[theme-reviewers] Article on how to create a Theme Options Page for WordPress
Mike Little
wordpress at zed1.com
Thu Jan 13 16:58:08 UTC 2011
On 7 January 2011 13:06, Daniel Tara <contact at onedesigns.com> wrote:
> Very well, I have bundled the options in a single registered setting and
> prefixed it. Tested and working.
>
>
>
> Hope this is now the ultimate article in this area J
>
>
>
> kidding…
>
>
>
> Daniel
>
>
>
> *
> *
>
Hi Daniel
I've left some comments on the article, because your child theme breaks
WordPress!
You should prefix all variables and functions that are in global scope with
your unique prefix to avoid clashing with WordPress or any other
themes/plugins. In this case it was the $cat used in your loop.
Secondly, I wouldn't do the aggressive no-html filtering on the footer
copyright and intro text. These are being entered by a logged in user with
rights to modify theme options. If they wanted to, they could do much harm
without resorting to XSS.
Thirdly you still have 'manage_options' as the capability required to access
the options page instead of 'edit_theme_options'.
Mike
--
Mike Little
http://zed1.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wordpress.org/pipermail/theme-reviewers/attachments/20110113/3a360e23/attachment.htm>
More information about the theme-reviewers
mailing list