An interesting look into the mind of a creator and the things they have to go through when building things for others.
I get painted as a bad guy a lot. I’ve been called names, everything you can think up. I’ve had my gender, sexuality, appearance, and ability all mocked and derided. And most of this has happened since I took up the role of a volunteer in WordPress. Creation, Editing, Fitting In
As a writer, which is how I’ve always seen myself first, I’m used to the ruthlessness of the editing process. I’ve seen papers torn apart and painted red with corrections and commentary. Why this? What are you saying here? I understand the reason for ripping apart creativity to find it’s heart and crux and meaning. Art for the sake of art is different than art for the sake of consumption, after all.
But instead of a career in the arts, or journalism, I had a different path. Out of college I went to work for a bank and quickly learned how to fit myself into the cog of a machine. I had a role and a life that did not encourage innovation and uniqueness, but that of interchangeability. And in that work, I began to understand the reason for patterns and the similarity.
I’ve always been fascinated by patterns. I liked to see how the number went from 09 to 18 and 27 and obviously
In this article, Chris Lema compares his old process of preparing comps with Photoshop and getting client approval with his new process that involves using a page builder. While he focuses on Beaver Builder, the same changes and options are available with other page builders.
Demonstrating progress was easy In the old days, when I would work on a website project, there were some natural phases to the work I did. Your process may have been different, but mine went something like this.
Phase One: Define project / Agree on Scope
Phase Two: Create Thumbnails of Design Concepts
Phase Three: Create Photoshop Files of Final Design
Phase Four: Turn Designs into Code
Phase Five: Fine Tune Everything
Phase Six: Launch
If this feels very “waterfall” to you, and you’re more of an “agile” person, know this: I did a lot of iterating in each phase with customers until they were happy.
Does this sound familiar? I’m ok if you had a slightly different approach. But I’m guessing it was more similar than dissimilar. And it used to really work.
How did people understand progress? Well, once I laid out how things were going to go, they understood both the process and the deliverables they would expect. They’d get a scope document, wireframes, design files and then there would be a bit of quiet during the coding part, and then they’d see everything.
Did you catch that? There would be a tiny phase of silence in stage four where
WP 4.8 features improvement to TinyMCE which makes it much easier to utilise in plugins and themes.
A new editor API was added in #35760. It makes it possible to dynamically instantiate the editor from JS. There are two parts to it: All editor related scripts and stylesheets have to be enqueued from PHP by using wp_enqueue_editor().
Initialization is left for the script that is adding the editor instance. It requires the textarea that will become the Text editor tab to be already created and not hidden in the DOM. Filtering of the settings is done on adding the editor instance from JS.
There are three new methods added to the wp.editor namespace:
(See wp-admin/js/editor.js for more info.)
The default WordPress settings are passed to the initialize() method automatically, and can be overridden by passing a settings object on initialization, similarly to using wp_editor() in PHP.
In addition there are several custom jQuery events that are fired at different stages during initialization:
wp-before-tinymce-init is fired before initialization and can be used to set or change any editor setting. It passes the settings object.
tinymce-editor-setup is fired after initialization has started but before the UI is constructed. It
Skip to the section "WordPress is not WordPress" -- that's the most important read. A controversial opinion but a conversation worth having.
A story I enjoy retelling is how a friend of mine tricked me into using WordPress. At the time, I was working with him on a career mentorship project. He’d written a book that I was publishing, and we wanted to add a premium video series to go along with it. We just needed a way to host those videos online.
I was still very new to web development. I had built my own portfolio site in PHP, having learned PHP through a series of emails from a good friend in Arizona. My business partner was excited about the prospect of a dynamic website and turned me loose to find the right tool.
I settled on … not WordPress.
A few days later, he invited me to lunch downtown. Having no real job and, since our project wouldn’t be launched or profitable for a few months, I had no money and was thrilled at the thought of a free lunch. I parked downtown and met at an obscure office building … where the first ever WordCamp Portland was being held.
Spending the day with a bunch of WordPress geeks was fun and excited me about the tool. I switched gears and rebuilt our site on WordPress. I rebuilt my own site on WordPress. I started publishing plugins and a few themes for WordPress.
Strategies from Calvin on how you can leverage performance gains and layout options using "modern technologies".
I’ve once again updated my theme, but for good reasons. I wanted to explore two areas of front-end web development that I needed more experience in: WordPress performance in building themes, and the new CSS kid on the block — Grid. This post is a review of the strategies I used in the theme, and how you can leverage performance gains and layout options using modern technologies. If you like the theme, you can get it for free on GitHub.
WordPress Performance is Achievable
WordPress is actually very performant. Forcing server-side rendering used to be an issue, but with the WP-API almost all of the setbacks to performance are no longer forced and therefore invalid arguments. What’s more important, is that most performance issues come from bloated themes and plugins. They often times add either large-size assets to the page, or smaller-size assets in render-blocking methods.
Usually, it’s both.
With this theme, I wanted to reign in the excessive default resources that are usually coupled with modern themes and trim everything down to as small as possible. The result?
An average ~24kb page size on my homepage, and ~500ms load time. Pretty great results for what many
A theme shop that stops making themes? This is an insightful read on the WordPress theme market and future of themes. It will be an interesting experiment.
Welcome to the 27th edition of the monthly transparency report (for April 2017). This series is all about what’s been going on at CodeinWP and ThemeIsle that relates to the business side of things. I try to talk about new products, marketing plans, the team, and everything else that is relevant (and fun). Click here to see the previous reports. WordPress themes are the core of our business. This should come as no surprise, right? However, lately, I’ve started questioning the future of themes in the WordPress ecosystem as a whole. And I don’t just mean the future of the themes department in our house, but the future of themes overall.
This is the kind of stuff I’ve been pondering for the bigger part of last month. But it all started with our own backyard:
When Zerif Lite got suspended from the official repository a while ago (I know, I’ve been talking about this for what seems like ages, sorry; but it’s still relevant) causing our themes-related revenue to drop two-fold, it’s when I started to question and improve our theme development process more seriously. However, it seemed that whenever I came up with a sensible plan, some WordPress.org
Born and raised in South Florida, I started coding when i was in Elementary school on an Apple IIe with Apple BASIC and I haven't looked back since. When I moved to ASP.net to PHP, it didn't me long to find myself using Movable Type as my first CMS. But after tackling enough client projects, I moved to WordPress around version 1.5 and haven't looked back since. Along with WordPress in general, I have a particular love for BuddyPress and have been using that since it's pre-beta days.
I've done work with numerous startups and businesses. I currently work at Awesome Motive where i'm involved in building great WordPress plugins, particularly Envira Gallery. I love it there.
Aside from technology, I'm 40, have been married 15+ years, and have three beautiful daughters (thankfully my wife's DNA mostly prevailed).
I love pizza, Star Trek, MST3K, and if you see me at a WordPress event bug me for some swag because heaven knows i am still trying to get rid of all of it from past WordCamps.
Ask me anything!
Cool integration of Freemius with Mailchimp... I was really looking forward to it... and the auto-update thing looks neat, too!
Release Notes is our monthly update that highlights the recent product improvements we’ve made, so you can easily stay up to date on what’s new. Here’s what we launched in May. This product cycle was focused on three main objectives:
Integration with 3rd party email marketing services
Improving the in-dashboard upgrade process for freemium products
User-friendly usage tracking terms
Since our early days, we released a webhooks mechanism, because we know it’s impossible to develop every feature in-house and address every use-case. A solid webhooks mechanism makes Freemius more powerful and extensible and allows developers to integrate the platform with practically any 3rd party service.
Over the past year, we learned that the #1 (by far) usage of the webhooks mechanism was for integrating Freemius with MailChimp, powering up the email marketing efforts with our high converting opt-in. At first, we created an example of a vanilla PHP Webhook integration. Though some WordPress developers in our community had a lack of sysadmin knowledge for taking and deploying it to their WordPress powered site. A collaboration between two of our developers
I've had a few problems using the Jetpack settings page in WordPress, until I found the old settings page is still available. This article shows how to access it.
I’m a big fan of the Jetpack WordPress plugin. I support it in all of my WordPress themes, and have even contributed to its development. However it’s not perfect, and I have recently had some issues with the new React powered Jetpack admin not letting me change site settings. I have been getting the error:
Notifications failed to activate. SyntaxError: Unexpected token < in JSON at position 0
Now as far as I can see the issue seems to be with the new admin loading resources from http - when using a https site. However the team at Jetpack support have been unable to reproduce or fix it - they've been able to see the issue on my site (I've given them admin access to a site with the issue) however they have been unable to diagnose the problem, so it still happens.
Then one of the support agents gave me a quick tip. The new React powered admin is likely what's causing the problem - so why not use the old settings admin? It's still there in the plugin!
So, if you're having a problem changing the settings on your Jetpack powered site you can go to the following url and manage the settings as you used to:
I’ve now used this on two
I am interested in how do you perceive GoDaddy's brand giving it a simple score from 1 to 100 (100 being best) and why?
Looking to gather as much as feedback possible. Don't be shy, open up :)
WordPress.com Experiments With Allowing Business Plan Customers to Install Third-Party Plugins and Themes
"Quick update on third-party plugins: We've recently opened the opportunity to install plugins for Business Plan users. Keep in mind that most features are covered already by the plugin included in your WordPress.com account, so it is possible that you do not need any additional plugins." After reading this, do you think WordPress.org users will start moving to WordPress.com?
WordPress.com Experiments With Allowing Business Plan Customers to Install Third-Party Plugins and Themes
HackerOne is a platform for security researchers to report vulnerabilities. With the announcement also comes introduction bug bounties!
WordPress has grown a lot over the last thirteen years – it now powers more than 28% of the top ten million sites on the web. During this growth, each team has worked hard to continually improve their tools and processes. Today, the WordPress Security Team is happy to announce that WordPress is now officially on HackerOne! HackerOne is a platform for security researchers to securely and responsibly report vulnerabilities to our team. It provides tools that improve the quality and consistency of communication with reporters, and will reduce the time spent on responding to commonly reported issues. This frees our team to spend more time working on improving the security of WordPress.
The security team has been working on this project for quite some time. Nikolay Bachiyski started the team working on it just over a year ago. We ran it as a private program while we worked out our procedures and processes, and are excited to finally make it public.
With the announcement of the WordPress HackerOne program we are also introducing bug bounties. Bug bounties let us reward reporters for disclosing issues to us and helping us secure our products and infrastructure. We’ve already awarded
Matt shows off three videos involving businesses in Detroit. WordPress.com has these TV ads up in six markets to test.
As I mentioned in the State of the Word this is the year we’re ramping up marketing. There is lots to learn and much to follow, but we have our first TV ads up in six markets to test. Each shares a story of a business in Detroit, and I actually got the chance to visit one of the businesses earlier today.
Somebody buying a £840.00 jacket from a premium theme demo page!
Turns out our theme demos are pretty convincing on their own. Over the years some optimistic people comepletely believed that our demos were the real thing. The real deal. They thought that there was an online store called Goodz Shop. The theme demo was so good, even the payment processing worked – for better or worse! This is what the Goodz Shop demo looks like on desktop and mobile:
Scroll down a bit and you’ll see a pretty good-looking jacket, like this one:
You might even be tempted to buy it! Well. Someone did.
Someone bought the £840.00 jacket. They added it to their shopping basket, proceeded to checkout, entered their payment info and bought the jacket.
So, we had to email the person back and tell them that the jacket is not for sale. We gave them a full refund, and both the customer and we shared a laugh. Here’s the proof of payment with the person’s details cut out for privacy.
Over the past few months we’ve had people buying lamps, jackets, shoes – a lot of shoes were sold, believe it or not. But it all ended in good fun. We’ve since added notifications so folks know the products are fake, and we’re making sure this doesn’t
Release notes are out, and this release fixes 6 security issues.
WordPress 4.7.5 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.4 and earlier are affected by six security issues:
Insufficient redirect validation in the HTTP class. Reported by Ronni Skansing.
Improper handling of post meta data values in the XML-RPC API. Reported by Sam Thomas.
Lack of capability checks for post meta data in the XML-RPC API. Reported by Ben Bidner of the WordPress Security Team.
A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog. Reported by Yorick Koster.
A cross-site scripting (XSS) vulnerability was discovered when attempting to upload very large files. Reported by Ronni Skansing.
A cross-site scripting (XSS) vulnerability was discovered related to the Customizer. Reported by Weston Ruter of the WordPress Security Team.
Thank you to the reporters of these issues for practicing responsible disclosure.
In addition to the security issues above, WordPress 4.7.5 contains 3 maintenance fixes to the 4.7 release series. For more information, see the release notes or consult the list of changes.
Pretty darn impressive! Running a scan on one of my sites right now. This is nice!
This morning I am incredibly excited to introduce you to a project that the Wordfence team has been working on for almost a year. A few moments ago we officially launched Gravityscan.com, a malware and vulnerability scanner that works on any website. Gravityscan is free. You don’t need to install any software to use it. Simply visit https://www.gravityscan.com/ and enter your website URL. Then hit the “Launch Scan” button and Gravityscan will start examining your website to find out if you have been hacked, or if you have any security vulnerabilities. Go and run your first scan now! I’ll be here when you get back.
A Malware and Vulnerability Scanner for Websites
Gravityscan is designed specifically for websites. It is smart enough to detect if you are running WordPress, Joomla, Drupal, Magento or vBulletin. Then it carefully examines each of those applications you have installed to find out if they have any vulnerabilities. It even detects the extensions you are running in each application and checks them for vulnerabilities.
Gravityscan also performs a comprehensive scan for malware on your site. It does a great job if you simply run a regular scan on any website.
When WordPress 4.7 was released at the end of 2016 most of the response was around the new REST API endpoints. However, it was one of the smaller features that caught my eye: PDF preview images. In this post I take you through what that entails, why it’s useful, and how to get it set up on your own site.
When WordPress 4.7 was released at the end of 2016 most of the response was around the new REST API endpoints for posts, comments, terms, users, meta, and settings. However, it was one of the new smaller features that caught my eye: PDF preview images. In this post I’ll take you through what that entails, why it’s useful, and how to get it set up on your own site.
Real World Use
The new feature means WordPress now has the ability to create an image from the first page of a PDF when it is uploaded to the Media Library, as long as your server has the necessary requirements (more on that later). The release post boasts that the new feature allows you to “more easily distinguish between all your documents”, however I instantly recognized a better use for the preview image.
For the last 4 years my wife has been running an educational resources website which allows teachers and parents to download free PDF teaching resources. Naturally I was roped in to build and maintain the site! It runs on WordPress (of course) and is powered by Easy Digital Downloads. Every time she adds a new resource, the workflow includes:
Create the PDF resource
Use a program to generate an
I thought the name "Hookr" was clever, and not really that rude. But I think the plugin will benefit from being in the repo, and I'm curious to compare it to other hook-revealing plugins.
A year and a half after the initial release of the controversially-named Hookr plugin, its creator, Christopher Sanford, has rebranded the plugin as WP Inspect. The plugin provides a WordPress hook/API reference for developers and displays the actions and filters that fired as the page loaded. At launch Sanford was fairly committed to the Hookr brand, despite criticism, due to an oversaturated market for WordPress developer plugins. After 3,500 downloads, Sanford decided to rebrand and put the plugin in the official directory. “Based on the usage and positive feedback, I wanted to target a broader audience, which led to both the re-brand and submission to the WordPress Plugin repository,” Sanford said. “Leveraging the plugin repo, it will be much easier to coordinate/communicate updates, which is somewhat lacking today.”
The 1.0.0 release of WP Inspect includes mostly bug fixes and technical debt cleanup with two major enhancements:
WP Inspect will only be active under specific roles, with Administrators being enabled by default. (Previously it was active for everyone.)
Action detail now requires no additional clicks. (Before, if users wanted to inspect an action,
That is a lot of activity for a first day of a launch.
You only realize how incredibly impressive a team is on launch day. The Gravityscan team worked steadily for almost a year, consistently producing releases that added features as Gravityscan grew and became a product. Then, through the QA cycle, the team steadily burned down bugs and made the product rock-solid and ready for launch. Here Are the Numbers
In the first 24 hours since Gravityscan launched, we processed 26,153 scans.
12,596 unique sites have been added to users’ accounts.
Of those, 6,007 sites had their site ownership verified with Google Analytics, which is by far the fastest and easiest method to verify site ownership. Remember: you need to verify site ownership to see vulnerabilities. We do this to make sure unauthorized users can’t see your site’s vulnerabilities.
We already have our first Pro customers, and many have upgraded multiple sites – in some cases, those upgrades numbered in the double digits – to Gravityscan Pro for faster scans and all the other benefits of Pro.
We have a total of 4,052 registered users now – and climbing.
The Craziness of Launch Day
Yesterday morning starting at 7am Pacific Time, we launched. We let our
A bunch of challenging questions for Aleksander Kuczek about businesses and about the WordPress sphere.
The first time I met with Alexander Kuczek was through Adam Warner from FooPlugins, a common friend, who introduced us in a lunch we had during the last WordCamp US. Since then, Aleksander was in every event I had attended, so we had the chance to have a few more in-depth conversations and get to know each other. I got to know a super-sharp and very business-oriented guy. Attending conferences & meetups, I get to meet many business owners in the WordPress ecosystem, but the business focus I see in Aleksander is unique and something that I very much appreciate. So, I thought it would be cool to “showcase” Aleksander, since not enough people know him yet, and also pick his brain with WordPress business oriented questions.
Can we start by learning a little about you? Do you come from a technological background? How did you get into the field of web-development and websites management?
Web development at first was my passion and the way to express myself. Then I learned quickly that there are people willing to pay me money for what I was considering merely a hobby.
As the number of jobs was increasing, I started my freelance web development business in 2007. Back then, I
Official Wordpress for Android app got new media picker. This is just the beginning of the improvements you can expect to see.
There’s this… thing… in the Android WordPress app that we refer to as the “seven-item menu.” It would show up when trying to add a photo to confront you with a list of choices and we confess, we couldn’t always remember what option we wanted, either. As of the 7.3 release, the seven-item menu is gone! We’ve replaced it with an all-new — and much more streamlined — media picker. See your recent photos below your post, multi-select using long-touch, browse your site’s media library, take a picture — all without leaving the app.
We know that for many of you, your smartphone is your camera. We’re working to make the best place to manage your WordPress media the place where you keep it — your phone. This is just the beginning of the improvements you can expect to see. If you haven’t already, download WordPress for Android on Google Play, give it a try, and let us know what you think!
Missing out on the latest WordPress.com developments? Enter your email below to receive future announcements direct to your inbox. An email confirmation will be sent before you will start receiving notifications
With WordPress 4.8 offering a new simple image widget, these guys just launched an updated version to their popular Image Widget plugin. It has some nice new features, but it is a premium offering.
Images bring websites to life, so it’s no surprise one of the common questions asked by new WordPress users is: How do I add an image to my sidebar? You can manually add images using HTML code, but many people prefer the more convenient option of using a simple, lightweight plugin to do the work for them.
Introducing Image Widget Plus
While our classic Image Widget plugin focused on adding a single image to your widget area, Image Widget Plus provides additional options for you to control how your images display within the widget:
Lightbox to showcase images by filling the screen, dimming the rest of the page in the background and creating a true focal point for your photo.
Slideshow to display images in a series, allowing users to scroll through several photos or graphics without leaving the page.
Random Images to give your page a fresh feel by displaying a random image each time the page is loaded or refreshed.
Using the native WordPress media manager, Image Widget Plus gives you the power to create widgets to display logos, photos, custom ads, and more.
Best of all? We’ve kept Image Widget Plus just as simple and easy to use as possible.
Installing & Using Image Widget
The plugin decisions you make when developing a site may have repercussions that you might not have realized - especially when you need to export data.
I work with WordPress on a daily basis. Whether it’s design, theme development, customization or performing maintenance – the open source CMS makes up the vast majority of my workload. Over the years, I’ve really come to love the flexibility and the sheer number of options available that allow me to create just about any type of website. But, sometimes, all of that choice and flexibility means a piecemeal approach to site development – particularly if you’re (like me) not a master developer. What are the potential pitfalls? What in the world am I talking about? Don’t worry, I’ll explain!
A Collage of Functionality
When developing a WordPress website, we often have our own set of trusted plugins we turn to in order to add specific functionality.
Each plugin does its own thing and comes from a diverse group of developers. Each one of these developers has created their plugin in their own unique way.
Interesting, though it feels incomplete. Yes, it answers the why in the title, but it leaves out the how, where, etc.
What Is Elasticsearch? Elasticsearch is an incredibly fast, open-source, distributed, and highly-scalable solution for managing your searchable content. Elasticsearch can scale up with your site, because of its distributed architecture. This means that as your site grows, Elasticsearch grows with it; and it still provides performance benefits. One of the main advantages of Elasticsearch is to offload search to a separate service, which saves valuable server resources for your site.
Why Use Elasticsearch?
WordPress’ built-in search is not optimized on sites that operate with heavy search use or complex searches. That’s because WordPress’ search works by matching full sentences in post titles, any/all search terms in post titles, and full sentence matches in post content. It relies on MySQL and does not support complex relevancy calculations or advanced filtering. More complex queries also have the risk of utilizing significant server resources.
VVV2 Vagrant box with test site
Elasticsearch Vagrant box – base setup with only one cluster
WordPress version 4.7.3 with ~24471 posts
ElasticPress version 2.4.1 to integrate WP queries with ElasticSearch