Changeset 1688580

Timestamp:

07/01/2017 12:18:35 AM (8 years ago)

Author:

rinatkhaziev

Message:

Merge 1.2 from github

Location:

frontend-uploader/trunk

Files:

• frontend-uploader.php (modified) (32 diffs)
• languages/frontend-uploader-ja.mo (added)
• languages/frontend-uploader-ja.po (added)
• lib/php/frontend-uploader-settings.php (modified) (1 diff)
• lib/php/functions.php (modified) (5 diffs)
• lib/php/recaptcha.php (modified) (1 diff)
• lib/views/html-email.tpl.php (added)
• readme.txt (modified) (7 diffs)

frontend-uploader/trunk/frontend-uploader.php

@@ -4 +4 @@
 Description: Allow your visitors to upload content and moderate it.
 Author: Rinat Khaziev, Daniel Bachhuber
-Version: 1.1
+Version: 1.2
 Author URI: http://digitallyconscious.com
 
@@ -26 +26 @@
 
 // Define consts and bootstrap and dependencies
-define( 'FU_VERSION', '1.1' );
+define( 'FU_VERSION', '1.2' );
 define( 'FU_ROOT' , dirname( __FILE__ ) );
 define( 'FU_FILE_PATH' , FU_ROOT . '/' . basename( __FILE__ ) );
@@ -44 +44 @@
     public $settings_slug = 'frontend_uploader_settings';
     public $is_debug = false;
+    public $lang = 'en_US';
+    public $lang_short = 'en';
     /**
      * Should consist of fields to be proccessed automatically on content submission
@@ -110 +112 @@
         add_filter( 'posts_where', array( $this, 'filter_posts_where' ) );
 
-
         $this->allowed_mime_types = $this->_get_mime_types();
         // Configuration filter to change manage permissions
@@ -119 +120 @@
         add_action( 'fu_after_upload', array( $this, '_maybe_insert_images_into_post' ), 10, 3 );
 
+        $this->_set_language();
+
         // Maybe enable Akismet protection
         $this->_enable_akismet_protection();
@@ -126 +129 @@
     }
 
-    /**
-     * Slightly convoluted workaround to allow modifying of allowed MIME types for WP < 3.5,
-     * Workaround for IE sometimes setting image/pjepg and image/x-png for JPEGs and PNGs respectively
+
+    /**
+     * Set current language (used for captcha and jquery validate l18n )
+     */
+    function _set_language() {
+        // Filter is needed for wordpress.com
+        $this->lang = apply_filters( 'fu_wplang', get_bloginfo( 'language' ) );
+        $this->lang_short = substr( $this->lang, 0, 2 );
+    }
+
+
+    /**
+     * Add extra mime-types
+     *
+     * This is mostly legacy, and really should be deprecated or refactored due to unneccessary complexity
+     *
+     * @return [type] [description]
      */
     function _get_mime_types() {
-        // Use wp_get_mime_types if available, fallback to get_allowed_mime_types()
-        $mime_types = function_exists( 'wp_get_mime_types' ) ? wp_get_mime_types() : get_allowed_mime_types() ;
+        $mime_types = wp_get_mime_types();
         $fu_mime_types = fu_get_mime_types();
-        // Workaround for IE
-        $mime_types['jpg|jpe|jpeg|pjpg'] = 'image/pjpeg';
-        $mime_types['png|xpng'] = 'image/x-png';
+
         $enabled = isset( $this->settings['enabled_files'] ) && is_array( $this->settings['enabled_files'] ) ?  $this->settings['enabled_files'] : array();
-        // Iterate through default extensions
+
+        // $fu_mime_types holds extra mimes that are not allowed by WP
         foreach ( $fu_mime_types as $extension => $details ) {
             // Skip if it's not in the settings
@@ -144 +159 @@
                 continue;
 
-            // Iterate through mime-types for this extension
+            // Files have multiple mimes sometimes, we need to cover all of them
             foreach ( $details['mimes'] as $ext_mime ) {
                 $mime_types[ $extension . '|' . $extension . sanitize_title_with_dashes( $ext_mime ) ] = $ext_mime;
@@ -158 +173 @@
                 unset( $mime_types[$ext_key] );
         }
+
         return $mime_types;
     }
@@ -191 +207 @@
     }
 
-
     /**
      * Since 4.01 shortcode contents is texturized by default,
@@ -244 +259 @@
         add_filter( 'upload_mimes', array( $this, '_get_mime_types' ), 999 );
 
-
         $media_ids = $errors = array();
         // Bail if there are no files
         if ( empty( $_FILES ) )
-            return false;
+            return array();
 
         // File field name could be user defined, so we just get the first file
@@ -263 +277 @@
             $k['name'] = sanitize_file_name( $k['name'] );
 
+            //
+            if ( $k['error'] === 4 ) {
+                continue;
+            }
+
             // Skip to the next file if upload went wrong
-            if ( $k['tmp_name'] == "" ) {
+            if ( $k['error'] !== 0  ) {
+                $errors['fu-error-media'][] = array( 'name' => $k['name'], 'code' => $k['error'] );
                 continue;
             }
@@ -291 +311 @@
             elseif ( isset( $_POST['post_content'] ) )
                 $caption = sanitize_text_field( $_POST['post_content'] );
-            // TODO: remove or refactor
-            $filename = !empty( $this->settings['default_file_name'] ) ? $this->settings['default_file_name'] : pathinfo( $k['name'], PATHINFO_FILENAME );
+
+            $filename = pathinfo( $k['name'], PATHINFO_FILENAME );
             $post_overrides = array(
                 'post_status' => $this->_is_public() ? 'publish' : 'private',
@@ -300 +320 @@
             );
 
-            // Obfuscate filename, just in case
             $m = $k;
-            $fn = explode( '.', $k['name'] );
-            $k['name'] = uniqid() . '.' . end( $fn );
+
+            // Obfuscate filename if setting is present
+            if (  isset( $this->settings['obfuscate_file_name'] ) && 'on' == $this->settings['obfuscate_file_name']  ){
+                $fn = explode( '.', $k['name'] );
+                $m['name'] = uniqid( mt_rand( 1, 1000 ) , true ) . '.' . end( $fn );
+            }
 
             // Trying to upload the file
-            $upload_id = media_handle_sideload( $k, (int) $post_id, $post_overrides['post_title'], $post_overrides );
-            $m = $k;
+            $upload_id = media_handle_sideload( $m, (int) $post_id, $post_overrides['post_title'], $post_overrides );
 
             if ( !is_wp_error( $upload_id ) )
@@ -432 +454 @@
 
         $post_id = wp_insert_post( $post_array, true );
+
+
+
         // Something went wrong
         if ( is_wp_error( $post_id ) ) {
-            $errors[] = 'fu-error-post';
+            $errors = array( 'fu-error-post' => 1 );
             $success = false;
         } else {
@@ -485 +510 @@
         // Bail if something fishy is going on
         if ( !wp_verify_nonce( $_POST['fu_nonce'], FU_NONCE ) ) {
-            wp_safe_redirect( add_query_arg( array( 'response' => 'fu-error', 'errors' => 'fu-nonce-failure' ), wp_get_referer() ) );
+            wp_safe_redirect( add_query_arg( array( 'response' => 'fu-error', 'errors' =>  array( 'fu-nonce-failure' => 1 ) ), wp_get_referer() ) );
+            exit;
+        }
+
+        // Bail if supplied post type is not allowed
+        if ( isset( $_POST['post_type'] ) && ! $this->is_allowed_post_type( sanitize_key( $_POST['post_type'] ) ) ) {
+            wp_safe_redirect( add_query_arg( array( 'response' => 'fu-error', 'errors' => array( 'fu-disallowed-post-type' => sanitize_key( $_POST['post_type'] ) ) ), wp_get_referer() ) );
             exit;
         }
@@ -517 +548 @@
         case 'post_media';
             $result = $this->_upload_post();
+
+
             if ( ! is_wp_error( $result['post_id'] ) ) {
                 $media_result = $this->_upload_files( $result['post_id'] );
-
                 // Make sure we don't merge a non-array (_upload_files might return null, false or WP_Error)
-                if ( $media_result && is_array( $media_result ) )
+                if ( is_array( $media_result ) )
                     $result = array_merge( $result, $media_result );
             }
@@ -557 +589 @@
             return;
 
+
         // TODO: It'd be nice to add the list of upload files
         $to = !empty( $this->settings['notification_email'] ) && filter_var( $this->settings['notification_email'], FILTER_VALIDATE_EMAIL ) ? $this->settings['notification_email'] : get_option( 'admin_email' );
         $subj = __( 'New content was uploaded on your site', 'frontend-uploader' );
-        wp_mail( $to, $subj, $this->settings['admin_notification_text'] );
-    }
+
+        add_filter( 'wp_mail_content_type', 'fu_email_content_type' );
+
+        wp_mail( $to, $subj, $this->_get_html_email_template( $result ) );
+
+        remove_filter( 'wp_mail_content_type', 'fu_email_content_type' );
+    }
+
+    /**
+     * Get html template
+     *
+     * @since 1.2
+     *
+     * @param  array  $result [description]
+     * @return [type]         [description]
+     */
+    function _get_html_email_template( $result = array() ) {
+        global $fu_result;
+        $fu_result = $result;
+        ob_start();
+        include_once FU_ROOT . "/lib/views/html-email.tpl.php";
+        return ob_get_clean();
+    }
+
 
     /**
@@ -706 +761 @@
      * Approve a media file
      *
-     * TODO: refactor in 0.6
-     *
      * @return [type] [description]
      */
@@ -714 +767 @@
         if ( false === $this->_check_perms_and_nonce() || 0 === (int) $_GET['id'] ) {
             wp_safe_redirect( get_admin_url( null, 'upload.php?page=manage_frontend_uploader&error=id_or_perm' ) );
+            exit;
         }
 
@@ -724 +778 @@
             do_action( 'fu_media_approved', $post );
 
-            $this->update_35_gallery_shortcode( $post->post_parent, $post->ID );
+            $this->update_gallery_shortcode( $post->post_parent, $post->ID );
             wp_safe_redirect( get_admin_url( null, 'upload.php?page=manage_frontend_uploader&approved=1' ) );
+            exit;
         }
 
@@ -740 +795 @@
         // check for permissions and id
         $url = get_admin_url( null, 'edit.php?page=manage_frontend_uploader_posts&error=id_or_perm' );
-        if ( !current_user_can( $this->manage_permissions ) || intval( $_GET['id'] ) === 0 )
+        if ( !current_user_can( $this->manage_permissions ) || intval( $_GET['id'] ) === 0 ) {
             wp_safe_redirect( $url );
+            exit;
+        }
 
         $post = get_post( $_GET['id'] );
 
-        if ( !is_wp_error( $post ) ) {
+        if ( is_object( $post ) ) {
             $post->post_status = 'publish';
             wp_update_post( $post );
@@ -996 +1053 @@
      */
     function upload_form( $atts, $content = null ) {
+        static $inst = 0;
+
         add_shortcode( 'input', array( $this, 'shortcode_content_parser' ) );
         add_shortcode( 'textarea', array( $this, 'shortcode_content_parser' ) );
@@ -1025 +1084 @@
         $this->enqueue_scripts();
 
-        $form_layout = in_array( $form_layout, array( 'post', 'image', 'media', 'post_image', 'post_media' ) ) ? $form_layout : 'media';
+        $form_layout = in_array( $form_layout, array( 'post', 'image', 'media', 'post_image', 'post_media' ), true ) ? $form_layout : 'media';
 
         ob_start();
 ?>
-    <form action="<?php echo admin_url( 'admin-ajax.php' ) ?>" method="post" id="ugc-media-form" class="<?php echo esc_attr( $class )?> fu-upload-form" enctype="multipart/form-data">
+    <form action="<?php echo admin_url( 'admin-ajax.php' ) ?>" method="post" id="ugc-media-form-<?php echo $inst++; ?>" class="<?php echo esc_attr( $class )?> fu-upload-form" enctype="multipart/form-data">
      <div class="ugc-inner-wrapper">
          <h2><?php echo esc_html( $title ) ?></h2>
@@ -1277 +1336 @@
 
         $output = '';
-        $map = array(
+        $map = apply_filters( 'fu_response_notices', array(
             'fu-sent' => array(
                 'text' => __( 'Your file was successfully uploaded!', 'frontend-uploader' ),
@@ -1294 +1353 @@
                 'class' => 'failure',
             ),
-        );
+        ) );
 
         if ( isset( $res['response'] ) && isset( $map[ $res['response'] ] ) )
             $output .= $this->_notice_html( $map[ $res['response'] ]['text'] , $map[ $res['response'] ]['class'] );
 
-        if ( !empty( $res['errors' ] ) )
+        if ( !empty( $res['errors' ] ) && 'fu-error' === $res['response'] )
             $output .= $this->_display_errors( $res['errors' ] );
 
@@ -1308 +1367 @@
      *
      * @since 0.4
-     * @param string $errors [description]
+     * @param mixed $errors either a comma separated string of error codes or
      * @return string HTML
      */
     function _display_errors( $errors ) {
+        if ( ! $errors )
+            return;
+
         $output = '';
         $map = array(
@@ -1319 +1381 @@
             'fu-disallowed-mime-type' => array(
                 'text' => __( 'This kind of file is not allowed. Please, try again selecting other file.', 'frontend-uploader' ),
-                'format' => $this->is_debug ? '%1$s: <br/> File name: %2$s <br> MIME-TYPE: %3$s' : '%1$s: <br> %2$s',
+                'format' => $this->is_debug ? '%1$s File name: %2$s  MIME-TYPE: %3$s' : '%1$s: %2$s',
             ),
-            'fu-invalid-post' => array(
-                'text' =>__( 'The content you are trying to post is invalid.', 'frontend-uploader' ),
+            'fu-disallowed-post-type' => array(
+                'text' =>__( 'This post type is not allowed.', 'frontend-uploader' ),
             ),
             'fu-error-media' => array(
-                'text' =>__( "Couldn't upload the file", 'frontend-uploader' ),
+                'text' =>__( "Couldn't upload the file due to server error", 'frontend-uploader' ),
+                'format' => '%1$s - %2$s'
             ),
             'fu-error-post' => array(
-                'text' =>__( "Couldn't create the post", 'frontend-uploader' ),
+                'text' =>__( "Couldn't create the post due to server error", 'frontend-uploader' ),
             ),
             'fu-suspicious-file' => array(
@@ -1338 +1401 @@
         // $error is the key of error, $details - additional information about the error
         foreach ( (array) $errors as $error => $details ) {
+
+            if ( ! isset( $map[ $error] ) ) {
+                continue;
+            }
 
             // We might have multiple errors of the same type, let's walk through them
@@ -1353 +1420 @@
             }
         }
+
         return $output;
     }
@@ -1366 +1434 @@
         wp_enqueue_script( 'frontend-uploader-js', FU_URL . 'lib/js/frontend-uploader.js', array( 'jquery', 'jquery-validate' ) );
         // Include localization strings for default messages of validation plugin
-        // Filter is needed for wordpress.com
-        $wplang = apply_filters( 'fu_wplang', defined( 'WPLANG' ) ? WPLANG : '' );
-        if ( $wplang ) {
-            $lang = explode( '_', $wplang );
-            $relative_path = "lib/js/validate/localization/messages_{$lang[0]}.js";
+        if ( $this->lang ) {
+            $relative_path = "lib/js/validate/localization/messages_{$this->lang_short}.js";
             $url = FU_URL . $relative_path;
             if ( file_exists( FU_ROOT . "/{$relative_path}" ) )
@@ -1391 +1456 @@
 
     /**
-     * 3.5 brings new Media UI
-     * Unfortunately, we have to specify ids of approved attachments explicitly,
+     * We have to specify ids of approved attachments explicitly in shortcode,
      * Otherwise, editors have to pick photos after they have already approved them in "Manage UGC"
      *
@@ -1399 +1463 @@
      * @return post id/wp_error
      */
-    function update_35_gallery_shortcode( $post_id, $attachment_id ) {
+    function update_gallery_shortcode( $post_id, $attachment_id ) {
         global $wp_version;
         // Bail of wp is older than 3.5

frontend-uploader/trunk/lib/php/frontend-uploader-settings.php

@@ -163 +163 @@
                 ),
                 array(
-                    'name' => 'default_file_name',
-                    'label' => __( 'Default file name', 'frontend-uploader' ),
-                    'desc' => __( 'Leave blank to use original file name', 'frontend-uploader' ),
-                    'type' => 'text',
-                    'default' => 'Unnamed',
-                    /* No need to set a sanitize callback. It is handled automagically. */
+                    'name' => 'obfuscate_file_name',
+                    'label' => __( 'Obfuscate file name', 'frontend-uploader' ),
+                    'desc' => __( 'Yes', 'frontend-uploader' ),
+                    'type' => 'checkbox',
+                    'default' => '',
                 ),
                 array(

frontend-uploader/trunk/lib/php/functions.php

@@ -11 +11 @@
     // Generated with dyn_php class: http://www.phpclasses.org/package/2923-PHP-Generate-PHP-code-programmatically.html
     $mimes_exts = array(
-        'doc'=>
-        array(
-            'label'=> 'Microsoft Word Document',
-            'mimes'=>
-            array(
-                'application/msword',
-            ),
-        ),
-        'docx'=>
-        array(
-            'label'=> 'Microsoft Word Open XML Document',
-            'mimes'=>
-            array(
-                'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
-            ),
-        ),
-        'xls'=>
-        array(
-            'label'=> 'Excel Spreadsheet',
-            'mimes'=>
-            array(
-                'application/vnd.ms-excel',
-                'application/msexcel',
-                'application/x-msexcel',
-                'application/x-ms-excel',
-                'application/vnd.ms-excel',
-                'application/x-excel',
-                'application/x-dos_ms_excel',
-                'application/xls',
-            ),
-        ),
-        'xlsx'=>
-        array(
-            'label'=> 'Microsoft Excel Open XML Spreadsheet',
-            'mimes'=>
-            array(
-                'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
-            ),
-        ),
-        'pdf'=>
-        array(
-            'label'=> 'Portable Document Format File',
-            'mimes'=>
-            array(
-                'application/pdf',
-                'application/x-pdf',
-                'application/acrobat',
-                'applications/vnd.pdf',
-                'text/pdf',
-                'text/x-pdf',
-            ),
-        ),
-        'psd'=>
-        array(
-            'label'=> 'Adobe Photoshop Document',
-            'mimes'=>
-            array(
-                'image/photoshop',
-                'image/x-photoshop',
-                'image/psd',
-                'application/photoshop',
-                 'application/psd',
-                'zz-application/zz-winassoc-psd',
-                'image/vnd.adobe.photoshop',
-            ),
-        ),
         'csv'=>
         array(
@@ -89 +23 @@
                 'application/vnd.msexcel',
                 'text/anytext',
-            ),
-        ),
-        'ppt'=>
-        array(
-            'label'=> 'PowerPoint Presentation',
-            'mimes'=>
-            array(
-                'application/vnd.ms-powerpoint',
-                'application/mspowerpoint',
-                'application/ms-powerpoint',
-                'application/mspowerpnt',
-                'application/vnd-mspowerpoint',
-            ),
-        ),
-        'pptx'=>
-        array(
-            'label'=> 'PowerPoint Open XML Presentation',
-            'mimes'=>
-            array(
-                'application/vnd.openxmlformats-officedocument.presentationml.presentation',
             ),
         ),
@@ -142 +56 @@
             ),
         ),
-        'mp4'=>
-        array(
-            'label'=> 'MPEG-4 Video File',
-            'mimes'=>
-            array(
-                'video/mp4v-es',
-                'audio/mp4',
-                'application/mp4',
-            ),
-        ),
-        'm4a'=> array(
-            'label'=> 'MPEG-4 Audio File',
-            'mimes'=> array(
-                'audio/aac', 'audio/aacp', 'audio/3gpp', 'audio/3gpp2', 'audio/mp4', 'audio/MP4A-LATM','audio/mpeg4-generic', 'audio/x-m4a', 'audio/m4a'
-            ) ),
-        'mov'=>
-        array(
-            'label'=> 'Apple QuickTime Movie',
-            'mimes'=>
-            array(
-                'video/quicktime',
-                'video/x-quicktime',
-                'image/mov',
-                'audio/aiff',
-                'audio/x-midi',
-                'audio/x-wav',
-                'video/avi',
-            ),
-        ),
-        'mpg'=>
-        array(
-            'label'=> 'MPEG Video File',
-            'mimes'=>
-            array(
-                'video/mpeg',
-                'video/mpg',
-                'video/x-mpg',
-                'video/mpeg2',
-                'application/x-pn-mpg',
-                'video/x-mpeg',
-                'video/x-mpeg2a',
-                'audio/mpeg',
-                'audio/x-mpeg',
-                'image/mpg',
-            ),
-        ),
+
         'mid'=>
         array(
@@ -221 +90 @@
             ),
         ),
-        'wmv'=>
-        array(
-            'label'=> 'Windows Media Video File',
-            'mimes'=>
-            array(
-                'video/x-ms-wmv',
-            ),
-        ),
     );
 
@@ -260 +121 @@
     return '<div class="g-recaptcha" data-sitekey="' . esc_attr( fu_get_option( 'recaptcha_site_key' ) ) . '"></div>';
 }
+
+function fu_get_file_array() {
+    $walker = function ($arr, $fileInfokey, callable $walker) {
+        $ret = array();
+        foreach ($arr as $k => $v) {
+            if (is_array($v)) {
+                $ret[$k] = $walker($v, $fileInfokey, $walker);
+            } else {
+                $ret[$k][$fileInfokey] = $v;
+            }
+        }
+        return $ret;
+    };
+
+    $files = array();
+    foreach ($_FILES as $name => $values) {
+        // init for array_merge
+        if (!isset($files[$name])) {
+            $files[$name] = array();
+        }
+        if (!is_array($values['error'])) {
+            // normal syntax
+            $files[$name] = $values;
+        } else {
+            // html array feature
+            foreach ($values as $fileInfoKey => $subArray) {
+                $files[$name] = array_replace_recursive($files[$name], $walker($subArray, $fileInfoKey, $walker));
+            }
+        }
+    }
+
+    return $files;
+}
+
+function fu_email_content_type( $content_type ) {
+    return 'text/html';
+}

frontend-uploader/trunk/lib/php/recaptcha.php

@@ -5 +5 @@
 
 function fu_add_recaptcha_js() {
+    global $frontend_uploader;
     ?>
-    <script src='https://www.google.com/recaptcha/api.js' async defer></script>
+    <script src='<?php echo esc_url( add_query_arg( array( 'hl' => $frontend_uploader->lang_short ), 'https://www.google.com/recaptcha/api.js' ) ) ?>' async defer></script>
     <?php
 }
-
 function fu_recaptcha_check_submission( $should_process, $layout ) {
 

frontend-uploader/trunk/readme.txt

@@ -4 +4 @@
 Tags: frontend, image, images, media, uploader, upload, video, audio, photo, photos, picture, pictures, file, user generated content, ugc, frontend upload
 Requires at least: 4.1
-Tested up to: 4.6
-Stable tag: 1.1
+Tested up to: 4.8
+Stable tag: 1.2
 License: GPLv2 or later
 
@@ -16 +16 @@
 This plugin is a simple way for users to submit content to your site. The plugin uses a set of shortcodes to let you create highly customizable submission forms to your posts and pages. Once the content is submitted, it is held for moderation until you approve it. It’s that easy!
 
-**Exploring Customizations**
+= Exploring Customizations =
 
 * You can modify the submission form as needed, and have users submit posts. Please visit the FAQ page for more information.
 * This plugin can be applied to Posts, Pages, and Custom Post Types. You can enable this via Settings > Frontend Uploader Settings.
-* In addition to the WordPress whitelisted file types, this also supports uploading of Microsoft Office and Adobe files, as well as various video and audio files. You can enable these file types via Settings > Frontend Uploader Settings.
-* The plugin allows you to upload all filetypes that are whitelisted in WordPress. If you’d like to add more file types and are comfortable with theme development, there's a filter that'll allow you to add some exotic MIME-type.
-
-You can also manage UGC for selected custom post types (Please refer to the plugin's settings page). By default, UGC is enabled for posts and attachments. If you want to be able to get any other post types UGC submissions just select desired post types at the plugin's settings page, and pass post_type='my_post_type' to the **[fu-upload-form]** shortcode.
+* Form can be used in 3 modes: upload files, submit posts/custom post types, and mixed - submit a post and attach files to it.
+* Form supports following fields: text, textarea, select, radio buttons, and checkboxes
 
 **Customizing Your Form with Shortcode Parameters**
 
-Frontend Uploader uses shortcodes to insert a form into a page or post. The default form shortcode is **[fu-upload-form]** but you can modify the plugin's behavior with additional parameters.
-
-If you would like to build a custom form, it must begin with *[fu-upload-form]* and end with *[/fu-upload-form]*.
-
-The **[fu-upload-form]** shortcode has several parameters important parameters:
+Frontend Uploader is flexible and powerful, but unfortunately there's no visual form constructor at the moment - you have to use shortcodes. Please read this documentation carefully in order to leverage the plugin's features.
+
+At it's most basic form, the shortcode would look like this
+`[fu-upload-form]`
+
+This will render a default form for media upload that has title, description and upload fields. (See screenshot 2)
+
+The same shortcode with some customizations would look like this:
+
+`[fu-upload-form class="html-wrapper-class" form_layout="media" title="Upload your media"]
+[input type="text" name="post_title" id="title" class="required" description="Title"]
+[textarea name="post_content" class="textarea" id="my-textarea" description="Description (optional)"]
+[input type="file" name="photo" id="my-photo-submission" class="required" description="Your Photo" multiple="multiple"]
+[input type="submit" class="btn" value="Submit"]
+[/fu-upload-form]`
+
+As you can see, form elements are represented by shortcodes: [input], [textarea], [radio], [checkboxes], [file]. Each of them has a set of attributes, e.g. `id, class, name, value, values, type, description, minlength, maxlength. Please refer to "Form Elements" section of this readme for more details on elements and their attributes.
+
+= Main shortcode: [fu-upload-form] =
+
+The main shortcode, it has many important parameters that modify form behavior.
+
+In the following example we are creating a form with title "Upload your story and image". The form will allow to submit a custom post type *story* with an image which is going to be automatically inserted at the end of the story. The story will have a category with ID 1. On successful submission user will be redirected to http://example.com/success-page/
+
+`[fu-upload-form form_layout="post_media" title="Upload your story and image" class="my-class validate" post_type="story" append_to_post="true" success_page="http://example.com/success-page/" category="1" ][/fu-upload-form]`
+
+* The list of all parameters for [fu-upload-form] *
 
  `form_layout`
- This determines whether the form is saved as a post/custom post type (‘post’), as a media file (`media`), or as a post with images (`post_media`).  Default value is `media`. Example: **[fu-upload-form class="your-class" title="Upload your media" form_layout=”post”]**
+
+ This determines whether the form is saved as a post/custom post type (‘post’), as a media file (`media`), or as a post with images (`post_media`).  Default value is `media`.
+ Example: *[fu-upload-form form_layout=”post”]*
 
  `title`
- Add this *[fu-upload-form]* shortcode, and this will be the Headline that will be displayed before the form. Example: **[fu-upload-form class="your-class" title="Upload your media"]**
+
+ Add this *[fu-upload-form]* shortcode, and this will be the Headline that will be displayed before the form.
+ Example: **[fu-upload-form class="your-class" title="Upload your media"]**
 
  `class`
- HTML class of the form, defaults to 'validate'. If you want your form being validated - do not remove validate class. If you would like to item to be required before a user can submit, you can set it to ‘required.’ Example: **[input type="text" name="post_title" id="title" class="required"]**
+
+ HTML class of the form, defaults to 'validate'. If you want your form being validated - do not remove validate class. If you would like to item to be required before a user can submit, you can set it to ‘required.’
+ Example: *[input type="text" name="post_title" id="title" class="required"]*
 
  `post_type`
- Any post whitelisted in settings post type. Defaults to 'post'. Example: **[fu-upload-form post_type="my-custom-post-type-slug"]**
-
+
+ Any post whitelisted in settings post type. Defaults to 'post'.
+ Example: *[fu-upload-form post_type="my-custom-post-type-slug"]*
 
  `append_to_post`
+
  Automatically insert images into uploaded post *(true or false)*
 
  `success_page`
+
  URL to redirect on successful submission, defaults to the URL where the form is being displayed. For security reasons this should be an URL on your site (no external links). You can use **[fu-upload-response]** shortcode to display success/error messages on the redirect page.
 
  `category`
+
  ID of category the post should be attached (only in post or post+media mode).
 
  `post_id`
+
  ID of the post the image should be attached to. Defaults to the post ID of the post the shortcode is on.
 
  `suppress_default_fields`
- In it's basic form shortcode adds some default fields for you - Title, Description, and file upload. However, you can create a customized shortcode.
- Override global setting for supressing default form fields *(true or false)*. Example: **[fu-upload-form suppress_default_fields="true"] ... inner shortcodes omitted... [/fu-upload-form]**
-
-
-Within **[fu-upload-form]**, you can add form fields.
-
-* `[input type="text" ]` A text box for one line of text
-* `[textarea]` => A text box for multiple lines of text
-* `[input type="file"]` => A file uploader
-* `[checkboxes values="value:Description,124:Banana,cherry:Cherry"]` => A set of checkboxes
-* `[radio name="foo" class="checkboxes" description="Pick a fruit" values="value:Description,124:Banana,cherry:Cherry"]` => A set of radio buttons
-* `[select name="foo" class="select" description="Pick a fruit" values="apple:Apple,banana:Banana,cherry:Cherry"]` => A select
+
+ Override global setting for supressing default form fields *(true or false)*.
+ Example: `[fu-upload-form suppress_default_fields="true"] ... inner shortcodes omitted... [/fu-upload-form]`
+
+
+= Form Elements =
+
+* `[input type="text" name="post_title" class="my-class" ]` A text box for one line of text
+* `[textarea name="post_content" class="my-text-area"]` => A text box for multiple lines of text
+* `[input type="file" name="my-file"]` => A file uploader
+* `[checkboxes name="fruits" values="value:Description,124:Banana,cherry:Cherry"]` => A set of checkboxes
+* `[radio name="fruit" class="checkboxes" description="Pick a fruit" values="value:Description,124:Banana,cherry:Cherry"]` => A set of radio buttons
+* `[select name="select-fruit" class="select" description="Pick a fruit" values="apple:Apple,banana:Banana,cherry:Cherry"]` => A select
 * `[input type="submit" class="btn" value="Submit"]` => A submit button
 
@@ -102 +134 @@
 
 
-** Support **
+== Support ==
 
 Please make sure to read this readme including FAQ section before posting in support forum.
 
 
-** Development **
+**Development**
 
 [Fork the plugin or report an issue on Github](https://github.com/rinatkhaziev/wp-frontend-uploader/)
@@ -145 +177 @@
 You can modify the form as you'd like but you have to make sure that 'post_title' field is present, otherwise upload might fail
 
-= Example of default media upload form =
-
-Here's example of default form (*you don't need to enter all that if you want to use default form, just use `[fu-upload-form]`*):
-
-`[fu-upload-form class="your-class" title="Upload your media"]
-[input type="text" name="post_title" id="title" class="required" description="Title"]
-[textarea name="post_content" class="textarea" id="ug_caption" description="Description (optional)"]
-[input type="file" name="photo" id="ug_photo" class="required" description="Your Photo" multiple="multiple"]
-[input type="submit" class="btn" value="Submit"]
-[/fu-upload-form]`
-
 = I get a white screen or "0" when trying to upload a file =
-The major cause of this is either request timeout or request exceeding maximum request size. This  means that either the file was uploading for too long or it was too big. Two PHP settings to look at are:
-[max_execution_time](http://us1.php.net/manual/en/info.configuration.php#ini.max-execution-time) and [upload_max_filesize](http://us3.php.net/manual/en/ini.core.php#ini.upload-max-filesize). If you don't have any ability to modify these settings, please contact your hosting company's support.
+The major cause of this is either request timeout or request exceeding maximum request size. This  means that either the file was uploading for too long or it was too big. PHP settings to look at are:
+[max_execution_time](http://us1.php.net/manual/en/info.configuration.php#ini.max-execution-time) and [upload_max_filesize](http://us3.php.net/manual/en/ini.core.php#ini.upload-max-filesize), and [post_max_size](http://us3.php.net/manual/en/ini.core.php#ini.post-max-size). If you don't have any ability to modify these settings, please contact your hosting company's support.
 
 = Where are the plugin's settings? =
@@ -180 +201 @@
 You can suppress rendering of default form fields with "Suppress default fields" checkbox in settings
 
-= I want to customize my form =
-You can include additional elements with a set of shortcodes
-[input type="text" name="post_title" id="title" class="required" description="Title" multiple=""]
-[select name="foo" class="select" id="ug_select" description="Pick a fruit" values="Apple,Banana,Cherry"]
-[textarea name="post_content" class="textarea" id="ug_caption" description="Description (optional)"]
-[checkboxes name="foo" class="checkboxes" description="Pick a fruit" values="value:Description,124:Banana,cherry:Cherry"]
 
 = I want to be allow users to upload mp3, psd, or any other file restricted by default. =
@@ -224 +239 @@
 }`
 
-= There's no captcha! =
-The plugin uses Akismet as spam protection (you have to have Akismet installed and configured). Just enable Akismet support in the plugin's settings and voila.
+= What about spam protection? =
+The plugin supports Akismet (must be installed and configured properly) and Recaptcha. Just enable it in plugin settings.
 
 = Configuration Filters =
@@ -287 +302 @@
 == Changelog ==
 
+= 1.2 (Jun 30, 2017) =
+* Added image preview in email notification
+* Minor bugfixes and cleanup
+
 = 1.1 (Aug 5, 2016) =
 * Refactored admin list tables to prevent "Headers already sent error"