Wordpress Plugin Manager FAQ

WP Users FAQ

How to use the Wordpress Plugin Database?

There are three ways to use the Plugin Database, you can either:

Use the website repository, by browsing to: http://wp-plugins.net/
Install and use the local Wordpress Plugin DB client cum Plugin Manager, called wp-plugin-mgr, by downloading this file, dropping it into your Wordpress root folder and browsing to it (couldn't be easier).
Now, there is also an RSS feed listing new releases and updates.

Why use wp-plugin-mgr?

Because in addition to the same plugin information that are available in the website version, the local client will also help you keep track of installed plugins and notify you of any new plugins available or whenever an upgrade to a plugin is posted. In a word: you get customized service whereas the website is the same for everybody.

One major feature of wp-plugin-mgr is also that it enables one-click installs and removals.

What is a "one-click install"?

Amazingly enough, a "one-click install" is an install you can perform by just clicking once. More exactly, once you have installed and configured wp-plugin-mgr (configuration takes roughly 15 seconds and only requires you to know at least your FTP login and password), you will see an additional button in the plugin list, beside the download button, named "one-click install". Clicking on this button will automatically download, install and activate the designated plugin. It will also add it to a list used to keep track and notify you of any future upgrades.

Once installed, a plugin can be removed, in exactly the same way, by clicking on "one-click remove".

Are One-click Installs safe?

When setting up wp-plugin-mgr, you will be asked to choose between two configuration modes: 'permanent' and 'temporary'.

While 'permanent' affects your server protection settings in a lasting way to allow for one-click install, 'temporary' only changes them at install time and restore them right after. The trade-off is that choosing 'temporary' will require you to enter your FTP password each time you want to use the One-click feature.

Overall, I think both set-ups are fairly safe, and provide an acceptable trade-off with usability of your server in general. I am using the 'permanent' mode on my own WP install.

However, my lawyer, my cat and myself want to make it clear that you are using this feature at your own risk, I cannot take any responsibility for any damage, loss of files etc. that might be caused by the use this script (what did you expect).

Do you check the plugins present in the DB?

We do not provide any guarantee that the plugins present in the database are in any way safe and secure to use. It is perfectly possible for some evil user to upload and make available through this tool, a malicious plugin that could do some harm to your server.

HOWEVER:

The same danger exists with any random plugin you will download off a stranger's website, possibly even greater.
While we cannot guarantee anything, we will attempt to insure any harmful or otherwise undesirable plugins is immediately removed from the DB. A community-based rating system will also be implemented eventually (see To Do List).
A whole lot of data, including IP, are stored about every developer who uploads plugins to our database. Were someone to do something truly nasty with it, not only would he get the boot, but a formal complaint would be filled with his ISP immediately.

Is there a Nobel Prize in PHP Programming?

Not at the moment, but feel free to contact the Swedish gov and nominate me, just in case they ever add one.

WP Plugin Manager (wp-plugin-mgr) Troubleshooting

After installing wp-plugin-mgr, I get the error: fopen(): URL file-access is disabled

This script needs fopen() URL file-access to be enabled to work properly. Either ask your server administrator to enable it or edit your php.ini file and insure that you replace the line:
allow_url_fopen 0
by
allow_url_fopen 1
(PHP Doc)

Wordpress Plugin Developers FAQ

This part of the FAQ is specifically intented for Plugin Developers, little point reading it if you are only a regular WP user.

How do I add my plugin to the Plugin Database?

Nothing's easier, browse to: http://wp-plugins.net/dev.php, create an account, and add your plugins.

How should I fill in the fields?

Most fields are pretty self-explanatory. A few notes and comments:

Please fill in your email. It won't get displayed anywhere else and we won't use it to spam you. But if there is any issue with your account, we will be able to contact you about it and you won't end up locked out of your own account.
Plugin Short Name should be the name of your script minus the '.php' part. E.g, if you script is called 'my-script.php', you should enter 'my-script'. This name must be unique (that is, not be in use by any other scripts in the DB). Once you set it, you should not ever edit it again.
Version major and minor is what goes before and after the dot in the version number (e.g. '1.2').
Try to be as specific as possible when picking your plugin category and if you see a category or subcategory that would deserve being added, please contact us.
Keep the short description short (doh). Write as much as you want in the long description field.
Plugin Page URL should preferably point directly to install directions, point out if any editing is necessary beside the file install itself (and take in account the fact that the user might already have installed the plugin through the 'one-click' button).
Download URL should preferably be a direct link to download the plugin (zip archive is probably the best format, but that's up to you).
One-Click Archive URL is the URL to your one-click installable archive (see below). It can be the same as Download URL. Leave it blank if you do not want to provide one-click install for your plugin.

How do I make my plugin One-click Installable?

Making your plugin One-Click is painless and makes it much easier for most users to try it out using the wp-plugin-mgr client. Even if your plugins require extra installation steps that cannot be accomplished through One-click install, you should still go ahead and provide a one-click install along with instructions to complete manually.

Put your plugin file(s) in a ZIP archive (either directly inside the archive, or inside a directory named after Plugin Short Name, i.e. bearing the same name as your plugin script itself).
Fill the One-Click Archive URL field with the URL of the archive.
If there's only one file (the plugin file), then you don't have to worry about anything else, the plugin will be installed and activated automatically.
If there are any other files, they will be placed in a directory named after the value you entered for Plugin Short Name (i.e. the name of your plugin) inside wp-content. Such location should be easily accessible from your script and you can also write to this directory if necessary.
To use these files, simply update your plugin script, using ABSPATH . "wp-content/yourpluginname/your_data_file" wherever you need the path of a file.
If your script needs user input values (preferences, configuration, filepaths etc), use the Plugin Configuration field to store a PHP array describing each required value as such:
```
array("variable_1" => array("caption" => "Variable description",
				"default" => "Default Value",
				"type" => "[text|number|boolean|menu|password|hidden]",
				"options" => array("value1"=>"Menu Item 1",
									"value2"=>"Menu Item 2",
									"value3"=>"Menu Item 3"),
				"overwrite" => [true|false]),
	"variable_2" => array( etc.
```
In each variable's array, only caption is mandatory, every other key can be omitted. The options key will only be used if type is a menu. overwrite, if set to 'true', indicates that, if this preference already exists (previous installation, upgrade), it should still be asked again from the user and use the 'default' you provide (if set to 'false', the previous setting will be reused)
The resulting variables will be assigned and stored in a file called "yourplugin_prefs.php" (where "yourplugin" is the name of your plugin) located inside "wp-content/yourplugin".
To use your configuration variable in your plugin you simply have to include this file by adding something like:
```
 if (is_file(ABSPATH . "wp-content/yourplugin/yourplugin_prefs.php"))
	include_once(ABSPATH . "wp-content/yourplugin/yourplugin_prefs.php");
```
You can use this code along with regular config variables assignment (make sure you add it after the assignment code) so that, if the prefs file is present it will be read and overwrite whichever default settings you set, if no prefs file exists (for example if the plugin has been installed manually) it will be editable manually by the user.
All the variables you defined (for instance $variable_1, $variable_2...) will be initialized to the value chosen by the user and available inside your script.
Make sure your array is a valid PHP array (parenthesis, commas etc.), try using it in a regular PHP file to insure it doesn't have any syntax error in it.
Here is an example array:
```
array(
"foobar" => array("caption"=>"this is a caption:", 
			"default"=>"this is a default value"),
"foobar_num" => array("caption"=>"this is a numeric value:",
			 "type"=>"number", "default"=>42),
"foobar_menu" => array("type"=>"menu", 
			"options"=>array("option1"=>"Option 1","option2"=>"Option 2"), "default"=>"option2",
			 "overwrite" => true),
"foobar_bool" => array("caption"=>"do you like booleans?",
			 "default"=>false) 
);
```
An option to run some SQL commands will soon be added...
Please email us your suggestions and needs in terms of plugin installs.

I just released a new version of my plugin

Simply update the version number... It will appear in the RSS feed, users will be notified of the new version and, if your plugin is One-Click installable, they will be given the option to upgrade it this way. Make sure in your upgrade design to reuse any preference or user data file that might have been created by the previous version in your data folder (located inside 'wp-content').
You can now also add Version-specific information in the DB backend (ignore the "SQL Update" and "Data Files to keep" field for now).

I want to help

Please, right this way...

Any sort of help (layout, css, php, documentation, packaging...) is always appreciated. Just drop a note.

It is also very easy to use the programmatic interface in your own scripts.

I want to use the Plugin DB in my own scripts

You can access the DB through the programmatic PHP interface.

Simply query the page http://wp-plugins.net/get_plugin_data.php from your script, it will return a serialized array containing all the plugin data. Run unserialize() on it and a print_r() will show you the gory details in a readable way.

You can use a few parameters to refine your search (add them with the usual http get syntax: ?paremeter1=value1¶meter2=value2):

id=integer: will return plugin data for this ID (you can find out the ID for a plugin in the dev backend tools). If you use this option, the other ones will be ignored.
filter=string: will return only plugins matching the string somewhere in their meta-data.
status=[stable|dev]: will return only stable or dev (alpha/beta) plugins.
wp_version=[13|any]: will return only plugins supporting this version of WP.

More parameters can be used to refine your search, I'll update this area with details later.

What's the license?

All the downloadable parts are GPL (including wp-plugin-mgr).

The rest (dev input tools, essentially) is not quite yet decided. I'll make all the source available to anybody who'd like to give it a look, but I might not be able to make it GPL like the rest, for an array of reasons (I had to reuse some of my own semi-professional frameworks to put a quick DB backend). At any rate, it doesn't matter too much, since it is only a standard interface to the mySQL tables. The DB schema is extremely simple and should be adaptable to any other backend, should I one day find a suitable replacement. Feel free to contact me if you feel like tackling this part.

TO DO

A tentative list of future features. Please if you see anything missing, let us know:

wp-plugin-mgr (local client):

~~Support for plugins not installed through one-click feature (automatic detection and upgrade notification,~~ maybe support for one-click removal)
still more features for one-click installs/upgrades/removal scripts.
Version detection and accurate filtering (e.g. only show plugins that supports currently installed WP version)
Send notification for new version of wp-plugin-mgr.
Direct bug report to developers (relaying using account emails without displaying it to end-users).

Website frontend:

~~Filtering options.~~
Avanced Search options.
Notify of recently added/updated plugins.

DB Schema:

~~Change logs between each version of a plugin~~ (displayed accordingly in wp-plugin-mgr depending on version already installed).
Rating system.
User feedback system (auto-quarantine of malicious plugins etc).

Misc:

~~RSS Feed.~~