File Manager

📂 File Manager

📝 Edit File: theme-previews.php

<?php
/**
 * Theme previews using the Site Editor for block themes.
 *
 * @package WordPress
 */

/**
 * Filters the blog option to return the path for the previewed theme.
 *
 * @since 6.3.0
 *
 * @param string $current_stylesheet The current theme's stylesheet or template path.
 * @return string The previewed theme's stylesheet or template path.
 */
function wp_get_theme_preview_path( $current_stylesheet = null ) {
	if ( ! current_user_can( 'switch_themes' ) ) {
		return $current_stylesheet;
	}

$preview_stylesheet = ! empty( $_GET['wp_theme_preview'] ) ? sanitize_text_field( wp_unslash( $_GET['wp_theme_preview'] ) ) : null;
	$wp_theme           = wp_get_theme( $preview_stylesheet );
	if ( ! is_wp_error( $wp_theme->errors() ) ) {
		if ( current_filter() === 'template' ) {
			$theme_path = $wp_theme->get_template();
		} else {
			$theme_path = $wp_theme->get_stylesheet();
		}

return sanitize_text_field( $theme_path );
	}

return $current_stylesheet;
}

/**
 * Adds a middleware to `apiFetch` to set the theme for the preview.
 * This adds a `wp_theme_preview` URL parameter to API requests from the Site Editor, so they also respond as if the theme is set to the value of the parameter.
 *
 * @since 6.3.0
 */
function wp_attach_theme_preview_middleware() {
	// Don't allow non-admins to preview themes.
	if ( ! current_user_can( 'switch_themes' ) ) {
		return;
	}

wp_add_inline_script(
		'wp-api-fetch',
		sprintf(
			'wp.apiFetch.use( wp.apiFetch.createThemePreviewMiddleware( %s ) );',
			wp_json_encode( sanitize_text_field( wp_unslash( $_GET['wp_theme_preview'] ) ) )
		),
		'after'
	);
}

/**
 * Set a JavaScript constant for theme activation.
 *
 * Sets the JavaScript global WP_BLOCK_THEME_ACTIVATE_NONCE containing the nonce
 * required to activate a theme. For use within the site editor.
 *
 * @see https://github.com/WordPress/gutenberg/pull/41836
 *
 * @since 6.3.0
 * @access private
 */
function wp_block_theme_activate_nonce() {
	$nonce_handle = 'switch-theme_' . wp_get_theme_preview_path();
	?>
	<script type="text/javascript">
		window.WP_BLOCK_THEME_ACTIVATE_NONCE = <?php echo wp_json_encode( wp_create_nonce( $nonce_handle ) ); ?>;
	</script>
	<?php
}

/**
 * Add filters and actions to enable Block Theme Previews in the Site Editor.
 *
 * The filters and actions should be added after `pluggable.php` is included as they may
 * trigger code that uses `current_user_can()` which requires functionality from `pluggable.php`.
 *
 * @since 6.3.2
 */
function wp_initialize_theme_preview_hooks() {
	if ( ! empty( $_GET['wp_theme_preview'] ) ) {
		add_filter( 'stylesheet', 'wp_get_theme_preview_path' );
		add_filter( 'template', 'wp_get_theme_preview_path' );
		add_action( 'init', 'wp_attach_theme_preview_middleware' );
		add_action( 'admin_head', 'wp_block_theme_activate_nonce' );
	}
}

Type	Item Name	Actions
📁	..
📁	assets
📁	block-bindings
📁	block-patterns
📁	block-supports
📁	blocks
📁	certificates
📁	css
📁	customize
📁	fonts
📁	html-api
📁	ID3
📁	images
📁	interactivity-api
📁	IXR
📁	js
📁	l10n
📁	php-compat
📁	PHPMailer
📁	pomo
📁	Requests
📁	rest-api
📁	SimplePie
📁	sitemaps
📁	sodium_compat
📁	style-engine
📁	Text
📁	theme-compat
📁	widgets
📄	admin-bar.php
📄	atomlib.php
📄	author-template.php
📄	block-bindings.php
📄	block-editor.php
📄	block-i18n.json
📄	block-patterns.php
📄	block-template-utils.php
📄	block-template.php
📄	blocks.php
📄	bookmark-template.php
📄	bookmark.php
📄	cache-compat.php
📄	cache.php
📄	canonical.php
📄	capabilities.php
📄	category-template.php
📄	category.php
📄	class-avif-info.php
📄	class-feed.php
📄	class-http.php
📄	class-IXR.php
📄	class-json.php
📄	class-oembed.php
📄	class-phpass.php
📄	class-phpmailer.php
📄	class-pop3.php
📄	class-requests.php
📄	class-simplepie.php
📄	class-smtp.php
📄	class-snoopy.php
📄	class-walker-category-dropdown.php
📄	class-walker-category.php
📄	class-walker-comment.php
📄	class-walker-nav-menu.php
📄	class-walker-page-dropdown.php
📄	class-walker-page.php
📄	class-wp-admin-bar.php
📄	class-wp-ajax-response.php
📄	class-wp-application-passwords.php
📄	class-wp-block-bindings-registry.php
📄	class-wp-block-bindings-source.php
📄	class-wp-block-editor-context.php
📄	class-wp-block-list.php
📄	class-wp-block-metadata-registry.php
📄	class-wp-block-parser-block.php
📄	class-wp-block-parser-frame.php
📄	class-wp-block-parser.php
📄	class-wp-block-pattern-categories-registry.php
📄	class-wp-block-patterns-registry.php
📄	class-wp-block-styles-registry.php
📄	class-wp-block-supports.php
📄	class-wp-block-template.php
📄	class-wp-block-templates-registry.php
📄	class-wp-block-type-registry.php
📄	class-wp-block-type.php
📄	class-wp-block.php
📄	class-wp-classic-to-block-menu-converter.php
📄	class-wp-comment-query.php
📄	class-wp-comment.php
📄	class-wp-customize-control.php
📄	class-wp-customize-manager.php
📄	class-wp-customize-nav-menus.php
📄	class-wp-customize-panel.php
📄	class-wp-customize-section.php
📄	class-wp-customize-setting.php
📄	class-wp-customize-widgets.php
📄	class-wp-date-query.php
📄	class-wp-dependencies.php
📄	class-wp-dependency.php
📄	class-wp-duotone.php
📄	class-wp-editor.php
📄	class-wp-embed.php
📄	class-wp-error.php
📄	class-wp-exception.php
📄	class-wp-fatal-error-handler.php
📄	class-wp-feed-cache-transient.php
📄	class-wp-feed-cache.php
📄	class-wp-hook.php
📄	class-wp-http-cookie.php
📄	class-wp-http-curl.php
📄	class-wp-http-encoding.php
📄	class-wp-http-ixr-client.php
📄	class-wp-http-proxy.php
📄	class-wp-http-requests-hooks.php
📄	class-wp-http-requests-response.php
📄	class-wp-http-response.php
📄	class-wp-http-streams.php
📄	class-wp-http.php
📄	class-wp-image-editor-gd.php
📄	class-wp-image-editor-imagick.php
📄	class-wp-image-editor.php
📄	class-wp-list-util.php
📄	class-wp-locale-switcher.php
📄	class-wp-locale.php
📄	class-wp-matchesmapregex.php
📄	class-wp-meta-query.php
📄	class-wp-metadata-lazyloader.php
📄	class-wp-navigation-fallback.php
📄	class-wp-network-query.php
📄	class-wp-network.php
📄	class-wp-object-cache.php
📄	class-wp-oembed-controller.php
📄	class-wp-oembed.php
📄	class-wp-paused-extensions-storage.php
📄	class-wp-plugin-dependencies.php
📄	class-wp-post-type.php
📄	class-wp-post.php
📄	class-wp-query.php
📄	class-wp-recovery-mode-cookie-service.php
📄	class-wp-recovery-mode-email-service.php
📄	class-wp-recovery-mode-key-service.php
📄	class-wp-recovery-mode-link-service.php
📄	class-wp-recovery-mode.php
📄	class-wp-rewrite.php
📄	class-wp-role.php
📄	class-wp-roles.php
📄	class-wp-script-modules.php
📄	class-wp-scripts.php
📄	class-wp-session-tokens.php
📄	class-wp-simplepie-file.php
📄	class-wp-simplepie-sanitize-kses.php
📄	class-wp-site-query.php
📄	class-wp-site.php
📄	class-wp-styles.php
📄	class-wp-tax-query.php
📄	class-wp-taxonomy.php
📄	class-wp-term-query.php
📄	class-wp-term.php
📄	class-wp-text-diff-renderer-inline.php
📄	class-wp-text-diff-renderer-table.php
📄	class-wp-textdomain-registry.php
📄	class-wp-theme-json-data.php
📄	class-wp-theme-json-resolver.php
📄	class-wp-theme-json-schema.php
📄	class-wp-theme-json.php
📄	class-wp-theme.php
📄	class-wp-token-map.php
📄	class-wp-user-meta-session-tokens.php
📄	class-wp-user-query.php
📄	class-wp-user-request.php
📄	class-wp-user.php
📄	class-wp-walker.php
📄	class-wp-widget-factory.php
📄	class-wp-widget.php
📄	class-wp-xmlrpc-server.php
📄	class-wp.php
📄	class-wpdb.php
📄	class.wp-dependencies.php
📄	class.wp-scripts.php
📄	class.wp-styles.php
📄	comment-template.php
📄	comment.php
📄	compat.php
📄	cron.php
📄	date.php
📄	default-constants.php
📄	default-filters.php
📄	default-widgets.php
📄	deprecated.php
📄	embed-template.php
📄	embed.php
📄	error-protection.php
📄	feed-atom-comments.php
📄	feed-atom.php
📄	feed-rdf.php
📄	feed-rss.php
📄	feed-rss2-comments.php
📄	feed-rss2.php
📄	feed.php
📄	fonts.php
📄	formatting.php
📄	functions.php
📄	functions.wp-scripts.php
📄	functions.wp-styles.php
📄	general-template.php
📄	global-styles-and-settings.php
📄	http.php
📄	https-detection.php
📄	https-migration.php
📄	kses.php
📄	l10n.php
📄	link-template.php
📄	load.php
📄	locale.php
📄	media-template.php
📄	media.php
📄	meta.php
📄	ms-blogs.php
📄	ms-default-constants.php
📄	ms-default-filters.php
📄	ms-deprecated.php
📄	ms-files.php
📄	ms-functions.php
📄	ms-load.php
📄	ms-network.php
📄	ms-settings.php
📄	ms-site.php
📄	nav-menu-template.php
📄	nav-menu.php
📄	option.php
📄	pluggable-deprecated.php
📄	pluggable.php
📄	plugin.php
📄	post-formats.php
📄	post-template.php
📄	post-thumbnail-template.php
📄	post.php
📄	query.php
📄	registration-functions.php
📄	registration.php
📄	rest-api.php
📄	revision.php
📄	rewrite.php
📄	robots-template.php
📄	rss-functions.php
📄	rss.php
📄	script-loader.php
📄	script-modules.php
📄	session.php
📄	shortcodes.php
📄	sitemaps.php
📄	spl-autoload-compat.php
📄	style-engine.php
📄	taxonomy.php
📄	template-canvas.php
📄	template-loader.php
📄	template.php
📄	theme-i18n.json
📄	theme-previews.php
📄	theme-templates.php
📄	theme.json
📄	theme.php
📄	update.php
📄	user.php
📄	vars.php
📄	version.php
📄	widgets.php
📄	wp-db.php
📄	wp-diff.php