Changeset 44906

Timestamp:

03/15/2019 04:26:55 PM (6 years ago)

Author:

desrosj

Message:

Privacy: Allow new requests to be created after a user’s existing one has been completed.

When dealing with personal data exports and erasure requests, it is important to have a log of all the requests for a specific person. This is often required to confirm when and how many times requests were completed and fulfilled properly.

This change allows a new request to be created after a previous data request has reached completed status (request-completed) instead of requiring admins to delete or re-initiate the existing request. The latter approach removes the historical log of requests for that user when creating a new request.

Full unit tests for the wp_create_user_request() function are also included.

Props garrett-eclipse, cc0a, birgire, desrosj.
Fixes #44707.

Location:

trunk

Files:

• src/wp-includes/user.php (modified) (2 diffs)
• tests/phpunit/tests/privacy/wpCreateUserRequest.php (added)

trunk/src/wp-includes/user.php

@@ -3331 +3331 @@
             'post_name__in' => array( $action_name ),  // Action name stored in post_name column.
             'title'         => $email_address, // Email address stored in post_title column.
-            'post_status'   => 'any',
+            'post_status'   => array(
+                'request-pending',
+                'request-confirmed',
+            ),
             'fields'        => 'ids',
         )
@@ -3337 +3340 @@
 
     if ( $requests_query->found_posts ) {
-        return new WP_Error( 'duplicate_request', __( 'A request for this email address already exists.' ) );
+        return new WP_Error( 'duplicate_request', __( 'An incomplete request for this email address already exists.' ) );
     }