Brian interviewed Matt Mullenweg and asked about stuff related to REST API and Calypso. Must read, must listen category :)
Matt Mullenweg is the co-founder of WordPress, and founder and CEO of Automattic. In this interview, we talk about their new WordPress.com editor, and more. I had the opportunity to interview Matt Mullenweg about an ambitious project that included more than a year and a half of development to create an all new WordPress.com interface, both for the web and a desktop app. The project was codenamed Calypso, and we talked about many aspects fo Calypso, as well as a variety of subjects that relate to it.
You can subscribe (and you should!) to the Post Status Draft Podcast on iTunes, Stitcher or via RSS. If you like the show, I’d highly appreciate if you share it with your friends and colleagues.
Why did you make such a big bet on Calypso?
Matt has talked for a while now about his vision that WordPress can become an “app platform”, and this is an example of what that meant to him.
He also notes how he’s always looking for things that will “move the needle” for greater WordPress adoption. We were both thinking about the same statistic: that roughly 96% of WordPress.com users (and probably a high number of WordPress.org users too) essentially abandon their websites after a short tenure. So
Do the things that light you up, while making other's lives awesome.
I grew up lower-middle class on the outskirts of Copenhagen. Anywhere outside of Scandinavia, the socioeconomic label would probably have been ‘poor’, but Danish safety nets and support systems did their best to suspend the facts and offer better. But don’t worry: This isn’t a rags-to-riches story. I loathe the I-did-it-all-by-myself heroic myth mongering. I got where I am thanks to government-sponsored maternity leave, child care, health care, education, and even cash assistance. I grew up in housing provided by AAB, a union-founded affordable housing association. And my mother was a damn magician at making impossible ends meet without belaboring her tricks (like biking an extra 15 minutes to find the lowest price on milk).
I took two important lessons away from this upbringing. First, as long as your basic needs are met, the quality of your lived experience is only vaguely related to the trappings of material success. While it wasn’t all roses and butter cookies, I had a great childhood. Second, I wouldn’t learn to appreciate the truth of the first lesson until I saw the other side of the golden fence. More on that in a bit.
I remember playing the “What would you do if you won a million
Brenda Barron shares her experience of creating a simple plugin for the first time. Great to see her excitement and taking her first steps into development!
Day 1: I Can Do This! Filled with naive enthusiasm and a positive attitude, I opened up a tutorial and set to work. It’s objective was to add Facebook Open Graph tags to the header of your site. The first step in Daniel’s tutorial requires creating a folder in your WordPress installation in the wp-content/plugins/ directory called my-facebook-tags.
Next, I needed to create a PHP file to go into this folder.
And from there, I just had to copy and paste some code from the tutorial into this file. I opened it up and slapped that code in there quick.
Okay, that went surprisingly well. Let’s head over to my dashboard and see if the plugin showed up.
Oh my gosh. It’s totally there. Am I a developer now? Okay, I think I’m getting ahead of myself. But still. As someone who only makes slight tweaks to themes now and then, this is pretty exciting.
I activated the plugin as per Daniel’s instructions. It doesn’t do anything yet, but it’s a live, functioning plugin.
From there, the tutorial goes on to discuss hooks. I’m not going to repeat everything Daniel talks about because that wouldn’t be a good use of our time here. However, I will say that the concept of hooks is surprisingly straightforward.
Based on my experience content marketing and reaching out to influencers is de-facto the best way to promote a WordPress product, particularly a plugin. Tom Ewer explains how to do it right.
A good article on Calypso telling what this means for self hosted WordPress websites.
But first… WordPress is still a PHP app
Some for good reason and others for not so good reasons It seams there’s a lot of misinformation in the community.
Sure you’ve seen it by now, but here’s my pal @photomatt on the decision to rebuild WordPress from scratch. https://t.co/htQSMMD9tt
— Jeffrey Zeldman (@zeldman) November 24, 2015
Basically, the way I see it, right now Calypso is the future of Automattic and WordPress.com (the company that offers hosted WP installs ), not the Open Source project WordPress.org.
Yes, you can:
One of the hardest things to do in technology is disrupt yourself. But we’re trying our darndest, and have some cool news to introduce today. When I took on the responsibility of CEO of Automattic January of last year, we faced two huge problems: our growth was constrained by lack of capital, and the technological foundations of the past decade weren’t strong enough for the demands of next one.
The first has a relatively straightforward answer. We found some fantastic partners, agreed on a fair price, issued new equity in the company to raise $160M, and started investing in areas we felt were high potential, like this year’s WooCommerce acquisition. This “war chest” gives us a huge array of options, especially given our fairly flat burn rate — we don’t need to raise money again to keep the company going, and any capital we raise in the future will be purely discretionary. (Since last May when the round happened we’ve only spent $3M of the investment on opex.)
The second is much harder to address. The WordPress codebase is actually incredible in many ways — the result of many thousands of people collaborating over 13 years — but some of WordPress’ greatest strengths were also holding
If you code PHP you should know about the PSRs
According to the PSR Workflow Bylaw each PSR has a status as it is being worked on. Once a proposal has passed the Entrance Vote it will be listed here as "Draft". Unless a PSR is marked as "Accepted" it is subject to change. Draft can change drastically, but Review will only have minor changes. Index by Status
Legend: A = Accepted | D = Draft | R = Review | V = Voting | X = Rejected
I work at iThemes, where we make software that helps make people’s lives awesome. I manage our developer, support, and sales teams as well as running the day to day operations of the company. My job is to put out fires before anyone else knows they’re burning (it’s easier when you’re the one that starts most of the fires).
My wife and I live in Oklahoma City, where the wind comes sweeping down the plains. We both love whiskey, and are particularly fond of the Scottish varieties. Outside the office, I work with wood, fly remote control quadcopters, and am an active archer and hunter. Ask me anything.
10% of top 1000 plugins have an unpatched security vulnerability. Spanning over 4,000,000 installs. I hope Marcin can open-source his tool and that it can be become a part of the plugin screening process at wordpress.org
░▒▓█ Introduction I've been making php static code analysis tool for a while and few months ago I ran it against ~1000 (more or less) top wordpress plugins.
Scanning results were manually verified in my spare time and delivered to official firstname.lastname@example.org from 04.07.2015 to 31.08.2015. Most of reported plugins are already patched, some are not. Vulnerable and not patched plugins are already removed from official wordpress plugin repository.
103 plugins vulnerable with more than 4.000.000 active installations in total (~30.000.000 downloads)
List of reported plugins (original reports contain verification/reproduce sections and urls to plugin wordpress repository entries, where you can also verify changelog) :
Cross-Site Scripting (XSS) in Duplicator 0.5.24 [original report - Sat, 15 Aug 2015]
Cross-Site Scripting (XSS) in All In One WP Security 3.9.7 [original report - Thu, 13 Aug 2015]
Cross-Site Scripting (XSS) in AddThis 5.0.12 [original report - Tue, 11 Aug 2015]
Cross-Site Scripting (XSS) in Display Widgets 2.03 [original report - Tue, 11 Aug 2015]
Blind SQL injection in Pretty Link Lite 1.6.7 [original report - Wed, 8 Jul 2015]
Blind SQL injection in WP Statistics
Calypso is probably more important than just a new UI. Written down some thoughts on it.
Calypso is the big news of the week and here are some random thoughts on it. 1. This is awesome
First and foremost, I am personally extremely excited about this. Not only because the new UI is really nice and pleasant to use but also because this finally shows the modern side of WordPress, or at least starts to. With VersionPress, if you abstract from all the technicalities and specific features, what we are trying to do is to modernize WordPress workflows, and I am always very pleased when I see a project in the same camp, be it this new UI, WP-CLI for a great scripted experience, roots.io always pushing for best practices, testing tools like WP_Mock and many other projects and initiatives. WordPress needs this and it’s great to see such a huge contribution from Automattic.
Technically, I am also very happy that Automatticians chose React. There are a myriad of options available today but I personally believe that React is the best bet in the long term (well, you could probably guess that as we use React for our UI too ).
2. But there’s more to it
After the initial reaction, about a hundred of different thoughts went through my head. What does this really mean? How will this change
Wordpress.com urges gov of Georgia to check email. They intended to take down ISIS's blog, instead blocked the whole site.
Keyboard shortcuts are available for common actions and site navigation.
Automattic has released a desktop app for Macs that allows you to control your WordPress.com website and (supposedly) any Jetpack connected site. More interesting is the re-imagined interface which isn't limited by backwards compatibility requirements.
Calypso is an ambitious Mac app from Automattic to bring the WordPress publishing and site management experience to the desktop. Today, Automattic released a WordPress.com Mac app, called Calypso, that allows users to manage both WordPress.com and Jetpack enabled websites using a desktop interface.
Here’s a quick video walkthrough:
The project has been going on for at least 18 months, according to the press release, with input from more than 140 Automatticians. Andy Peatling, who has been at Automattic since 2008, was the project lead.
If you could rebuild the admin from scratch
Matt Mullenweg said that Automattic wanted to completely rethink the WordPress admin experience, with the burden of backward compatibility that WordPress core must hold sacred:
What would we build if we were starting from scratch today, knowing all we’ve learned over the past 13 years of building WordPress? At the beginning of last year, we decided to start experimenting and see.
Calypso is an ambitious project. Not only does it bring the WordPress editing and publishing experience to a Mac app, but pretty much the entire WordPress.com admin experience is now available on the desktop, from stats to theme shopping.
Background story by Andy Peatling Calypso Project Lead - lots a interesting information.
A little over a year and a half ago, we had a dramatic rethink of the technologies and development workflows for building with WordPress. Our existing codebase and workflows had served us well, but ten years of legacy was beginning to seriously hinder us from building the modern, fast, and mobile-friendly experiences that our users expect. It seemed like collaboration between developers and designers was not firing on all cylinders. So we asked ourselves the question:
“What would WordPress.com look like if we were to start building it today?”
A New Beginning: Prototyping and Iterating
We’d asked ourselves this question before, and had our fair share of initiatives that didn’t result in useful change. Looking back, we were able to pinpoint our biggest mistakes: we’d been starting with a muddy vision, and were trying to solve an ill-defined problem. These insights really helped us change our approach.
One of the original Calypso prototype screens, listing all of your WordPress sites.
Calypso, the codename for this new WordPress admin interface project, started differently. To present a clear vision, we built an aspirational HTML/CSS design prototype — based on clearly defined product
In this 8th and final instalment of his popular series Hosting WordPress Yourself, Ashley releases a complete Nginx configuration example as a GitHub repo and shows how to better organize your config files for reusability.
In the previous post of this series Hosting WordPress Yourself, I covered security enhancements, automatic server updates, WooCommerce caching and automated server tasks. In this final post I will demonstrate a complete Nginx configuration tuned for WordPress powered sites. In addition to amalgamating all information from the previous 7 articles, best practices from various sources, such as the WordPress Codex and H5BP are included. The following example domains are also included, which each demonstrate a different scenario: singlesite.com – A basic WordPress install
ssl.com – WordPress on HTTPS
fastcgi-cache.com – WordPress with FastCGI page caching
multisite-subdomain.com – WordPress Multisite using subdomains
multisite-subdirectory.com – WordPress Multisite using subdirectories
Although this article may appear relatively short compared to previous articles, I hope the accompanying GitHub repo will provide a wealth of information. The configuration files contain inline documentation throughout and are structured in a way to reduce duplicate directives, which are common across multiple sites. This should allow you to quickly create new sites with sensible defaults out of the box, which
Let's find out the truth about DDoS protection. What can you and your host do.
After causing $1.7 billion in damages in the first documented DoS attack in early 2000 the techniques behind DDoS attacks have only become more potent. While many hosts tout DDoS protection, can they really do anything when faced with an attack of epic proportions? Denial of service (DoS) attacks are nothing new – according to Britannica the first documented case dates back to early 2000. Despite being the first one it was a doozie, Amazon and eBay were brought to their knees, resulting in an estimates $1.7 billion in damages.
Today DoS attacks have only become a lot more sophisticated, their potential to do damage has been multiplied many-fold as multiple networks can be utilized to create distributed attacks called DDoS attacks. Thankfully, the protection we have against these attempts to bring our sites down has also become a lot more potent, but can hosts really cope? The answer is not that simple.
What Is A DDoS Attack
To make sure we’re on the same page, let’s go through what denial of service actually is, the basics are pretty simple – even though there are quite a few sub-types. The simple goal of these attacks is to overwhelm your server with traffic.
That’s really all there
Built with Node.js and influenced by React by Facebook, here is a new way to manage your WordPress.org blogs with JetPack called Calypso! REST API everyone!
Guiding Principles While building out the new WordPress.com, we used a few key ideas to guide us along the way.
From the start, we wanted to build a single place to manage all of your WordPress.com and Jetpack-enabled sites, so you can focus on content — not administration.
Make a change to one of your WordPress sites, and see it reflected in real time, no page refreshes needed.
Create new sites on WordPress.com and manage your existing sites whenever you want to, on any device, wherever you are.
Certainly interesting to see what this all does and if it makes the interface better.
'We realized that the tech wasn't going to take us to the next decade.'
WordPress has come a long way since Matt Mullenweg co-founded the project in 2003 as an open source project to continue develping the defunct blogging software b2/cafelog. The software now powers about 25 percent of all websites, according to technology survey outfit W3Techs. Automattic, the company Mullenweg founded to commercialize WordPress, turned 10 years old this year and now employs more than 400 people. But the software
An interesting short write up from Tim Nash which highlights some of the things people like Tim, me and many others face when trying to sell a product or service. Unfortunately many are misled by the idea of "open source" and simply expect everything to be available for free. I've also had cases where I was providing free support and doing my best yet people still complain, and I am not sure I am not the only one.
Earlier today I posted a tweet, that sadly isn’t the first I’ve had regarding my REST API course from someone within the “community”. "Why is your course not free?" Tim "Because I need to eat" "Well that's not my problem" – Not sure this is an open source issue more human
— Tim Nash (@tnash) October 20, 2015
Ok nothing wrong with someone asking, and I’m sorry not all my content is free, I tried that I went hungry. Since then I have worked on building a model that is sustainable currently its not but that’s from many other factors.
My REST API course is charge for course, it’s £65 ($100) in it’s entirety it’s over 3 hours of video split into 5-15 minute lessons, with 3 large tutorial sections, access to me to ask questions and a tonne of bonus material. It’s new and shiny, and still being delivered.
I’ve also had teething problems, ironic ones related to running a membership site, and silly ones related to caching. Right now I’m in the middle of migrating the course to it’s own server and sub domain.
Right now, the course it one of my primary forms of income, not a side project, it’s helping to feed my baby. Now that fact is irrelevant to you potentially buying the course, but might
A clear, informative, professional project brief is crucial to WordPress development. See how to improve your it with these 3 visual types of content.
How many times have you heard the phrase "a picture is worth a thousand words" in your life? Let me guess: a couple of dozen times, at least. The usage of this sentence is so widespread that when people hear it, they don't pay attention to what these words communicate. Since they've already been told over and over again, it seems their meaning gets diluted over time. Besides the overly-stated cliché, what's important here to understand is the importance of visual elements when combined with specific text in communicating with others, especially when you're working with developers and designers.
Crafting a proper, complete, and informative project brief needs to be your top-priority activity when looking for outsourced WordPress development. I know somebody might think that creating a project brief shouldn't take too much time since it's not "actual development" and things aren't moving forward.
But let me tell you this: more than 45% of the tasks and projects posted here at Codeable are skipped because none of our 190+ WordPress experts wants to take them. The main reason being: project briefs are poorly executed, thus developers keep themselves away from those pain-in-the-ass type
This is by far one of the most comprehensive guide for someone who's getting into WordPress Theme Customizer.
This tutorial will explain in detail how to add support for the WordPress theme customizer to your WordPress theme. The theme customizer was introduced in WordPress version 3.4. It allows for an editing environment where theme options can be tried by the administrator before being applied to the live site. In this tutorial, we will look at exactly how this feature can be added to a theme. The WordPress theme we will use for this example will be the Responsive theme version 22.214.171.124, by Emil Uzelac. This is one of the featured themes on WordPress.org at the moment and should give us a solid starting point. However, please feel free to use whatever theme you’d like as you follow along.
Please note: There are a few different ways to implement the theme customizer and save the customization settings. This tutorial will focus on the theme_mod method. If you don’t know what that means, that’s okay. You don’t need to have any understanding the different methods to follow along with this tutorial.
1. Add the Theme Customizer page to the admin menu
Note: Step one is no longer necessary with new versions of WordPress. The customizer is automatically added to the menu even if the theme doesn’t
What if WordPress helped you… … update your pages and respond to comments from a desktop app? … manage all your WordPress blogs and sites in one spot, on any device? … spend less time on administration and uploading and more time creating? … find the best content people publish with WordPress every day? What if we rebuilt WordPress.com from the ground up to make it all possible?
What if WordPress.com helped you… … update your pages and respond to comments from a desktop app?
… manage all your WordPress blogs and sites in one spot, on any device?
… spend less time on administration and uploading and more time creating?
… find the best content people publish with WordPress every day?
What if we rebuilt WordPress.com from the ground up to make it all possible?
Welcome to the new WordPress.com. We can’t wait to see what you create.
Your home on the web has a home in your dock
You’ve already been using parts of the new WordPress.com, in the new editor, improved stats pages, and refreshed Reader. You deserve web tools as powerful and flexible as your ideas.
The WordPress.com for Mac app is the next step in a suite of improvements that help you realize your vision on the web — and it’s an app you already know how to use. Look familiar?
Use the desktop app to focus on your content and design with no other browser tabs to distract you — or to keep your sites sidelined but accessible. Build your site anywhere, in whatever way helps you get your best work done: the app is powered by the same technology that runs WordPress.com, creating a seamless experience for publishing
The article works for anything really, starting a business is hard. So sit tightly and work on creating that reach.
One person in a garage making millions online. Any business is tough at the best of times. Really, it is. That’s not a cliché I use lightly. I hate clichés but this one is spot on. At the best times in your business you’ll still be fighting for your position, fighting to grow and fighting to stay alive. Just ask Kodak, Polaroid or VW.
Then ecommerce arrived and with it, many myths.
Myths so vast and so widely and blindly believed that they haven’t gone away.
I’d liked to dispel some of the myths around ecommerce and this article will try to do just that.
My experiences at Nic Harry — The luxury sock company — have taught me some long and hard lessons about ecommerce (and retail) as a business. Nothing has been easy or simple and almost everything has come with an immense amount of work.
Here are the lies we believe and the truth behind them.
Ecommerce is passive income.
I have never been more active in my entire life.
Since I started Nic Harry I have worked more, thought longer, built aggressively, and hustled harder than I have on anything else. Ever.
Ecommerce is not for the lazy. Retail is not for weak.
If you are selling a digital product, fine, maybe you’ll get away with less work.
Hey all, just to give you a heads up for the AMA taking place next week, which will be on a Tuesday this week, (24th Nov) and start 8AM Central Time.
Our guest on Tuesday will be Matt Danner, Chief Operating Officer at iThemes, which is behind an impressive range of products and training such as,
- BackupBuddy - The original WordPress backup plugin
- iThemes Security Pro - Makes it easy to secure & protect your WordPress site
- iThemes Sync – Helps manage updates for your WordPress sites all in one place
- iThemes Exchange – An easy to use WordPress ecommerce plugin
- iThemes Builder – Helps people build and design WordPress sites quickly and easily with a DIY WordPress theme framework
- iThemes Training – Has over 500 hours of professional WordPress video training
Matt started working at iThemes in 2009 answering sales emails! After a few months he realised “I loved developing and solving problems, and decided I wanted to do theme development”.
He spent his spare time (and even dropped out of college) to learn everything he could about web development and eventually he started developing the front end for all the themes that were released on iThemes. After two years of being with iThemes, he was named Chief Operating Officer, a role that he's now had for the last four years.
You can learn more about Matt and what he's up to, at http://mattdanner.net/blog/ and https://twitter.com/mattdanner. Or you can check out https://ithemes.com
Our guest next week (Wednesday 02/12/2015) will be the guy Matt calls boss! Cory Miller, Founder and CEO of iThemes.
The title is a bit misleading sorry for that.
I recently got the "WordPress 4.4 is imminent. Are your plugins ready?" email. A nice reminder that immediately puts me to depression - because I have 27 plugins in the repository.
Imagine if it took you just 10 minutes to test each one, and update the readme text, we are talking about 5 hours of time (!) to do something as simple and as mundane.
What if there was a service out there that would do this for you. I would pay for it. Or even better an automated service where you just enter the plugin names, it automatically runs them on the newest WordPress (checking the error log, if it breaks the site/admin etc), updates the readme and given you trust it even commits this for you all in about 2 minutes.
Just thinking out loud.