the_block_editor_meta_boxes()wp-admin/includes/post.php | Renders the meta boxes forms.
|
the_block_editor_meta_box_post_form_hidden_fields()wp-admin/includes/post.php | Renders the hidden form required for the meta boxes form.
|
network_step1()wp-admin/includes/network.php | Prints step 1 for Network installation process.
|
WP_Screen::render_screen_options()wp-admin/includes/class-wp-screen.php | Renders the screen options tab.
|
install_themes_upload()wp-admin/includes/theme-install.php | Displays a form to upload themes from zip files.
|
WP_List_Table::display_tablenav()wp-admin/includes/class-wp-list-table.php | Generates the table navigation above or below the table
|
admin_color_scheme_picker()wp-admin/includes/misc.php | Displays the default admin color scheme picker (Used in user-edit.php).
|
WP_Theme_Install_List_Table::display()wp-admin/includes/class-wp-theme-install-list-table.php | Displays the theme install table.
|
install_plugins_upload()wp-admin/includes/plugin-install.php | Displays a form to upload plugins from zip files.
|
_wp_dashboard_control_callback()wp-admin/includes/dashboard.php | Outputs controls for the current dashboard widget.
|
wp_dashboard()wp-admin/includes/dashboard.php | Displays the dashboard.
|
wp_dashboard_quick_press()wp-admin/includes/dashboard.php | Displays the Quick Draft widget.
|
settings_fields()wp-admin/includes/plugin.php | Outputs nonce, action, and option_page fields for a settings page.
|
find_posts_div()wp-admin/includes/template.php | Outputs the modal window used for attaching media to posts or pages in the media-listing screen.
|
wp_comment_reply()wp-admin/includes/template.php | Outputs the in-line comment reply-to form in the Comments list table.
|
_list_meta_row()wp-admin/includes/template.php | Outputs a single row of public meta data in the Custom Fields meta box.
|
meta_form()wp-admin/includes/template.php | Prints the form in the Custom Fields meta box.
|
WP_Themes_List_Table::display()wp-admin/includes/class-wp-themes-list-table.php | Displays the themes table.
|
media_upload_type_form()wp-admin/includes/media.php | Outputs the legacy media upload form for a given media type.
|
media_upload_type_url_form()wp-admin/includes/media.php | Outputs the legacy media upload form for external media.
|
media_upload_gallery_form()wp-admin/includes/media.php | Adds gallery form to upload iframe.
|
media_upload_library_form()wp-admin/includes/media.php | Outputs the legacy media upload form for the media library.
|
post_comment_meta_box()wp-admin/includes/meta-boxes.php | Displays comments for post.
|
link_categories_meta_box()wp-admin/includes/meta-boxes.php | Displays link categories form fields.
|
post_categories_meta_box()wp-admin/includes/meta-boxes.php | Displays post categories form fields.
|
WP_Post_Comments_List_Table::display()wp-admin/includes/class-wp-post-comments-list-table.php | |
WP_Comments_List_Table::extra_tablenav()wp-admin/includes/class-wp-comments-list-table.php | |
WP_Comments_List_Table::display()wp-admin/includes/class-wp-comments-list-table.php | Displays the comments table.
|
WP_Terms_List_Table::inline_edit()wp-admin/includes/class-wp-terms-list-table.php | Outputs the hidden row displayed when inline editing
|
request_filesystem_credentials()wp-admin/includes/file.php | Displays a form to the user to request for their FTP/SSH details in order to connect to the filesystem.
|
WP_Posts_List_Table::inline_edit()wp-admin/includes/class-wp-posts-list-table.php | Outputs the hidden row displayed when inline editing
|
Custom_Image_Header::step_1()wp-admin/includes/class-custom-image-header.php | Displays first step of custom header image page.
|
Custom_Image_Header::step_2()wp-admin/includes/class-custom-image-header.php | Displays second step of custom header image page.
|
confirm_delete_users()wp-admin/includes/ms.php | |
list_core_update()wp-admin/update-core.php | Lists available core updates.
|
list_plugin_updates()wp-admin/update-core.php | Display the upgrade plugins form.
|
list_theme_updates()wp-admin/update-core.php | Display the upgrade themes form.
|
list_translation_updates()wp-admin/update-core.php | Display the update translations form.
|
Custom_Background::admin_page()wp-admin/includes/class-custom-background.php | Displays the custom background page.
|
signup_nonce_fields()wp-includes/ms-functions.php | Adds a nonce field to the signup page.
|
wp_comment_form_unfiltered_html_nonce()wp-includes/comment-template.php | Displays form token for unfiltered comments.
|
_WP_Editors::wp_link_dialog()wp-includes/class-wp-editor.php | Dialog for internal linking.
|
Basic Examples
While less secure than the examples that follow, this is the simplest implementation which omits all arguments. In your form add the following:
It’s better to name your action and nonce in your form. Enter values for the first and second arguments to print the necessary hidden field:
Then in the page where it is being submitted to, you may verify it using the wp_verify_nonce() function. Notice that you have to manually retrieve the nonce (from the $_POST array in this example), and the name of the action is the 2nd parameter instead of the first:
We can create a nonce field without a name because it is optional. In that case, the name will be
_wpnonce
.The above statement echo a hidden field named as
_wpnonce
.To verify this nonce, we can use the `wp_verify_nonce` function.