Release v2.6.5

v2.6.5 - 05/27/2025

• Developer: Passed the original filtered content to the restricted message filter.

Release v2.6.4

v2.6.4 - 05/09/2025

• Fix: Revert change in previous update that broke rendering of some shortcodes within [content_control] shortcode inner contents.

Release v2.6.3

v2.6.3 - 05/08/2025

• Fix: Excerpt rendering when custom message wasn't set.

Release v2.6.2

v2.6.2 - 04/22/2025

• Security: Escaped [content_control] message attribute.
• Fix: Misc JS bugs in admin.
• Developer: Added new content_control/pre_restrict_content & content_control/pre_restrict_excerpt filters to allow overloading/short curcuiting the default restriction application.

Full Changelog: v2.6.1...v2.6.2

Release v2.6.1

v2.6.1 - 03/15/2025

• Improvement: Only fetch titles & ids when loading posts/taxonomy for the Restriction Editor. Reducing request overhead.
• Improvement: Ensure taxonomies are also removed from search appropriately.
• Improvement: Reduce memory footprint of overloaded object handling.
• Tweak: Adjust rest intent when using search endpoint or arg for better detection.
• Fix: Prevent undefined post type or taxonomy public arg from generating warning notices.
• Fix: Prvent warnings due to translations being loaded too early.

Release v2.6.0

• Feature: Added new setting to control restricted content visibility in search results
  • Site owners can now choose to completely hide restricted content from search results
  • Includes detailed security guidance when enabling search visibility
  • Helps prevent unintended exposure of sensitive information through search
  • Resolves concerns addressed in CVE-2024-11153 by default, now requiring explicit admin consent to show items in search results.
• Performance: Improved asset minification.

Release v2.5.0

v2.5.0 - 08/18/2024

• Improvement: Change rule processing to be more explicit for each context/rule type, improving performance & reliability of how rules are handled in some edge cases.
• Improvement: Update content_control_known_blockTypes option to not be autoloaded.
• Improvement: Update QueryMonitor output to differentiate between terms & posts.
• Fix: Error due to invalid return value variable name.

Release v2.4.0

v2.4.0 - 06/21/2024

• Improvement: Optimized the order we determine if we can skip checking restrictions for any givem content type. Thanks to PolyLang team for the suggestion.
• Improvement: Better coverage for taxonomy query detection & filtering.
• Improvement: Added inertnal function caches to drastically reduce overhead of checking restrictions. This may result in a significant performance increase for large sites or sites with many restrictions.
• Improvement: Only generate list of page template types for rules when in the admin, saving potential DB query.
• Tweak: Explicitly bail on rule checks for unknown Rest API endpoints as we don't currently fully support them. Filter below added to allow modifying this behavior.
• Tweak: Remove upsell message when pro version is active.
• Fix: Bug with restricting logged in users from content when the user had post_edit permissions for the post.
• Developer: Added new internal globals variable handler instead of using global $vars directly. Set of helper functions available to get/set/push/pop global variables.
• Developer: Made controllers more efficient by conditionally loading them only when needed.
• Developer: Added new filter content_control/determine_uknonwn_rest_api_intent to allow 3rd party plugins to modify the REST API intent used in rule checks specifically for unknown intents.
• Developer: Added new filter content_control/request_is_excluded_rest_endpoint to allow 3rd party plugins to exclude/include custom REST API endpoints from restriction checks.
• Developer: Added new filter 'content_control/pre_query_can_be_ignored allowing early return for known ignorable queries.
• Developer: Added second paramter to thecontent_control/get_rest_api_intent filter pass the $rest_route.

Release v2.3.0

v2.3.0 - 05/23/2024

• Improvement: Added more full coverage of all query types for for restriction handling. This helps catch more custom/3rd party AJAX search queries that were not being filtered.
• Improvement: Added better handling for excluding queries and admin views from restrictions.
• Improvement: Added filters for easier compatibility fixes with 3rd party plugins.
• Improvement: Added support/fixes for BetterDocs custom AJAX searching.
• Improvement: Added support/fixes for Blocksy theme custom AJAX searching.
• Fix: Bug where $post->ID was used without checking if $post was set.
• Developer: Added new filter content_control/get_rest_api_intent to allow 3rd party plugins to modify the REST API intent used in rule checks.

Release v2.2.8

v2.2.8 - 05/07/2024

• Fix: Issue causing some non-admin AJAX requests to the REST API from being run through protection checks.
• Fix: Error when using page template rules & global $post is not set properly.