Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3481458

Timestamp:

03/12/2026 07:52:40 PM (33 hours ago)

Author:

vectoron

Message:

v2.11.7: Fix multiple JSON-LD schema rendering, fix Elementor hide_title suppressing post titles

Location:

vectoron/trunk

Files:

: 6 edited

includes/settings-page.php (modified) (1 diff)
integrations/elementor.php (modified) (1 diff)
integrations/schema-sync.php (modified) (5 diffs)
readme.txt (modified) (2 diffs)
vectoron-api.php (modified) (1 diff)
vectoron.php (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

vectoron/trunk/includes/settings-page.php

-                      r3451062
+                      r3481458
                         vectoron_debug( 'update_post_meta(_elementor_edit_mode): ' . vectoron_debug_export( $result_mode ) );
                         vectoron_debug( 'update_post_meta(_elementor_version): ' . vectoron_debug_export( $result_version ) );
+                        // Remove hide_title from page settings — preserve other user-configured settings.
+                        $page_settings = get_post_meta( $test_post_id, '_elementor_page_settings', true );
+                        if ( is_array( $page_settings ) && isset( $page_settings['hide_title'] ) ) {
+                            unset( $page_settings['hide_title'] );
+                            if ( empty( $page_settings ) ) {
+                                delete_post_meta( $test_post_id, '_elementor_page_settings' );
+                            } else {
+                                update_post_meta( $test_post_id, '_elementor_page_settings', $page_settings );
+                            }
+                        }
                         // Clear Elementor CSS cache.

vectoron/trunk/integrations/elementor.php

-                      r3462938
+                      r3481458
+        }
+        // Set page settings to hide title (matches working posts 687, 904).
+        // Without this, pages show with default WordPress title styling ("unstyled").
+        // Value is serialized PHP array: array('hide_title' => 'yes')
+        $page_settings = array( 'hide_title' => 'yes' );
+        update_post_meta( $post_id, '_elementor_page_settings', $page_settings );
+        // Remove hide_title from page settings — let the theme handle title rendering.
+        // Setting hide_title=yes suppresses the title entirely on themes that don't
+        // render it outside of Elementor. Use selective unset to preserve any other
+        // user-configured page settings (custom_css, padding, background_overlay, etc.).
+        $page_settings = get_post_meta( $post_id, '_elementor_page_settings', true );
+        if ( is_array( $page_settings ) && isset( $page_settings['hide_title'] ) ) {
+            unset( $page_settings['hide_title'] );
+            if ( empty( $page_settings ) ) {
+                delete_post_meta( $post_id, '_elementor_page_settings' );
+            } else {
+                update_post_meta( $post_id, '_elementor_page_settings', $page_settings );
+            }
+        }
         // Clear Elementor CSS cache for this post.

vectoron/trunk/integrations/schema-sync.php

-                      r3459361
+                      r3481458
     // Try JSON first (Tier 1: Vectoron plugin API, Tier 2: Native WP REST API).
     $data = json_decode( $request_body, true );
+    if ( json_last_error() !== JSON_ERROR_NONE ) {
+        $data = null; // Will fall through to Tier 3 form-encoded fallback below.
+    }
     // Fall back to form-encoded (Tier 3: AJAX proxy sends rest_body as form field).
 …
         // phpcs:ignore WordPress.Security.NonceVerification.Missing, WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
         $data = json_decode( wp_unslash( $_POST['rest_body'] ), true );
+        if ( json_last_error() !== JSON_ERROR_NONE ) {
+            $data = null;
+        }
+    }
 …
     // even if re-decode fails downstream.
     $clean_json = wp_json_encode( $decoded, JSON_UNESCAPED_UNICODE );
+    if ( false === $clean_json ) {
+        vectoron_debug( "[Schema Sync] wp_json_encode failed at storage for post {$post_id}" );
+        return;
+    }
     update_post_meta( $post_id, '_vectoron_schema_markup', $clean_json );
     vectoron_debug( "[Schema Sync] Stored schema_markup from API for post {$post_id} (" . strlen( $clean_json ) . ' chars)' );
 …
+    }
+    // Flexible regex: handles extra attributes in any order.
+    if ( preg_match( '/<script\b[^>]*\btype=["\']application\/ld\+json["\'][^>]*>(.*?)<\/script>/s', $content, $matches ) ) {
+        $schema_json = trim( $matches[1] );
+        $post_id     = get_the_ID();
+        // Validate JSON before storing.
+        $decoded = json_decode( $schema_json );
+        if ( json_last_error() === JSON_ERROR_NONE && ! empty( $schema_json ) ) {
+    // Flexible regex: handles extra attributes in any order. Uses find_all equivalent (preg_match_all)
+    // to capture ALL JSON-LD tags — matches Python extract_json_ld_schema() behavior for multi-schema articles.
+    if ( preg_match_all( '/<script\b[^>]*\btype=["\']application\/ld\+json["\'][^>]*>(.*?)<\/script>/s', $content, $matches ) ) {
+        $post_id = get_the_ID();
+        $schemas = array();
+        foreach ( $matches[1] as $raw_json ) {
+            $schema_json = trim( $raw_json );
+            if ( empty( $schema_json ) ) {
+                continue;
+            }
+            $decoded_item = json_decode( $schema_json );
+            if ( json_last_error() === JSON_ERROR_NONE ) {
+                $schemas[] = $decoded_item;
+            }
+        }
+        if ( ! empty( $schemas ) ) {
+            // Store as JSON array if multiple schemas, single object if one — matches Python behavior.
             // SECURITY: Do NOT use JSON_UNESCAPED_SLASHES — matches output policy.
+            $clean_json = wp_json_encode( $decoded, JSON_UNESCAPED_UNICODE );
+            update_post_meta( $post_id, '_vectoron_schema_markup', $clean_json );
+            vectoron_debug( "[Schema Sync] Migrated inline schema for post {$post_id} (" . strlen( $clean_json ) . ' chars)' );
+        }
+        // Strip ALL JSON-LD script tags from content (even if JSON invalid).
+        $content = preg_replace( '/<script\b[^>]*\btype=["\']application\/ld\+json["\'][^>]*>.*?<\/script>/s', '', $content );
+            $to_store   = count( $schemas ) === 1 ? $schemas[0] : $schemas;
+            $clean_json = wp_json_encode( $to_store, JSON_UNESCAPED_UNICODE );
+            if ( false === $clean_json ) {
+                // Do NOT strip content — preserve inline schemas since storage failed.
+                vectoron_debug( '[Schema Sync] wp_json_encode failed at storage for post ' . $post_id );
+            } else {
+                update_post_meta( $post_id, '_vectoron_schema_markup', $clean_json );
+                vectoron_debug( '[Schema Sync] Migrated ' . count( $schemas ) . " inline schema(s) for post {$post_id} (" . strlen( $clean_json ) . ' chars)' );
+                // Strip only after successful storage — prevents data loss if storage fails.
+                $content = preg_replace( '/<script\b[^>]*\btype=["\']application\/ld\+json["\'][^>]*>.*?<\/script>/s', '', $content );
+            }
+        } else {
+            // All found schema tags failed JSON decode — preserve content unchanged to avoid data loss.
+            vectoron_debug( '[Schema Sync] WARNING: ' . count( $matches[1] ) . ' inline schema tag(s) found but none decoded successfully for post ' . get_the_ID() . '. Content preserved.' );
+        }
+    }
 …
     // Re-decode and re-encode to prevent XSS (sanitize stored JSON).
+    $decoded = json_decode( $schema );
+    if ( json_last_error() === JSON_ERROR_NONE ) {
+    $decoded = json_decode( $schema, true );
+    if ( json_last_error() !== JSON_ERROR_NONE || ! is_array( $decoded ) || empty( $decoded ) ) {
+        return;
+    }
+    // Emit one <script> per schema object.
+    // Distinguish a JSON array of schema objects from a single schema object by checking
+    // whether the decoded PHP array is sequential (integer-keyed = JSON array of schemas)
+    // or associative (string-keyed = single schema object like {"@type":"FAQPage",...}).
+    // JSON-LD schema objects always use string keys (@type, @context, etc.) — never sequential
+    // integer keys — so this check is reliable and handles backward compat with legacy stored data.
+    $is_schema_list = ( array_keys( $decoded ) === range( 0, count( $decoded ) - 1 ) );
+    $items          = $is_schema_list ? $decoded : array( $decoded );
+    foreach ( $items as $schema_item ) {
         // SECURITY: Do NOT use JSON_UNESCAPED_SLASHES in HTML output context.
         // json_encode() escapes "/" as "\/" by default, which prevents </script>
         // tag injection (XSS) when JSON values contain attacker-controlled strings.
         // The "\/" is valid JSON and parsed correctly by all JSON-LD consumers.
+        $safe_json = wp_json_encode( $decoded, JSON_UNESCAPED_UNICODE );
+        // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- JSON is re-encoded via wp_json_encode() with slash escaping for XSS prevention.
+        $safe_json = wp_json_encode( $schema_item, JSON_UNESCAPED_UNICODE );
+        if ( false === $safe_json ) {
+            vectoron_debug( '[Schema Sync] wp_json_encode failed for schema item on post ' . get_the_ID() );
+            continue;
+        }
+        // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped -- wp_json_encode() re-encodes JSON with slash escaping (XSS prevention). false return guarded above.
         echo '<script type="application/ld+json">' . $safe_json . '</script>' . "\n";
+    }

vectoron/trunk/readme.txt

-                      r3469529
+                      r3481458
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 2.11.6
+Stable tag: 2.11.7
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 == Changelog ==
+= 2.11.7 =
+* Fixed: Multiple JSON-LD schema tags (e.g. FAQPage + ItemList for listicle articles) now all render in `<head>`
+* Previously only the first schema tag was extracted; the second was left in the content body as visible text
+* The `wp_head` output now emits one `<script type="application/ld+json">` per schema object
+* Fixed: Elementor sync no longer sets `hide_title=yes` in page settings, which caused post titles to be hidden on themes that don't render titles outside Elementor
+* On re-sync, existing `hide_title` is surgically removed while preserving other Elementor page settings
 = 2.11.6 =

vectoron/trunk/vectoron-api.php

r3469529	r3481458
1272	1272	$response = array(
1273	1273	'plugin' => 'Vectoron API',
1274		'version' => '2.11.6',
	1274	'version' => '2.11.7',
1275	1275	'status' => 'active',
1276	1276	'endpoints' => array(

vectoron/trunk/vectoron.php

r3469529	r3481458
3	3	* Plugin Name: Vectoron
4	4	* Description: Provides the [vectoron_article] shortcode to disable wpautop and load assets for custom content like the FAQ accordion and GA4 tracking. Includes REST API endpoints for external content management and ACF integration.
5		* Version: 2.11.6
	5	* Version: 2.11.7
6	6	* Author: Vectoron
7	7	* Author URI: https://vectoron.ai

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory