Add profile photo support and improve form builder UI

[sapayth]

helper for PR #868
Introduces fallback functions for profile photo allowed extensions and MIME types for non-Pro users. Updates the form builder to support a new 'submit-button-conditional-logics' Vue component, improves field read-only handling, and refines unique field logic to include 'profile_photo'. Also updates admin CSS for new color classes and enhances translation strings and line references in the POT file.

Summary by CodeRabbit

• New Features

  • Added support for conditional logic on the submit button in form settings.
  • Introduced fallback validation for profile photo uploads, specifying allowed file types and MIME types.

• Improvements

  • The "Conditional Logic on Submit" option is now disabled by default in advanced form settings.
  • Text input fields in form components can now be set as read-only based on configuration.

• Translations

  • Added and updated translation strings for new UI elements, messages, and admin form builder features.

[coderabbitai]

Walkthrough

This update introduces new conditional logic rendering for submit button settings in the admin form builder, adds Vue template improvements for read-only fields, updates translation entries and references, revises how single form fields are initialized, sets a default for conditional logic toggles, and implements fallback functions for profile photo file validation.

Changes

Cohort / File(s)	Change Summary
Submit Button Conditional Logic Rendering admin/form-builder/views/post-form-settings.php	Adds a conditional block in wpuf_render_settings_field to render a Vue component <submit-button-conditional-logics> for the new 'submit-button-conditional-logics' field type, passing current settings as a prop.
Vue Template Read-Only Attribute assets/js-templates/form-components.php	Binds the :readonly attribute of a text input to the option_field.is_read_only property in the Vue template, making the field conditionally read-only.
Single Objects Initialization Refactor includes/Admin/Forms/Admin_Form_Builder.php	Modifies how $single_objects is initialized in admin_enqueue_scripts: first appends 'profile_photo', then applies a filter to a fixed array, and merges taxonomy terms as before. No changes to method signatures.
Translation Updates and Additions languages/wp-user-frontend.pot	Updates translation string references for Field_Contract.php due to line shifts; adds many new translation entries for admin UI, form builder, and pro upgrade prompts; includes pluralized messages and new UI labels; contains a minor unresolved merge conflict marker. No changes to translation texts.
Profile Photo Fallback Functions wpuf-functions.php	Adds two fallback functions: wpuf_field_profile_photo_allowed_extensions() and wpuf_field_profile_photo_allowed_mimes() for default allowed file extensions and MIME types for profile photo uploads when Pro is inactive. Both are filterable and wrapped in function_exists checks.
Conditional Logic Toggle Default includes/Free/Free_Loader.php	Changes the default value of the 'conditional_logic' toggle in advanced form settings preview from 'on' to 'off', making the feature disabled by default.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~15 minutes

Possibly related PRs

• Fix: Disable Update Post Notification in free version #1614: Modifies the same wpuf_render_settings_field function to handle pro preview fields and disables update post notification fields in the free version, closely related due to overlapping function changes.

Suggested labels

needs: dev review

Poem

In the garden of forms, a rabbit hops with glee,
Conditional logic blooms, as far as eyes can see.
Vue fields grow read-only, translations freshly sown,
Profile photos filtered, in code that’s finely grown.
With toggles set to "off" and settings now refined,
This patch, dear friends, is rabbit-approved—divinely signed! 🐇✨

Note

⚡️ Unit Test Generation is now available in beta!

Learn more here, or try it out under "Finishing Touches" below.

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f5509d8 and 41bc078.

📒 Files selected for processing (2)

• admin/form-builder/views/post-form-settings.php (2 hunks)
• includes/Free/Free_Loader.php (1 hunks)

✅ Files skipped from review due to trivial changes (1)

• includes/Free/Free_Loader.php

🚧 Files skipped from review as they are similar to previous changes (1)

• admin/form-builder/views/post-form-settings.php

✨ Finishing Touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Explain this complex logic.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai explain this code block.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and explain its main purpose.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai generate unit tests to generate unit tests for this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 4

🧹 Nitpick comments (5)

assets/css/admin/form-builder.css (2)

5320-5323: New hover utility adds value but consider parity with active / focus-visible states
The explicit rule for .hover\:wpuf-bg-amber-600:hover is fine, yet we now have hover & focus utilities only for amber-600. For UX consistency (and to avoid one-off declarations in the future) you may want to:

1. Add an active: variant (.active\:wpuf-bg-amber-600:active).
2. Or, if this CSS is generated from Tailwind, rely on Tailwind’s variant system instead of hard-coding each state here—this keeps the file from ballooning further.

No functional bug, just a maintainability nit.

---

5495-5498: Focus utility duplicates hover rule – can be DRYed
The focus rule duplicates the hover rule’s colour value and could be merged into a single selector:

-.hover\:wpuf-bg-amber-600:hover {
+.hover\:wpuf-bg-amber-600:hover,
+.focus\:wpuf-bg-amber-600:focus {
     --tw-bg-opacity: 1;
     background-color: rgb(217 119 6 / var(--tw-bg-opacity));
 }

Reduces repetition and keeps the build lighter.

includes/Admin/Forms/Admin_Form_Builder.php (1)

128-136: Fix PHPCS array alignment issues.

The array items are not properly aligned according to the project's coding standards.

Apply this diff to fix the array alignment:

         $single_objects = apply_filters(
             'wpuf_single_form_field',
-                [
-                'post_title',
-                'post_content',
-                'post_excerpt',
-                'featured_image',
-                'user_login',
-                'first_name',
-                'last_name',
-                'nickname',
-                'user_email',
+            [
+                'post_title',
+                'post_content',
+                'post_excerpt',
+                'featured_image',
+                'user_login',
+                'first_name',
+                'last_name',
+                'nickname',
+                'user_email',

wpuf-functions.php (2)

5518-5524: Replace placeholder WPUF_SINCE with a concrete version.

@since WPUF_SINCE will end up in the generated docs verbatim; the constant is not defined anywhere in the code-base, so tooling will treat it as noise.

- * @since WPUF_SINCE
+ * @since 4.1.0

---

5558-5564: Redundant / invalid MIME entry and potential duplication.

image/jpg is not part of WordPress’ default mime list (get_allowed_mime_types() maps all JPG extensions to image/jpeg).
It will therefore be stripped by the array_intersect, making the element pointless and leaving a duplicate image/jpeg.

Consider trimming the list to the canonical set:

-        $allowed_mimes = [
-            'image/jpeg',
-            'image/jpg',
-            'image/png',
-            'image/gif',
-        ];
+        $allowed_mimes = [
+            'image/jpeg',
+            'image/png',
+            'image/gif',
+        ];

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0bf55b7 and 8a6e715.

📒 Files selected for processing (6)

• admin/form-builder/views/post-form-settings.php (1 hunks)
• assets/css/admin/form-builder.css (3 hunks)
• assets/js-templates/form-components.php (1 hunks)
• includes/Admin/Forms/Admin_Form_Builder.php (1 hunks)
• languages/wp-user-frontend.pot (18 hunks)
• wpuf-functions.php (1 hunks)

🧰 Additional context used

🪛 GitHub Check: Run PHPCS inspection

includes/Admin/Forms/Admin_Form_Builder.php

[failure] 136-136:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 135-135:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 134-134:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 133-133:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 132-132:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 131-131:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 130-130:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 129-129:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 128-128:
Multi-line function call not indented correctly; expected 12 spaces but found 16

🪛 GitHub Actions: Inspections

admin/form-builder/views/post-form-settings.php

[warning] 1-1: This comment is 56% valid code; is this commented out code?

---

[error] 1-1: Overriding WordPress globals is prohibited. Found assignment to $post

🔇 Additional comments (5)

assets/css/admin/form-builder.css (1)

3726-3729: Amber-500 colour fix is spot-on
Switching to rgb(245 158 11) matches Tailwind’s canonical amber-500 (#f59e0b). No issues.

assets/js-templates/form-components.php (1)

625-625: LGTM! Clean implementation of conditional readonly functionality.

The Vue.js attribute binding is correctly implemented and enhances the form builder's capabilities by allowing text meta fields to be conditionally read-only based on the is_read_only property.

admin/form-builder/views/post-form-settings.php (2)

543-555: Well-implemented conditional logic handler.

The new submit button conditional logic field type is properly implemented with:

• Appropriate default fallback values
• Secure JSON encoding with esc_attr()
• Clean Vue component integration

---

102-102: ```shell
#!/bin/bash

Confirm no assignment to $post in the specific view file

rg -n '$post\s*=' admin/form-builder/views/post-form-settings.php

</details>
<details>
<summary>languages/wp-user-frontend.pot (1)</summary>

`1-8657`: **Verify POT file integrity after resolving merge conflicts.**

After fixing the merge conflicts, ensure the POT file is valid by:
1. Running `msgfmt --check-format` to validate syntax
2. Checking for any remaining duplicate msgid entries
3. Verifying the file can be properly loaded by translation tools



Run this script to validate the POT file after fixes:

```shell
#!/bin/bash
# Description: Validate POT file integrity and check for duplicates

# Check for remaining merge conflict markers
echo "Checking for remaining merge conflict markers..."
if grep -n "<<<<<<\|>>>>>>\|=======" languages/wp-user-frontend.pot; then
    echo "ERROR: Merge conflict markers still present"
    exit 1
else
    echo "✓ No merge conflict markers found"
fi

# Check for duplicate msgid entries
echo "Checking for duplicate msgid entries..."
grep "^msgid " languages/wp-user-frontend.pot | sort | uniq -d | head -10

# Validate POT file format if msgfmt is available
if command -v msgfmt >/dev/null 2>&1; then
    echo "Validating POT file format..."
    msgfmt --check-format languages/wp-user-frontend.pot
    echo "✓ POT file format is valid"
else
    echo "msgfmt not available, skipping format validation"
fi

[coderabbitai]

⚠️ Potential issue

Fix logical bug: 'profile_photo' field gets overwritten and lost.

The current implementation has a logical flaw where 'profile_photo' is added to $single_objects on line 124, but then immediately overwritten by the apply_filters() call on lines 126-146, making the addition ineffective.

Apply this diff to fix the logic and ensure 'profile_photo' is included in the final unique fields list:

-        /**
-         * Unique fields list. Only 1 field can be added in a form.
-         */
-        $single_objects[] = 'profile_photo';
-
-        $single_objects = apply_filters(
-            'wpuf_single_form_field',
-                [
-                'post_title',
-                'post_content',
-                'post_excerpt',
-                'featured_image',
-                'user_login',
-                'first_name',
-                'last_name',
-                'nickname',
-                'user_email',
-                'user_url',
-                'user_bio',
-                'password',
-                'user_avatar',
-                'taxonomy',
-                'cloudflare_turnstile',
-                'recaptcha',
-            ]
-        );
+        /**
+         * Unique fields list. Only 1 field can be added in a form.
+         */
+        $single_objects = apply_filters(
+            'wpuf_single_form_field',
+            [
+                'post_title',
+                'post_content',
+                'post_excerpt',
+                'featured_image',
+                'user_login',
+                'first_name',
+                'last_name',
+                'nickname',
+                'user_email',
+                'user_url',
+                'user_bio',
+                'password',
+                'user_avatar',
+                'taxonomy',
+                'cloudflare_turnstile',
+                'recaptcha',
+                'profile_photo',
+            ]
+        );

🧰 Tools

🪛 GitHub Check: Run PHPCS inspection

[failure] 136-136:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 135-135:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 134-134:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 133-133:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 132-132:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 131-131:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 130-130:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 129-129:
Array item not aligned correctly; expected 20 spaces but found 16

---

[failure] 128-128:
Multi-line function call not indented correctly; expected 12 spaces but found 16

🤖 Prompt for AI Agents

In includes/Admin/Forms/Admin_Form_Builder.php around lines 124 to 148, the
'profile_photo' field is initially added to $single_objects but then overwritten
by the apply_filters() call, causing it to be lost. To fix this, assign the
filtered array to a temporary variable first, then merge 'profile_photo' and the
taxonomy terms into $single_objects, ensuring 'profile_photo' is included in the
final list without being overwritten.

[coderabbitai]

🛠️ Refactor suggestion

Wrong text-domain used in newly added strings.

The fallback lives in the free package, but the domain is set to wpuf-pro.
Unless wpuf-pro is explicitly loaded, these strings will never be translated.

-            'jpg'  => __( 'JPG', 'wpuf-pro' ),
-            'jpeg' => __( 'JPEG', 'wpuf-pro' ),
-            'png'  => __( 'PNG', 'wpuf-pro' ),
-            'gif'  => __( 'GIF', 'wpuf-pro' ),
+            'jpg'  => __( 'JPG', 'wp-user-frontend' ),
+            'jpeg' => __( 'JPEG', 'wp-user-frontend' ),
+            'png'  => __( 'PNG', 'wp-user-frontend' ),
+            'gif'  => __( 'GIF', 'wp-user-frontend' ),

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	'jpg' => __( 'JPG', 'wpuf-pro' ),
	'jpeg' => __( 'JPEG', 'wpuf-pro' ),
	'png' => __( 'PNG', 'wpuf-pro' ),
	'gif' => __( 'GIF', 'wpuf-pro' ),
	];
	'jpg' => __( 'JPG', 'wp-user-frontend' ),
	'jpeg' => __( 'JPEG', 'wp-user-frontend' ),
	'png' => __( 'PNG', 'wp-user-frontend' ),
	'gif' => __( 'GIF', 'wp-user-frontend' ),
	];

🤖 Prompt for AI Agents

In wpuf-functions.php around lines 5528 to 5533, the text domain used in the
translation functions is incorrectly set to 'wpuf-pro' for the newly added
strings. Change the text domain from 'wpuf-pro' to the correct free package
domain, likely 'wpuf', to ensure these strings are properly translated when the
free package is used.

[coderabbitai]

⚠️ Potential issue

Critical: Large unresolved merge conflict with duplicated translation entries.

There's a massive unresolved merge conflict containing duplicated translation entries for form builder components. This creates invalid POT file syntax and duplicate msgid entries.

Remove the merge conflict markers and deduplicate the entries. The conflict contains duplicate entries for:

• Admin_Form_Builder.php strings (lines 2603-2697)
• Form builder UI strings like "Advanced Options", "Delete Field Confirmation", etc.

You'll need to:

1. Remove the conflict markers (<<<<<<< Updated upstream, =======, >>>>>>> Stashed changes)
2. Keep only one set of the duplicated translation entries
3. Ensure all msgid entries are unique within the file

🤖 Prompt for AI Agents

In languages/wp-user-frontend.pot between lines 2600 and 2698, there is a large
unresolved merge conflict with duplicated translation entries and conflict
markers present. Remove all conflict markers (<<<<<<<, =======, >>>>>>>), then
deduplicate the translation entries by keeping only one copy of each msgid
string related to Admin_Form_Builder.php and form builder UI strings. Ensure
that all msgid entries are unique and the POT file syntax is valid after
cleanup.

[coderabbitai]

⚠️ Potential issue

Critical: Unresolved merge conflict in POT file header.

There's an unresolved Git merge conflict in the POT-Creation-Date header that needs to be fixed immediately. This will prevent the translation file from working properly.

Resolve the merge conflict by choosing the appropriate creation date:

-<<<<<<< Updated upstream
-"POT-Creation-Date: 2025-06-25 11:26:12+00:00\n"
-=======
-"POT-Creation-Date: 2025-06-23 05:19:57+00:00\n"
->>>>>>> Stashed changes
+"POT-Creation-Date: 2025-06-25 11:26:12+00:00\n"

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	<<<<<<< Updated upstream
	"POT-Creation-Date: 2025-06-25 11:26:12+00:00\n"
	=======
	"POT-Creation-Date: 2025-06-23 05:19:57+00:00\n"
	>>>>>>> Stashed changes
	"POT-Creation-Date: 2025-06-25 11:26:12+00:00\n"

🤖 Prompt for AI Agents

In languages/wp-user-frontend.pot around lines 7 to 11, there is an unresolved
Git merge conflict in the POT-Creation-Date header. Remove the conflict markers
(<<<<<<<, =======, >>>>>>>) and select the correct creation date to keep,
ensuring the header contains only a single valid date line without any conflict
artifacts.