<div class="gmail_quote">On 7 January 2011 13:06, Daniel Tara <span dir="ltr"><<a href="mailto:contact@onedesigns.com">contact@onedesigns.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">Very well, I have bundled the options in a single registered setting and prefixed it. Tested and working.</span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"> </span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">Hope this is now the ultimate article in this area </span><span style="font-size:11.0pt;font-family:Wingdings;color:#1F497D">J</span><span style="font-size:11.0pt;color:#1F497D"></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"> </span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">kidding…</span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"> </span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D">Daniel</span></p><p class="MsoNormal"><span style="font-size:11.0pt;color:#1F497D"> </span></p><p class="MsoNormal"><b><br></b></p></div></div></blockquote>
<div><br></div><div><br></div><div>Hi Daniel</div><div>I've left some comments on the article, because your child theme breaks WordPress! </div><div>You should prefix all variables and functions that are in global scope with your unique prefix to avoid clashing with WordPress or any other themes/plugins. In this case it was the $cat used in your loop.</div>
<div><br></div><div>Secondly, I wouldn't do the aggressive no-html filtering on the footer copyright and intro text. These are being entered by a logged in user with rights to modify theme options. If they wanted to, they could do much harm without resorting to XSS. </div>
<div><br></div><div>Thirdly you still have 'manage_options' as the capability required to access the options page instead of 'edit_theme_options'.</div><div><br></div><div><br></div><meta http-equiv="content-type" content="text/html; charset=utf-8"></div>
Mike<br>-- <br>Mike Little<br><a href="http://zed1.com/">http://zed1.com/</a><br><br>