: str_replace(): Passing null to parameter #2 ($replace) of type array|string is deprecated in
// This step remove the <script> that sets inline vars we then use the $this variables into wp_localize_script
$this->preloadedFormData = $form_data;
* Accepts array of settings and removes null data the array.
* @param $settings - a key/value pair of settings.
private function null_data_check( $settings )
// Loop over the settings we receive.
foreach ($settings as $key => $setting) {
// Check for null values in the settings array.
if ( null === $setting ) {
// Remove null settings from the array.
unset( $settings[ $key ] );
* Sanitize any field setting that can cause vulnerabilities
* @param array $fieldSettings
private function sanitizeFieldSettings(array $fieldSettings): array
$return = $fieldSettings;
$return['label']=$this->removeScriptTriggers( $fieldSettings['label']);
* Remove known script triggers that can be output on screen
private function removeScriptTriggers(string $string): string
$return =wp_kses_post( NinjaForms\Includes\Handlers\Sanitizer::preventScriptTriggerInHtmlOutput($string));
private function _localize_field_type_data()
$field_type_sections = array_values( Ninja_Forms()->config( 'FieldTypeSections' ) );
$field_type_settings = array();
$master_settings = array();
$setting_defaults = array();
foreach( Ninja_Forms()->fields as $field ){
if ( 'password' == $field->get_type() || 'passwordconfirm' == $field->get_type() ) {
if( ! $this->legacy_password && ! apply_filters( 'ninja_forms_enable_password_fields', false ) ){
if ( ! apply_filters( 'ninja_forms_field_show_in_builder', $field->show_in_builder(), $field ) ) {
$name = $field->get_name();
$settings = $field->get_settings();
$groups = Ninja_Forms::config( 'SettingsGroups' );
$unique_settings = $this->_unique_settings( $settings );
$master_settings = array_merge( $master_settings, $unique_settings );
$settings_groups = $this->_group_settings( $settings, $groups );
$settings_defaults = $this->_setting_defaults( $unique_settings );
$field_type_settings[ $name ] = array(
'nicename' => $field->get_nicename(),
'alias' => $field->get_aliases(),
'parentType' => $field->get_parent_type(),
'section' => $field->get_section(),
'icon' => $field->get_icon(),
'type' => $field->get_type(),
'settingGroups' => $settings_groups,
'settingDefaults' => $settings_defaults
$external_fields = $this->_fetch_field_feed();
foreach( $external_fields as $field){
if( ! isset( $field[ 'name' ] ) || ! $field[ 'name' ] ) continue;
$section = ( isset( $field['section'] ) ) ? $field['section'] : '';
$name = $field[ 'name' ];
$nicename = ( isset( $field[ 'nicename' ] ) ) ? $field[ 'nicename' ] : '';
$link = ( isset( $field[ 'link' ] ) ) ? $field[ 'link' ] : '';
$modal_content = ( isset( $field[ 'modal_content' ] ) ) ? $field[ 'modal_content' ] : '';
if( isset( $field_type_settings[ $name ] ) ) continue;
$field_type_settings[ $name ] = array(
'icon' => 'arrow-circle-o-down',
'modal_content' => $modal_content,
'settingGroups' => array(),
'settingDefaults' => array()
$saved_fields = Ninja_Forms()->form()->get_fields( array( 'saved' => 1) );
foreach( $saved_fields as $saved_field ){
$settings = $saved_field->get_settings();
unset( $settings['cellcid'] );
$id = $saved_field->get_id();
$type = $settings[ 'type' ];
$label = $settings[ 'label' ];
$field_type_settings[ $id ] = $field_type_settings[ $type ];
$field_type_settings[ $id ][ 'id' ] = $id;
$field_type_settings[ $id ][ 'type' ] = $type;
$field_type_settings[ $id ][ 'nicename' ] = $label;
$field_type_settings[ $id ][ 'section' ] = 'saved';
$defaults = $field_type_settings[ $id ][ 'settingDefaults' ];
$defaults = array_merge( $defaults, $settings );
$defaults[ 'saved' ] = TRUE;
$field_type_settings[ $id ][ 'settingDefaults' ] = $defaults;
// This step remove the <script> that sets inline vars we then use the $this variables into wp_localize_script
$this->fieldTypeData = array_values( $field_type_settings );
$this->fieldSettings = array_values( $master_settings );
$this->fieldTypeSections = $field_type_sections;
private function _localize_action_type_data()
$action_type_settings = array();
$master_settings_list = array();
foreach( Ninja_Forms()->actions as $action ){
$name = $action->get_name();
$settings = $action->get_settings();
$groups = Ninja_Forms::config( 'SettingsGroups' );
$settings_groups = $this->_group_settings( $settings, $groups );
$master_settings_list = array_merge( $master_settings_list, $settings );
$action_type_settings[ $name ] = array(
'section' => $action->get_section(),
'docUrl' => $action->get_doc_url(),
'group' => $action->get_group(),
'nicename' => $action->get_nicename(),
'image' => $action->get_image(),
'settingGroups' => $settings_groups,
'settingDefaults' => $this->_setting_defaults( $master_settings_list )
$external_actions = $this->_fetch_action_feed();
$u_id = get_option( 'nf_aff', false );
if ( !$u_id ) $u_id = apply_filters( 'ninja_forms_affiliate_id', false );
foreach( $external_actions as $action){
if( ! isset( $action[ 'name' ] ) || ! $action[ 'name' ] ) continue;
$group = ( isset( $action['group'] ) ) ? $action['group'] : '';
$name = $action[ 'name' ];
$nicename = ( isset( $action[ 'nicename' ] ) ) ? $action[ 'nicename' ] : '';
$image = ( isset( $action[ 'image' ] ) ) ? $action[ 'image' ] : '';
$link = ( isset( $action[ 'link' ] ) ) ? $action[ 'link' ] : '';
$modal_content = ( isset( $action[ 'modal_content' ] ) ) ? $action[ 'modal_content' ] : '';
$last_slash = strripos( $link, '/' );
$link = substr( $link, 0, $last_slash );
$link = urlencode( $link );
$link = 'http://www.shareasale.com/r.cfm?u=' . $u_id . '&b=812237&m=63061&afftrack=&urllink=' . $link;
if( isset( $action_type_settings[ $name ] ) ) continue;
$action_type_settings[ $name ] = array(
'section' => 'available',
'modal_content' => $modal_content,
'settingGroups' => array(),
'settingDefaults' => array()
* Remove some action types if Builder Dev Mode is not enabled.
if( 1 != Ninja_Forms()->get_setting('builder_dev_mode') ) {
/** Remove the WP Hook (custom) action. */
unset( $action_type_settings[ 'custom' ] );
$action_type_settings = apply_filters( 'ninja_forms_action_type_settings', $action_type_settings );
// This step remove the <script> that sets inline vars we then use the $this variables into wp_localize_script
$this->actionTypeData = array_values( $action_type_settings );
$this->actionSettings = array_values( $master_settings_list );
protected function _localize_form_settings()
$form_settings_types = Ninja_Forms::config( 'FormSettingsTypes' );
$form_settings[ 'display' ] = Ninja_Forms::config( 'FormDisplaySettings' );
$form_settings[ 'restrictions' ] = Ninja_Forms::config( 'FormRestrictionSettings' );
$form_settings[ 'calculations' ] = Ninja_Forms::config( 'FormCalculationSettings' );
$form_settings = apply_filters( 'ninja_forms_localize_forms_settings', $form_settings );
foreach( $form_settings_types as $group_name => $form_setting_group ){
if( ! isset( $form_settings[ $group_name ] ) ) $form_settings[ $group_name ] = array();
$form_settings[ $group_name ] = apply_filters( 'ninja_forms_localize_form_' . $group_name . '_settings', $form_settings[ $group_name ] );
$groups = Ninja_Forms::config( 'SettingsGroups' );
$master_settings = array();
foreach( $form_settings_types as $id => $type ) {
if( ! isset( $form_settings[ $id ] ) ) $form_settings[ $id ] = '';
$unique_settings = $this->_unique_settings( $form_settings[ $id ] );
$master_settings = array_merge( $master_settings, $unique_settings );
$form_settings_types[ $id ]['settingGroups'] = $this->_group_settings($form_settings[ $id ], $groups);
$form_settings_types[ $id ]['settingDefaults'] = $this->_setting_defaults($unique_settings);
$external_settings = $this->_fetch_settings_feed();
foreach( $external_settings as $setting){
if( ! isset( $setting[ 'id' ] ) || ! $setting[ 'id' ] ) continue;
$name = $setting[ 'id' ];
$nicename = ( isset( $setting[ 'nicename' ] ) ) ? $setting[ 'nicename' ] : '';
$link = ( isset( $setting[ 'link' ] ) ) ? $setting[ 'link' ] : '';
$modal_content = ( isset( $setting[ 'modal_content' ] ) ) ? $setting[ 'modal_content' ] : '';
if( isset( $form_settings_types[ $name ] ) ) continue;
$form_settings_types[ $name ] = array(
'modal_content' => $modal_content,
'settingGroups' => array(),
'settingDefaults' => array()
// This step remove the <script> that sets inline vars we then use the $this variables into wp_localize_script
$this->formSettingTypeData = array_values( $form_settings_types );
$this->formSettings = array_values( $master_settings );
protected function _localize_merge_tags()
'label' => esc_html__( 'Fields', 'ninja-forms' )
foreach( Ninja_Forms()->merge_tags as $key => $group ){
* If the merge tag group doesn't have a title, don't localise it.
* This convention is used to allow merge tags to continue to function,
* even though they can't be added to new forms.
$title = $group->get_title();
if ( empty( $title ) ) continue;
$merge_tags[ $key ] = array(
'id' => $group->get_id(),
'label' => $group->get_title(),
'tags' => array_values( $group->get_merge_tags() ),
'default_group' => $group->is_default_group()
$this->mergeTags = array_values( $merge_tags );
protected function _group_settings( $settings, $groups )
if( ! is_array( $settings ) ) return $groups;
foreach( $settings as $setting ){
$group = ( isset( $setting[ 'group' ] ) ) ? $setting[ 'group' ] : '';
if( isset( $setting[ 'type'] ) && 'fieldset' == $setting[ 'type' ] ){
$setting[ 'settings' ] = array_values( $setting[ 'settings' ] );
$groups[ $group ][ 'settings'][] = $setting;
foreach( $groups as $id => $group ) {
if ( empty( $group[ 'settings' ] ) ) {
usort($groups, array( $this, 'setting_group_priority' ) );
protected function _unique_settings( $settings )
$unique_settings = array();
if( ! is_array( $settings ) ) return $unique_settings;
foreach( $settings as $setting ){
if( isset( $setting[ 'type' ] ) && 'fieldset' == $setting[ 'type' ] ){
$unique_settings = array_merge( $unique_settings, $this->_unique_settings( $setting[ 'settings' ] ) );
$name = $setting[ 'name' ];
$unique_settings[ $name ] = $setting;
protected function _setting_defaults( $settings )
$setting_defaults = array();
foreach( $settings as $setting ){
$name = ( isset( $setting[ 'name' ] ) ) ? $setting[ 'name' ] : '';
$default = ( isset( $setting[ 'value' ] ) ) ? $setting[ 'value' ] : null;
$setting_defaults[ $name ] = $default;
return $setting_defaults;
protected function _fetch_action_feed()
return Ninja_Forms::config( 'AvailableActions' );
protected function _fetch_settings_feed()
return Ninja_Forms::config( 'AvailableSettings' );
protected function _fetch_field_feed()
return Ninja_Forms::config( 'AvailableFields' );
protected function setting_group_priority( $a, $b )
$priority[ 0 ] = ( isset( $a[ 'priority' ] ) ) ? $a[ 'priority' ] : 500;
$priority[ 1 ] = ( isset( $b[ 'priority' ] ) ) ? $b[ 'priority' ] : 500;
return $priority[ 0 ] - $priority[ 1 ];
public function get_capability()
return apply_filters( 'ninja_forms_admin_parent_menu_capabilities', $this->capability );
It is recommended that you Edit text format, this type of Fix handles quite a lot in one request
