Add version 2.0.1 updates: Introduce filter to hide Test Jobs page, add filters documentation

soderlind · soderlind · commit eeb4c45e9c22 · 2025-10-14T01:17:19.000+02:00
- Added filter `redis_queue_show_test_jobs_page` to allow hiding the "Test Jobs" submenu/page in production environments.
- Created `docs/filters.md` to document all public plugin filters with usage examples.
- Implemented defensive checks to prevent access to the Test Jobs page when hidden by the filter.
- Updated version numbers in `readme.txt` and `redis-queue.php` to reflect the new release.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -4,6 +4,19 @@ All notable changes to this project will be documented in this file.
 
 The format is based on Keep a Changelog and adheres to Semantic Versioning.
 
+## [2.0.1] - 2025-10-14
+### Added
+- Filter `redis_queue_show_test_jobs_page` lets administrators (or site integrators) hide the "Test Jobs" admin submenu/page in production or restricted environments.
+- Documentation: New `docs/filters.md` reference listing all public plugin filters with signatures & examples.
+
+### Changed
+- Minor defensive check added to prevent direct access to the Test Jobs page when disabled by filter.
+
+### Notes
+- This is a non-breaking incremental release over 2.0.0 focused on admin customization.
+ - Added dedicated Filters Reference doc for easier extensibility.
+
+
 
 ## [2.0.0] - 2025-10-13
 ### Breaking Changes
diff --git a/docs/README.md b/docs/README.md
@@ -128,6 +128,7 @@ Potential future doc: `security-hardening.md` (advanced token rotation, audit ag
 | Overview & Root README | Feature overview, installation basics | [Root README](../README.md) |
 | Usage & Operations | Admin UI, job lifecycle, troubleshooting | [Usage](usage.md) |
 | Extending Jobs | Build custom job classes & best practices | [Extending Jobs](extending-jobs.md) |
+| Filters Reference | All available plugin filters (hooks) | [Filters](filters.md) |
 | REST API Reference | Endpoints, auth (scopes, rate limit), logging | [REST API](worker-rest-api.md) |
 | Scaling Strategies | Horizontal + segmentation + backpressure | [Scaling](scaling.md) |
 | Maintenance & Operations | Purging, stuck jobs, logs, DR | [Maintenance](maintenance.md) |
diff --git a/docs/filters.md b/docs/filters.md
@@ -0,0 +1,203 @@
+# Filters Reference
+
+This document lists all public WordPress filters exposed by the Redis Queue plugin (excluding third‑party library filters). Use these hooks to customize behaviour without modifying core plugin code.
+
+> Prefix: All filters start with `redis_queue_`.
+
+## Table of Contents
+- [UI / Admin](#ui--admin)
+- [Job Creation & Mapping](#job-creation--mapping)
+- [Job Retry & Backoff](#job-retry--backoff)
+- [Job Payload Validation](#job-payload-validation)
+- [REST API Token Scopes](#rest-api-token-scopes)
+
+---
+## UI / Admin
+### `redis_queue_show_test_jobs_page`
+Controls whether the "Test Jobs" submenu appears in the admin and whether the page can be accessed directly.
+
+| Type | Default | Since |
+|------|---------|-------|
+| bool  | `true` | 2.0.1 |
+
+Return `false` to hide the menu and block direct access (useful for production hardening).
+
+```php
+// In mu-plugin or theme functions.php
+add_filter( 'redis_queue_show_test_jobs_page', '__return_false' );
+```
+
+---
+## Job Creation & Mapping
+### `redis_queue_create_job`
+Allows creation of custom job instances for dynamic job types that are not part of the built‑in set (`email`, `image_processing`, `api_sync`).
+
+Signature:
+```php
+apply_filters( 'redis_queue_create_job', $job_or_null, string $job_type, array $payload );
+```
+- `$job_or_null` (mixed): Always `null` on input; return a `Queue_Job` instance to handle the type.
+- `$job_type` (string): Requested job type.
+- `$payload` (array): Raw payload passed by caller.
+
+Return: `\Soderlind\RedisQueue\Contracts\Queue_Job|null`.
+
+Example:
+```php
+add_filter( 'redis_queue_create_job', function( $job, $type, $payload ) {
+    if ( 'report_generation' !== $type ) {
+        return $job; // leave untouched
+    }
+    return new \MyPlugin\Jobs\Report_Generation_Job( $payload );
+}, 10, 3 );
+```
+
+### `redis_queue_job_classes`
+Extends or overrides the canonical mapping from simple job type identifiers (lowercase) to fully qualified job class names used during deserialization / processing by the `Job_Processor`.
+
+Signature:
+```php
+apply_filters( 'redis_queue_job_classes', array $map );
+```
+- `$map` (array): Base mapping like `['email' => Email_Job::class, ...]`.
+
+Return: Modified associative array.
+
+Example (add `report_generation`):
+```php
+add_filter( 'redis_queue_job_classes', function( $map ) {
+    $map['report_generation'] = \MyPlugin\Jobs\Report_Generation_Job::class;
+    return $map;
+});
+```
+
+---
+## Job Retry & Backoff
+### `redis_queue_should_retry_job`
+Determines if a failed job should be retried (only consulted if current attempts < max_attempts).
+
+Signature:
+```php
+apply_filters( 'redis_queue_should_retry_job', bool $should_retry, Queue_Job $job, ?\Exception $exception, int $attempt );
+```
+- `$should_retry` (bool): Default `true` after basic guards.
+- `$job` (Queue_Job): Job instance.
+- `$exception` (?Exception): The exception that caused failure or `null` when failure was non-exception based.
+- `$attempt` (int): Current attempt number (1-based) that just failed.
+
+Return: `bool` (retry or not).
+
+Example (disable retries on specific exception):
+```php
+add_filter( 'redis_queue_should_retry_job', function( $retry, $job, $exception, $attempt ) {
+    if ( $exception instanceof \MyPlugin\FatalRemoteAPIException ) {
+        return false; // don't bother retrying
+    }
+    return $retry;
+}, 10, 4 );
+```
+
+### `redis_queue_job_retry_delay`
+Adjusts delay (seconds) before a retry attempt is re-enqueued.
+
+Signature:
+```php
+apply_filters( 'redis_queue_job_retry_delay', int $delay, Queue_Job $job, int $attempt );
+```
+- `$delay` (int): Computed delay (configured backoff item or exponential fallback capped at 3600s).
+- `$job` (Queue_Job): Job instance.
+- `$attempt` (int): Attempt number that just failed.
+
+Return: New delay (int).
+
+Example (progressive jitter):
+```php
+add_filter( 'redis_queue_job_retry_delay', function( $delay, $job, $attempt ) {
+    return (int) ( $delay * ( 0.9 + mt_rand() / mt_getrandmax() * 0.2 ) );
+}, 10, 3 );
+```
+
+---
+## Job Payload Validation
+### `redis_queue_validate_job_payload`
+Override or augment validation of a job payload.
+
+Signature:
+```php
+apply_filters( 'redis_queue_validate_job_payload', bool $is_valid, array $payload, Queue_Job $job );
+```
+- `$is_valid` (bool): Default `true`.
+- `$payload` (array): Job payload.
+- `$job` (Queue_Job): Job instance.
+
+Return: `bool` (allow enqueue / continue processing).
+
+Example (require key):
+```php
+add_filter( 'redis_queue_validate_job_payload', function( $valid, $payload, $job ) {
+    if ( 'report_generation' === $job->get_job_type() && empty( $payload['report_id'] ) ) {
+        return false;
+    }
+    return $valid;
+}, 10, 3 );
+```
+
+---
+## REST API Token Scopes
+These filters control what endpoints a token with a restricted scope may access.
+
+### `redis_queue_token_allowed_routes`
+Defines the list of allowable REST routes for a non-`full` scope token before per-request evaluation.
+
+Signature:
+```php
+apply_filters( 'redis_queue_token_allowed_routes', array $routes, string $scope );
+```
+- `$routes` (array): Default `[ '/redis-queue/v1/workers/trigger' ]` when scope != `full`.
+- `$scope` (string): Token scope, e.g. `worker` or `full`.
+
+Return: Adjusted list of route paths.
+
+Example (allow stats endpoint):
+```php
+add_filter( 'redis_queue_token_allowed_routes', function( $routes, $scope ) {
+    if ( 'worker' === $scope ) {
+        $routes[] = '/redis-queue/v1/stats';
+    }
+    return $routes;
+}, 10, 2 );
+```
+
+### `redis_queue_token_scope_allow`
+Final gate to allow/deny a request for a token (after URL match). Use to implement dynamic rules (time windows, IP allowlists, etc.).
+
+Signature:
+```php
+apply_filters( 'redis_queue_token_scope_allow', bool $allowed, string $scope, WP_REST_Request $request );
+```
+- `$allowed` (bool): Result after earlier checks.
+- `$scope` (string): Token scope.
+- `$request` (WP_REST_Request): Full request object.
+
+Return: `bool` (permit request?).
+
+Example (block trigger outside office hours):
+```php
+add_filter( 'redis_queue_token_scope_allow', function( $allowed, $scope, $request ) {
+    if ( 'worker' === $scope ) {
+        $hour = (int) gmdate('G');
+        if ( $hour < 6 || $hour > 22 ) {
+            return false; // Outside allowed window
+        }
+    }
+    return $allowed;
+}, 10, 3 );
+```
+
+---
+## Notes
+- All filters follow standard WordPress priority & argument count conventions.
+- Always return the original value when not modifying behaviour to maintain chain integrity.
+- Avoid expensive operations inside hot-path filters (`job_retry_delay`, `should_retry_job`).
+
+Happy extending! 🚀
diff --git a/readme.txt b/readme.txt
@@ -5,7 +5,7 @@ Tags: redis, queue, background, jobs, performance
 Requires at least: 6.7
 Tested up to: 6.8
 Requires PHP: 8.3
-Stable tag: 2.0.0
+Stable tag: 2.0.1
 License: GPL v2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 
@@ -102,6 +102,12 @@ The plugin includes fallback mechanisms and graceful error handling. Jobs will f
 
 == Changelog ==
 
+= 2.0.1 =
+* Added: Filter `redis_queue_show_test_jobs_page` to optionally hide the Test Jobs admin page (useful on production).
+* Added: New documentation file `docs/filters.md` enumerating all available filters.
+* Changed: Defensive access guard when page is disabled.
+* Note: Non-breaking refinement over 2.0.0.
+
 = 2.0.0 =
 * **BREAKING CHANGES - Major version update**
 * Plugin renamed from "Redis Queue Demo" to "Redis Queue"
@@ -158,6 +164,9 @@ The plugin includes fallback mechanisms and graceful error handling. Jobs will f
 
 == Upgrade Notice ==
 
+= 2.0.1 =
+Adds filter to disable Test Jobs page in production and introduces a filters reference doc (`docs/filters.md`).
+
 = 2.0.0 =
 MAJOR BREAKING CHANGES: Plugin renamed to "Redis Queue". Namespace, function names, and hooks all changed. Review migration guide in CHANGELOG.md before upgrading. No automatic backward compatibility.
 
diff --git a/redis-queue.php b/redis-queue.php
@@ -3,7 +3,7 @@
  * Plugin Name:       Redis Queue
  * Plugin URI:        https://github.com/soderlind/redis-queue
  * Description:       Redis-backed prioritized, delayed & retryable background jobs for WordPress (workers, REST API, admin UI).
- * Version:           2.0.0
+ * Version:           2.0.1
  * Requires at least: 6.7
  * Requires PHP:      8.3
  * Author:            Per Soderlind
@@ -20,7 +20,7 @@
 }
 
 // Plugin version and requirements.
-define( 'REDIS_QUEUE_VERSION', '2.0.0' );
+define( 'REDIS_QUEUE_VERSION', '2.0.1' );
 define( 'REDIS_QUEUE_MIN_PHP', '8.3' );
 
 // Plugin file paths and URLs.
@@ -59,7 +59,7 @@ function redis_queue_migrate_options_v2() {
 		$old_key = 'redis_queue_demo_' . $suffix;
 		$new_key = 'redis_queue_' . $suffix;
 		$old_val = get_option( $old_key, null );
-		
+
 		// Only migrate if old value exists and new value doesn't exist.
 		if ( $old_val !== null && get_option( $new_key, null ) === null ) {
 			update_option( $new_key, $old_val );
@@ -83,7 +83,7 @@ function redis_queue_migrate_options_v2() {
 	Soderlind\RedisQueue\Core\Redis_Queue::get_instance();
 } else {
 	// Show error notice if dependencies are missing.
-	add_action( 'admin_notices', function() {
+	add_action( 'admin_notices', function () {
 		if ( current_user_can( 'activate_plugins' ) ) {
 			echo '<div class="notice notice-error"><p>';
 			echo '<strong>Redis Queue:</strong> ';
@@ -142,7 +142,7 @@ function redis_queue_process_jobs( $queue = 'default', $max_jobs = null ) {
 	if ( ! $instance || ! $instance->get_queue_manager() || ! $instance->get_job_processor() ) {
 		return false;
 	}
-	
+
 	// Create a synchronous worker and process jobs.
 	$worker = new \Soderlind\RedisQueue\Workers\Sync_Worker( $instance->get_queue_manager(), $instance->get_job_processor() );
 	return $worker->process_jobs( (array) $queue, $max_jobs );
diff --git a/src/Admin/Admin_Interface.php b/src/Admin/Admin_Interface.php
@@ -39,7 +39,10 @@ public function add_admin_menu() {
 		\add_menu_page( __( 'Redis Queue', 'redis-queue' ), __( 'Redis Queue', 'redis-queue' ), 'manage_options', 'redis-queue', [ $this, 'render_dashboard_page' ], 'dashicons-database-view', 30 );
 		\add_submenu_page( 'redis-queue', __( 'Dashboard', 'redis-queue' ), __( 'Dashboard', 'redis-queue' ), 'manage_options', 'redis-queue', [ $this, 'render_dashboard_page' ] );
 		\add_submenu_page( 'redis-queue', __( 'Jobs', 'redis-queue' ), __( 'Jobs', 'redis-queue' ), 'manage_options', 'redis-queue-jobs', [ $this, 'render_jobs_page' ] );
-		\add_submenu_page( 'redis-queue', __( 'Test Jobs', 'redis-queue' ), __( 'Test Jobs', 'redis-queue' ), 'manage_options', 'redis-queue-test', [ $this, 'render_test_page' ] );
+		// Allow integrators to hide the Test Jobs page (e.g., production hardening) via filter.
+		if ( \apply_filters( 'redis_queue_show_test_jobs_page', true ) ) {
+			\add_submenu_page( 'redis-queue', __( 'Test Jobs', 'redis-queue' ), __( 'Test Jobs', 'redis-queue' ), 'manage_options', 'redis-queue-test', [ $this, 'render_test_page' ] );
+		}
 		\add_submenu_page( 'redis-queue', __( 'Settings', 'redis-queue' ), __( 'Settings', 'redis-queue' ), 'manage_options', 'redis-queue-settings', [ $this, 'render_settings_page' ] );
 	}
 
@@ -104,6 +107,10 @@ public function render_jobs_page() {
 		include __DIR__ . '/partials/jobs-inline.php';
 	}
 	public function render_test_page() {
+		// Defensive: if hidden after initial menu build, block access.
+		if ( ! \apply_filters( 'redis_queue_show_test_jobs_page', true ) ) {
+			\wp_die( esc_html__( 'The Test Jobs page has been disabled by configuration.', 'redis-queue' ) );
+		}
 		include __DIR__ . '/partials/test-inline.php';
 	}
 	public function render_settings_page() {
