Changeset 4578

Timestamp:

12/23/2016 05:27:43 PM (9 years ago)

Author:

iandunn

Message:

WordCamp Remote CSS: Refactor for compatibility with Jetpack 4.2.2

WordPress 4.7 added a Customizer feature that allows editing CSS. Jetpack 4.2.2 replaced the Custom CSS module with an entirely new one that is compatible with the Customizer feature, but broke backwards-compatibility with the Site Cloner and Remote CSS plugins.

This commit refactors Remote CSS to restore compatibility with Jetpack.

​https://make.wordpress.org/core/2016/10/11/feature-proposal-better-theme-customizations-via-custom-css-with-live-previews/
​https://make.wordpress.org/core/2016/11/26/extending-the-custom-css-editor/
​https://github.com/Automattic/jetpack/issues/5539
​https://github.com/Automattic/jetpack/pull/5804

Location:

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css

Files:

• app/common.php (modified) (3 diffs)
• app/output-cached-css.php (modified) (5 diffs)
• app/synchronize-remote-css.php (modified) (3 diffs)
• app/user-interface.php (modified) (8 diffs)
• app/webhook-handler.php (modified) (1 diff)
• images (added)
• images/github-mark.svg (added)
• tests/test-synchronize-remote-css.php (modified) (1 diff)
• views/help-overview.php (modified) (2 diffs)
• views/help-tips.php (modified) (2 diffs)
• views/page-remote-css.php (modified) (5 diffs)
• views/template-discovery-notice.php (added)

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/app/common.php

@@ -2 +2 @@
 
 namespace WordCamp\RemoteCSS;
+use WP_Post;
+use WP_Customize_Manager;
+use Exception;
 
 defined( 'WPINC' ) or die();
 
+const POST_TYPE             = 'wc_remote_css';
 const SAFE_CSS_POST_SLUG    = 'wcrcss_safe_cached_version';
 const OPTION_LAST_UPDATE    = 'wcrcss_last_update';
@@ -14 +18 @@
 const GITHUB_API_HOSTNAME   = 'api.github.com';
 
-/**
- * Find the ID of the post we use to store the safe CSS
- *
- * @return int|\WP_Error
- */
-function get_safe_css_post_id() {
-    $post    = get_safe_css_post();
-    $post_id = is_a( $post, 'WP_Post' ) ? $post->ID : $post;
-
-    return $post_id;
-}
-
-/**
- * Find the post we use to store the safe CSS
- *
- * @return \WP_Post|\WP_Error
+add_action( 'init',               __NAMESPACE__ . '\register_post_types'  );
+add_action( 'customize_register', __NAMESPACE__ . '\add_discovery_notice' );
+
+/**
+ * Register our custom post types
+ */
+function register_post_types() {
+    $labels = array(
+        'name'          => __( 'Remote CSS', 'wordcamporg' ),
+        'singular_name' => __( 'Remote CSS', 'wordcamporg' ),
+    );
+
+    $capabilities = array(
+        'delete_posts'           => 'edit_theme_options',
+        'delete_post'            => 'edit_theme_options',
+        'delete_published_posts' => 'edit_theme_options',
+        'delete_private_posts'   => 'edit_theme_options',
+        'delete_others_posts'    => 'edit_theme_options',
+        'edit_post'              => 'edit_css',
+        'edit_posts'             => 'edit_css',
+        'edit_others_posts'      => 'edit_css',
+        'edit_published_posts'   => 'edit_css',
+        'read_post'              => 'read',
+        'read_private_posts'     => 'read',
+        'publish_posts'          => 'edit_theme_options',
+    );
+
+    $params = array(
+        'labels'           => $labels,
+        'public'           => false,
+        'hierarchical'     => false,
+        'rewrite'          => false,
+        'query_var'        => false,
+        'delete_with_user' => false,
+        'can_export'       => true,
+        'supports'         => array( 'title', 'revisions' ),
+        'capabilities'     => $capabilities,
+    );
+
+    register_post_type( POST_TYPE, $params );
+}
+
+/**
+ * Determines if the site's owner has configured the plugin
+ *
+ * @return bool
+ */
+function is_configured() {
+    return ! empty( get_option( OPTION_REMOTE_CSS_URL ) );
+}
+
+/**
+ * Get the WP_Post where the sanitized CSS is stored
+ *
+ * If it doesn't exist, it will be created.
+ *
+ * @todo All of the code related to the old Jetpack posts can be removed once all sites have migrated.
+ *       That only happens once something triggers `admin_init`, though.
+ *
+ * @return WP_Post
  */
 function get_safe_css_post() {
+    $posts = get_posts( array(
+        'post_type'      => POST_TYPE,
+        'post_status'    => 'private',
+        'posts_per_page' => 1,
+    ) );
+
+    if ( isset( $posts[0] ) ) {
+        $post = $posts[0];
+    } else {
+        $jetpack_post = get_jetpack_post();
+
+        if ( $jetpack_post ) {
+            $post = migrate_jetpack_post( $jetpack_post );
+        } else {
+            $post = create_new_post();
+        }
+    }
+
+    return $post;
+}
+
+/**
+ * Find Jetpack's safe CSS post
+ *
+ * Before WordPress 4.7 and Jetpack 4.2.2, Jetpack stored it's Custom CSS in a `safecss` post type, and Remote CSS
+ * created it's own `safecss` post to store our sanitized CSS. Any site that hasn't been migrated to the
+ * `wc_remote_css` post type yet will still have their CSS stored in a `safecss` post.
+ *
+ * @return WP_Post|false
+ */
+function get_jetpack_post() {
+    $post = false;
+
     $safe_css_post = get_posts( array(
         'posts_per_page' => 1,
@@ -41 +122 @@
     if ( $safe_css_post ) {
         $post = $safe_css_post[0];
-    } else {
-        $post = wp_insert_post( array(
-            'post_type'   => 'safecss',
-            'post_status' => 'private', // Jetpack_Custom_CSS::post_id() only searches for `public` posts, so this prevents Jetpack from fetching our post
-            'post_title'  => SAFE_CSS_POST_SLUG,
-            'post_name'   => SAFE_CSS_POST_SLUG,
-        ), true );
-
-        if ( ! is_wp_error( $post ) ) {
-            $post = get_post( $post );
-        }
     }
 
     return $post;
 }
+
+/**
+ * Migrate an old `safecss` post to the new `wc_remote_css` post type
+ *
+ * @see get_jetpack_post() for some background information
+ *
+ * We don't want to delete the old post, just in case something goes wrong and we need to restore it. It does need
+ * to be disabled, though, because otherwise it could cause problems. For instance, if it's migrated without being
+ * disabled, then the user deletes the Remote CSS URL in order to stop using the plugin. In that scenario, the old
+ * post would be restored, and there would be no way for the user to stop using the plugin.
+ *
+ * @param WP_Post $jetpack_post
+ *
+ * @return WP_Post
+ *
+ * @throws Exception
+ */
+function migrate_jetpack_post( $jetpack_post ) {
+    $new_post = create_new_post( $jetpack_post->post_content );
+
+    $jetpack_post->post_status = 'draft';
+    $jetpack_post->post_name   = SAFE_CSS_POST_SLUG . '_migrated';
+
+    $result = wp_update_post( $jetpack_post, true );
+
+    if ( is_wp_error( $result ) ) {
+        throw new Exception( sprintf(
+            // translators: %s is an email address
+            __( "Could not migrate Jetpack post. Please notify us at %s.", 'wordcamporg' ),
+            EMAIL_CENTRAL_SUPPORT
+        ) );
+    }
+
+    return $new_post;
+}
+
+/**
+ * Create a new Remote CSS post
+ *
+ * @param string $content
+ *
+ * @return WP_Post
+ *
+ * @throws Exception
+ */
+function create_new_post( $content = '' ) {
+    $post = wp_insert_post( array(
+        'post_type'    => POST_TYPE,
+        'post_name'    => SAFE_CSS_POST_SLUG,
+        'post_status'  => 'private',
+        'post_content' => $content
+    ), true );
+
+    if ( ! is_wp_error( $post ) ) {
+        $post = get_post( $post );
+    }
+
+    if ( ! is_a( $post, 'WP_Post' ) ) {
+        throw new Exception( sprintf(
+            // translators: %s is an email address
+            __( "Could not create CSS post. Please notify us at %s.", 'wordcamporg' ),
+            EMAIL_CENTRAL_SUPPORT
+        ) );
+    }
+
+    return $post;
+}
+
+/**
+ * Get the mode for outputting the custom CSS.
+ *
+ * This just uses the same mode as Jetpack's CSS post, because it wouldn't make any sense to have them configured
+ * with opposite values.
+ *
+ * @return string
+ */
+function get_output_mode() {
+    $mode = 'add-on';
+    $jetpack_settings = (array) get_theme_mod( 'jetpack_custom_css' );
+
+    if ( isset( $jetpack_settings['replace'] ) && $jetpack_settings['replace'] ) {
+        $mode = 'replace';
+    }
+
+    return $mode;
+}
+
+/**
+ * Add a notice to Core's Custom CSS section to offer using Remote CSS
+ *
+ * The Core/Jetpack CSS editor is not designed to meet the needs of the typical WordCamp organizing team, but teams
+ * who aren't satisfied with it may not be aware of Remote CSS. This helps them discover it, so that they can
+ * choose which one they want to use.
+ *
+ * @param WP_Customize_Manager $wp_customize
+ */
+function add_discovery_notice( $wp_customize ) {
+    $plugin_url = plugins_url( '', __DIR__ );
+
+    $notice_text = sprintf(
+        __(
+            'You can also build your CSS locally using your favorite tools, and collaborate on GitHub with <a href="%s">Remote CSS</a>.',
+            'wordcamporg'
+        ),
+        admin_url( 'themes.php?page=remote-css' )
+    );
+
+    ob_start();
+    require_once( dirname( __DIR__ ) . '/views/template-discovery-notice.php' );
+    $description = ob_get_clean();
+
+    $wp_customize->add_control(
+        'wcrss_discovery',
+        array(
+            'priority'    => 1,
+            'section'     => 'custom_css',
+            'settings'    => array(),
+            'description' => $description,
+            'input_attrs' => array(
+                'style' => 'display: none;',
+            ),
+        )
+    );
+}

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/app/output-cached-css.php

@@ -2 +2 @@
 
 namespace WordCamp\RemoteCSS;
+use Jetpack;
+use Exception;
 
 defined( 'WPINC' ) or die();
 
-add_action( 'wp_enqueue_scripts',           __NAMESPACE__ . '\enqueue_cached_css', 11 );  // after the theme's stylesheet, but before Jetpack Custom CSS's stylesheet
-add_action( 'wp_ajax_'        . CSS_HANDLE, __NAMESPACE__ . '\output_cached_css'      );
-add_action( 'wp_ajax_nopriv_' . CSS_HANDLE, __NAMESPACE__ . '\output_cached_css'      );
-add_filter( 'nocache_headers',              __NAMESPACE__ . '\set_cache_headers'      );
+if ( is_configured() ) {
+    add_action( 'wp_enqueue_scripts',           __NAMESPACE__ . '\enqueue_cached_css', 11 );  // after the theme's stylesheet, but before Core's Custom CSS stylesheet
+    add_filter( 'stylesheet_uri',               __NAMESPACE__ . '\skip_theme_stylesheet'  );
+    add_action( 'wp_ajax_'        . CSS_HANDLE, __NAMESPACE__ . '\output_cached_css'      );
+    add_action( 'wp_ajax_nopriv_' . CSS_HANDLE, __NAMESPACE__ . '\output_cached_css'      );
+    add_filter( 'nocache_headers',              __NAMESPACE__ . '\set_cache_headers'      );
+}
 
 /**
@@ -16 +21 @@
  */
 function enqueue_cached_css() {
-    if ( false === get_option( OPTION_REMOTE_CSS_URL ) ) {
-        return;
-    }
-
-    $cachebuster = get_latest_revision_id();
-
-    if ( ! $cachebuster ) {
-        $cachebuster = date( 'Y-m-d' ); // We should always have a revision ID, but this will work as a fallback if we don't for some reason
+    try {
+        $cachebuster = get_latest_revision_id();
+    } catch ( Exception $exception ) {
+        $cachebuster = date( 'Y-m-d-H' );
     }
 
@@ -36 +37 @@
 
 /**
+ * Skip the theme's stylesheet when in `replace` mode
+ *
+ * Normally Jetpack handles this (via `Jetpack_Custom_CSS_Enhancements::style_filter`), but we still need to do it
+ * even if the `custom-css` module isn't active. We can't include `custom-css-4.7.php`, because it has
+ * side-effects. It doesn't seem worth it to require the module to be active just for this, so instead we're just
+ * duplicating the functionality.
+ *
+ * @param string $stylesheet_url
+ *
+ * @return string
+ */
+function skip_theme_stylesheet( $stylesheet_url ) {
+    if ( ! is_admin() && 'replace' === get_output_mode() && ! Jetpack::is_module_active( 'custom-css' ) ) {
+        $stylesheet_url = plugins_url( 'custom-css/custom-css/css/blank.css', Jetpack::get_module_path( 'custom-css' ) );
+    }
+
+    return $stylesheet_url;
+}
+
+/**
  * Get the ID of the latest revision of the safe CSS post
  *
- * @return int|bool
+ * @return int
  */
 function get_latest_revision_id() {
     $safe_css = get_safe_css_post();
-
-    if ( ! is_a( $safe_css, 'WP_Post' ) || empty( $safe_css->post_content_filtered ) ) {
-        return false;
-    }
     $latest_revision = wp_get_post_revisions( $safe_css->ID, array( 'posts_per_page' => 1 ) );
 
     if ( empty( $latest_revision ) ) {
-        return false;
+        $latest_revision = $safe_css;
+    } else {
+        $latest_revision = array_shift( $latest_revision );
     }
-
-    $latest_revision = array_shift( $latest_revision );
 
     return $latest_revision->ID;
@@ -72 +89 @@
     }
 
-    $safe_css = get_safe_css_post();
-
-    if ( ! is_a( $safe_css, 'WP_Post' ) ) {
+    try {
+        $safe_css = get_safe_css_post();
+    } catch ( Exception $exception ) {
         return $cache_headers;
     }
@@ -95 +112 @@
  */
 function output_cached_css() {
+    // Explicitly tell the browser that this is CSS, to avoid MIME sniffing vulnerabilities
     header( 'Content-Type: text/css; charset=' . get_option( 'blog_charset' ) );
 
-    $safe_css = get_safe_css_post();
+    try {
+        $safe_css_post = get_safe_css_post();
+        $safe_css      = $safe_css_post->post_content;
+    } catch ( Exception $exception ) {
+        $safe_css = '';
+    }
 
-    if ( is_a( $safe_css, 'WP_Post' ) ) {
-        echo $safe_css->post_content_filtered;
-    }
+    echo $safe_css;
 
     wp_die();

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/app/synchronize-remote-css.php

@@ -2 +2 @@
 
 namespace WordCamp\RemoteCSS;
+use Jetpack_Custom_CSS_Enhancements;
+use Exception;
 
 defined( 'WPINC' ) or die();
@@ -8 +10 @@
  * Synchronizes the local safe/cached copy of the CSS with the canonical, remote source.
  *
+ * @todo Minification was removed from Jetpack 4.2.2, but will probably be added back in the future. Once it is,
+ *       make sure that it's being run here.
+ *
  * @param string $remote_css_url
  */
 function synchronize_remote_css( $remote_css_url ) {
-    sanitize_and_save_unsafe_css( fetch_unsafe_remote_css( $remote_css_url ) );
+    $unsafe_css = fetch_unsafe_remote_css( $remote_css_url );
+    $safe_css   = sanitize_unsafe_css( $unsafe_css );
+
+    save_safe_css( $safe_css );
     update_option( OPTION_LAST_UPDATE, time() );
 }
@@ -50 +58 @@
 
 /**
- * Sanitize unsafe CSS and save the safe version
+ * Sanitize unsafe CSS
  *
- * Note: If we ever need to decouple from Jetpack Custom CSS, then https://github.com/google/caja might be
- * a viable alternative. It'd be nice to have a modular solution, but we'd also have to keep it up to date,
- * and we'd still need to mirror the Output Mode setting.
+ * Jetpack/CSSTidy will validate and normalize the CSS, but they do _NOT_ perform comprehensive sanitization from
+ * a security perspective. So, we still need to add our custom sanitization to the process. That's done in
+ * `mu-plugins/jetpack-tweaks/css-sanitization.php`, but we need to confirm that it actually ran, to protect against
+ * a situation where there was a change in Jetpack/CSSTidy, or in our sanitization, and this function wasn't updated
+ * to reflect them.
  *
  * @param string $unsafe_css
  *
- * @throws \Exception if Jetpack's Custom CSS module isn't available
+ * @return string
+ *
+ * @throws Exception
  */
-function sanitize_and_save_unsafe_css( $unsafe_css ) {
-    if ( ! is_callable( array( '\Jetpack_Custom_CSS', 'save' ) ) ) {
-        throw new \Exception(
-            __( "<code>Jetpack_Custom_CSS::save()</code> is not available.
-            Please make sure Jetpack's Custom CSS module has been activated.", 'wordcamporg' )
-        );
+function sanitize_unsafe_css( $unsafe_css ) {
+    require_once( JETPACK__PLUGIN_DIR . '/modules/custom-css/custom-css-4.7.php' );
+
+    $parser_rules_setup          = has_filter( 'csstidy_optimize_postparse', 'WordCamp\Jetpack_Tweaks\sanitize_csstidy_parsed_rules' );
+    $subvalue_sanitization_setup = has_filter( 'csstidy_optimize_subvalue',  'WordCamp\Jetpack_Tweaks\sanitize_csstidy_subvalues'    );
+
+    if ( ! $parser_rules_setup || ! $subvalue_sanitization_setup ) {
+        throw new Exception( sprintf(
+            // translators: %s is an email address
+            __( "Could not update CSS because sanitization was not available. Please notify us at %s.", 'wordcamporg' ),
+            EMAIL_CENTRAL_SUPPORT
+        ) );
     }
 
-    /*
-     * Note: In addition to the sanitization that Jetpack_Custom_CSS::save() does, there's additional sanitization
-     * done by the callbacks in mu-plugins/jetpack-tweaks.php.
-     */
+    $safe_css = Jetpack_Custom_CSS_Enhancements::sanitize_css( $unsafe_css, array( 'force' => true ) );
 
-    add_filter( 'jetpack_custom_css_pre_post_id', __NAMESPACE__ . '\get_safe_css_post_id' );
+    if ( did_action( 'csstidy_optimize_postparse' ) < 1 || did_action( 'csstidy_optimize_subvalue' ) < 1 ) {
+        throw new Exception( sprintf(
+            // translators: %s is an email address
+            __( "Could not update CSS because sanitization did not run. Please notify us at %s.", 'wordcamporg' ),
+            EMAIL_CENTRAL_SUPPORT
+        ) );
+    }
 
-    \Jetpack_Custom_CSS::save( array(
-        'css'             => $unsafe_css,
-        'is_preview'      => false,
-        'preprocessor'    => '',     // This should never be changed to allow pre-processing. See note in validate_remote_css_url()
-        'add_to_existing' => false,  // This isn't actually used, see get_output_mode()
-        'content_width'   => false,
-    ) );
+    return $safe_css;
+}
 
-    remove_filter( 'jetpack_custom_css_pre_post_id', __NAMESPACE__ . '\get_safe_css_post_id' );
+/**
+ * Save the safe CSS
+ *
+ * @param string $safe_css
+ */
+function save_safe_css( $safe_css ) {
+    $post = get_safe_css_post();
+    $post->post_content = $safe_css;
 
-    /*
-     * Jetpack_Custom_CSS::save_revision() caches our post ID because it retrieves the post ID from
-     * Jetpack_Custom_CSS::post_id() while the get_safe_css_post_id() callback is active. We need to clear that
-     * to avoid unintended side-effects.
-     */
-    wp_cache_delete( 'custom_css_post_id' );
+    wp_update_post( $post );
 }

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/app/user-interface.php

@@ -2 +2 @@
 
 namespace WordCamp\RemoteCSS;
-
 defined( 'WPINC' ) or die();
 
@@ -43 +42 @@
     $remote_css_url            = get_option( OPTION_REMOTE_CSS_URL , '' );
     $fonts_tool_url            = admin_url( 'themes.php?page=wc-fonts-options' );
-    $jetpack_modules_url       = admin_url( 'admin.php?page=jetpack_modules' );
-    $jetpack_custom_css_active = method_exists( '\Jetpack_Custom_CSS', 'init' );
 
     require_once( dirname( __DIR__ ) . '/views/page-remote-css.php' );
@@ -50 +47 @@
 
 /**
- * Get the mode for outputting the custom CSS.
- *
- * This just uses the same mode as Jetpack's CSS post, because it wouldn't make any sense to have them configured
- * with opposite values.
- *
- * @return string
- */
-function get_output_mode() {
-    $mode = 'add-on';
-
-    try {
-        $jetpack_css_post_id = get_jetpack_css_post_id();
-
-        if ( 'no' === get_post_meta( $jetpack_css_post_id, 'custom_css_add', true ) ) {
-            $mode = 'replace';
-        }
-    } catch( \Exception $exception ) {
-        // Just fall back to the default $mode
-    }
-
-    return $mode;
-}
-
-/**
  * Get or set the mode for outputting the custom CSS.
  *
@@ -81 +54 @@
  */
 function set_output_mode( $mode ) {
-    $mode        = 'replace' === $mode ? 'no' : 'yes';
-    $revision_id = get_jetpack_css_latest_revision_id();
-
-    update_post_meta( get_jetpack_css_post_id(), 'custom_css_add', $mode );
-
-    if ( $revision_id ) {
-        update_metadata( 'post', $revision_id, 'custom_css_add', $mode );   // update_post_meta doesn't allow modifying revisions
-    }
-}
-
-/**
- * Get the ID of Jetpack's safecss post
- *
- * If it doesn't exist yet, create it, because we'll need it for the Output Mode setting.
- *
- * @throws \Exception if Jetpack's Custom CSS module isn't available
- *
- * @return int
- */
-function get_jetpack_css_post_id() {
-    if ( ! is_callable( array( '\Jetpack_Custom_CSS', 'post_id' ) ) ) {
-        throw new \Exception(
-            __( "<code>Jetpack_Custom_CSS::post_id()</code> is not available.
-            Please make sure Jetpack's Custom CSS module has been activated.",
-            'wordcamporg' )
-        );
-    }
-
-    $post_id = \Jetpack_Custom_CSS::post_id();
-
-    if ( ! is_int( $post_id ) || 0 === $post_id ) {
-        $post_values = array(
-            'post_content'          => '',
-            'post_title'            => 'safecss',
-            'post_status'           => 'publish',
-            'post_type'             => 'safecss',
-            'post_content_filtered' => '',
-        );
-
-        $post_id = wp_insert_post( $post_values, true );
-
-        if ( is_wp_error( $post_id ) ) {
-            throw new \Exception( $post_id->get_error_message() );
-        }
-    }
-
-    return $post_id;
-}
-
-/**
- * Get the ID of the current Jetpack's safecss revision post
- *
- * @throws \Exception if Jetpack's Custom CSS module isn't available
- *
- * @return int|bool
- */
-function get_jetpack_css_latest_revision_id() {
-    if ( ! is_callable( array( '\Jetpack_Custom_CSS', 'get_current_revision' ) ) ) {
-        throw new \Exception(
-            __( "<code>Jetpack_Custom_CSS::get_current_revision()</code> is not available.
-            Please make sure Jetpack's Custom CSS module has been activated.",
-            'wordcamporg' )
-        );
-    }
-
-    $revision = \Jetpack_Custom_CSS::get_current_revision();
-
-    return empty( $revision['ID'] ) ? false : $revision['ID'];
+    $jetpack_settings            = (array) get_theme_mod( 'jetpack_custom_css' );
+    $jetpack_settings['replace'] = 'replace' === $mode;
+
+    set_theme_mod( 'jetpack_custom_css', $jetpack_settings );
 }
 
@@ -169 +78 @@
     if ( '' === $remote_css_url ) {
         $notice = '';
-        wp_delete_post( get_safe_css_post_id() );
+        $post   = get_safe_css_post();
+
+        wp_delete_post( $post->ID );
     } else {
         $notice         = __( 'The remote CSS file was successfully synchronized.', 'wordcamporg' );
@@ -175 +86 @@
 
         synchronize_remote_css( $remote_css_url );
-        set_output_mode( $_POST['wcrcss-output-mode'] );
-    }
-
+    }
+
+    set_output_mode( $_POST['wcrcss-output-mode'] );
     update_option( OPTION_REMOTE_CSS_URL, $remote_css_url );
 
@@ -233 +144 @@
      * Vanilla CSS only
      *
-     * We need to force the user to do their own pre-processing, because Jetpack_Custom_CSS::save() doesn't
+     * We need to force the user to do their own pre-processing, because Jetpack_Custom_CSS_Enhancements::sanitize() doesn't
      * sanitize the unsafe CSS when a preprocessor is present. We'd have to add more logic to make sure it gets
      * sanitized, which would further couple the plugin to Jetpack.
@@ -297 +208 @@
     switch ( $view_slug ) {
         case 'overview':
-            $jetpack_editor_url = admin_url( 'themes.php?page=editcss' );
+            $custom_css_url = admin_url( 'customize.php?autofocus[section]=custom_css' );
             break;
 

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/app/webhook-handler.php

@@ -5 +5 @@
 defined( 'WPINC' ) or die();
 
-add_action( 'wp_ajax_'        . AJAX_ACTION, __NAMESPACE__ . '\webhook_handler'        ); // This is useless in production, but useful for manual testing
-add_action( 'wp_ajax_nopriv_' . AJAX_ACTION, __NAMESPACE__ . '\webhook_handler'        );
-add_action( SYNCHRONIZE_ACTION,              __NAMESPACE__ . '\synchronize_remote_css' );
+if ( is_configured() ) {
+    add_action( 'wp_ajax_'        . AJAX_ACTION, __NAMESPACE__ . '\webhook_handler'        ); // This is useless in production, but useful for manual testing
+    add_action( 'wp_ajax_nopriv_' . AJAX_ACTION, __NAMESPACE__ . '\webhook_handler'        );
+    add_action( SYNCHRONIZE_ACTION,              __NAMESPACE__ . '\synchronize_remote_css' );
+}
 
 /*

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/tests/test-synchronize-remote-css.php

@@ -13 +13 @@
         $unsanitized_css          = file_get_contents( __DIR__ . '/unsanitized.css' );
         $known_good_sanitized_css = file_get_contents( __DIR__ . '/sanitized.css'   );
+        $maybe_sanitized_css      = sanitize_unsafe_css( $unsanitized_css );
 
-        sanitize_and_save_unsafe_css( $unsanitized_css );
-
-        $maybe_sanitized_css = get_safe_css_post();
-
-        $this->assertEquals( $maybe_sanitized_css->post_content, $known_good_sanitized_css );
+        $this->assertEquals( $maybe_sanitized_css, $known_good_sanitized_css );
     }
 }

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/views/help-overview.php

@@ -4 +4 @@
 defined( 'WPINC' ) or die();
 
+/**
+ * @var string $custom_css_url
+ */
+
 ?>
 
 <p>
-    <?php _e( 'Remote CSS gives you a lot more flexibility in how you develop your site than the Jetpack Custom CSS module.
+    <?php _e( 'Remote CSS gives you a lot more flexibility in how you develop your site than the Core/Jetpack editor.
     For instance, you can:', 'wordcamporg' ); ?>
 </p>
@@ -34 +38 @@
 <p>
     <?php printf(
-        __( 'If you\'re looking for something simpler, <a href="%s">Jetpack\'s CSS Editor</a> is a great option.', 'wordcamporg' ),
-        esc_url( $jetpack_editor_url )
+        __( 'If you\'re looking for something simpler, <a href="%s">the Core/Jetpack editor</a> is a great option.', 'wordcamporg' ),
+        esc_url( $custom_css_url )
     ); ?>
 </p>

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/views/help-tips.php

@@ -3 +3 @@
 namespace WordCamp\RemoteCSS;
 defined( 'WPINC' ) or die();
+
+/**
+ * @var string $fonts_tool_url
+ * @var string $media_library_url
+ */
 
 ?>
@@ -37 +42 @@
 
     <li>
-        <?php _e( "This tool plays nicely with Jetpack's CSS editor, and it's possible to use both.
-        If you do, the rules in the Jetpack editor will take precedence.", 'wordcamporg' ); ?>
+        <?php _e( "This tool plays nicely with the Core/Jetpack editor, and it's possible to use both.
+        If you do, the rules in the Core/Jetpack editor will take precedence.", 'wordcamporg' ); ?>
     </li>
 </ul>

sites/trunk/wordcamp.org/public_html/wp-content/plugins/wordcamp-remote-css/views/page-remote-css.php

@@ -4 +4 @@
 defined( 'WPINC' ) or die();
 
+/**
+ * @var string $notice
+ * @var string $notice_class
+ * @var string $remote_css_url
+ * @var string $output_mode
+ */
+
 ?>
 
 <div class="wrap">
     <h1><?php _e( 'Remote CSS', 'wordcamporg' ); ?></h1>
-
-    <?php if ( ! $jetpack_custom_css_active ) : ?>
-        <div id="message" class="notice notice-error inline">
-            <?php
-                /*
-                 * Jetpack_Custom_CSS is used to sanitize the unsafe CSS, and for removing the theme's stylesheet
-                 * in `replace` mode. Methods from Jetpack_Custom_CSS are called throughout this plugin, so we
-                 * need it to be active.
-                 */
-            ?>
-
-            <p>
-                <?php printf(
-                    __( 'This tool uses some functionality from Jetpack\'s Custom CSS module,
-                    but it doesn\'t look like it\'s available.
-                    Please <a href="%s">activate it</a>.',
-                    'wordcamporg' ),
-                    esc_url( $jetpack_modules_url )
-                ); ?>
-            </p>
-        </div>
-    <?php endif; ?>
 
     <?php
@@ -40 +25 @@
     <?php if ( $notice ) : ?>
         <div id="message" class="notice <?php echo esc_attr( $notice_class ); ?> is-dismissible">
-            <?php
-                /*
-                 * Typically KSES is discouraged when displaying text because it's expensive, but in this case
-                 * it's appropriate because the underlying layers need to pass HTML-formatted error messages, and
-                 * this only only runs when the options are updated.
-                 */
-            ?>
-
             <p><?php echo wp_kses( $notice, wp_kses_allowed_html( 'data' ) ); ?></p>
         </div>
@@ -53 +30 @@
 
     <p>
-        <?php _e( 'This tool allows you to develop your CSS in any environment that you choose, and with the tools that you prefer,
-        rather than with Jetpack\'s CSS Editor.
-        <button type="button" id="wcrcss-open-help-tab" class="button-link">Open the Help tab</button> for detailed instructions.',
-        'wordcamporg' ); ?>
+        <?php _e(
+            'Remote CSS allows you to develop your CSS in any environment that you choose, and with whatever tools that you prefer.
+            <button type="button" id="wcrcss-open-help-tab" class="button-link">Open the Help tab</button> for detailed instructions.',
+            'wordcamporg'
+        ); ?>
     </p>
 
@@ -62 +40 @@
         <?php wp_nonce_field( 'wcrcss-options-submit', 'wcrcss-options-nonce' ); ?>
 
-        <fieldset <?php disabled( $jetpack_custom_css_active, false ); ?>>
             <p>
                 <label>
-                    <?php _e( 'Remote CSS File:', 'wordcamporg' ); ?><br />
+                    <?php _e( 'Remote CSS URL:', 'wordcamporg' ); ?><br />
                     <input type="text" name="wcrcss-remote-css-url" class="large-text" value="<?php echo esc_url( $remote_css_url ); ?>" />
                 </label>
@@ -91 +68 @@
 
             <?php submit_button( __( 'Update', 'wordcamporg' ) ); ?>
-        </fieldset>
     </form>
 </div>