize_post_field('content', wp_unslash($_POST['content']), $this->get_id(), 'db')); // phpcs:ignore WordPress.Security.ValidatedSanitizedInput.InputNotSanitized, WordPress.Security.NonceVerification
+		}
+
+		return $this;
+	}
+
 	/**
 	 * Get author ID.
 	 *

inc/ui/class-checkout-element.php

@@ -290,7 +290,7 @@ public function output_thank_you($atts, $content = null) {
 
 		$checkout_form = wu_get_checkout_form_by_slug($slug);
 
-		$atts = $checkout_form->get_meta('wu_thank_you_settings');
+		$atts = $checkout_form->get_meta('wu_thank_you_settings', []);
 
 		$atts['checkout_form'] = $checkout_form;
 

readme.txt

@@ -229,6 +229,11 @@ We recommend running this in a staging environment before updating your producti
 
 == Changelog ==
 
+Version [2.4.4] - Released on 2025-08-XX
+- Fixed: Saving email templates without stripping html
+- New: Option to allow site owners to edit users on their site
+- Fixed: Invoices not loading when logo is not set
+
 Version [2.4.3] - Released on 2025-08-15
 - Fixed: Bug in Slim SEO plugin
 - New: Addon Marketplace

views/email/widget-placeholders.php

@@ -40,7 +40,7 @@
 
 						<td class="wu-align-left wu-text-xs">
 
-							<span :id="'payload_event_name_' + placeholder.placeholder" class="wu-rounded-sm wu-text-xs"><?php echo esc_html(str_replace(['Id', 'Url'], ['ID', 'URL'], $placeholder['name'])); ?></span>
+							<span :id="'payload_event_name_' + placeholder.placeholder" class="wu-rounded-sm wu-text-xs"><?php echo esc_html(str_replace(['Id', 'Url'], ['ID', 'URL'], $placeholder['name'] ?? '')); ?></span>
 
 						</td>
 

views/invoice/template.php

@@ -4,7 +4,7 @@
  *
  * @since 2.0.0
  */
-defined( 'ABSPATH' ) || exit;
+defined('ABSPATH') || exit;
 
 $has_tax_included = false;
 // Inline styles for invoice template - required for PDF generation and email formatting.
@@ -139,16 +139,21 @@
 				<table>
 					<tr>
 						<td class="title">
-							<?php if ($use_custom_logo && $custom_logo) :
-								$logo_path = get_attached_file($custom_logo);
-								$logo_data = base64_encode(file_get_contents($logo_path));
-								$logo_mime = mime_content_type($logo_path); ?>
-								<img style="max-width:280px; width:auto; max-height:70px;" src="data:<?php echo esc_attr($logo_mime); ?>;base64,<?php echo $logo_data; ?>" alt="<?php echo esc_attr($site_name); ?>">
-							<?php else : 
-								$logo_url = get_network_option(null, 'site_logo');
-								$logo_data = base64_encode(file_get_contents($logo_url));
-								$logo_mime = mime_content_type($logo_url); ?>
-								<img style="max-width:280px; width:auto; max-height:70px;" src="data:<?php echo esc_attr($logo_mime); ?>;base64,<?php echo $logo_data; ?>" alt="<?php echo esc_attr($site_name); ?>">
+							<?php if ($use_custom_logo && $custom_logo) : ?>
+								<?php
+								echo (wp_get_attachment_image(
+									$custom_logo,
+									'full',
+									false,
+									array(
+										'loading'  => false,
+										'decoding' => false,
+										'style'    => 'width: 100px; height: auto;',
+									)
+								));
+								?>
+							<?php else : ?>
+								<img width="100" src="<?php echo esc_attr($logo_url); ?>" alt="<?php echo esc_attr(get_network_option(null, 'site_name')); ?>">
 							<?php endif; ?>
 						</td>