wp_back/wp-content/plugins/advanced-custom-fields/includes/rest-api/class-acf-rest-api.php

<?php

// Exit if accessed directly.
if ( ! defined( 'ABSPATH' ) ) {
	exit;
}

// If class is already defined, return.
if ( class_exists( 'ACF_Rest_Api' ) ) {
	return;
}

class ACF_Rest_Api {

	/** @var ACF_Rest_Request */
	private $request;

	/** @var ACF_Rest_Embed_Links */
	private $embed_links;

	public function __construct() {
		add_filter( 'rest_pre_dispatch', array( $this, 'initialize' ), 10, 3 );
		add_action( 'rest_api_init', array( $this, 'register_field' ) );
	}

	public function initialize( $response, $handler, $request ) {
		if ( ! acf_get_setting( 'rest_api_enabled' ) ) {
			return;
		}

		// Parse request and set the object for local access.
		$this->request = new ACF_Rest_Request();
		$this->request->parse_request( $request );

		// Register the 'acf' REST property.
		$this->register_field();

		// If embed links are enabled in ACF's global settings, init the handler and set for local access.
		if ( acf_get_setting( 'rest_api_embed_links' ) ) {
			$this->embed_links = new ACF_Rest_Embed_Links();
			$this->embed_links->initialize();
		}
	}

	/**
	 * Register our custom property as a REST field.
	 */
	public function register_field() {
		if ( ! acf_get_setting( 'rest_api_enabled' ) ) {
			return;
		}

		if ( ! $this->request instanceof ACF_Rest_Request ) {
			$this->request = new ACF_Rest_Request();
			$this->request->parse_request( null );
		}

		$base = $this->request->object_sub_type;

		// If the object sub type ($post_type, $taxonomy, 'user') cannot be determined from the current request,
		// we don't know what endpoint to register the field against. Bail if that is the case.
		if ( ! $base ) {
			return;
		}

		if ( $this->request->child_object_type ) {
			$base = $this->request->child_object_type;
		}

		// If we've already registered this route, no need to do it again.
		if ( acf_did( 'acf/register_rest_field' ) ) {
			global $wp_rest_additional_fields;

			if ( isset( $wp_rest_additional_fields[ $base ], $wp_rest_additional_fields[ $base ]['acf'] ) ) {
				return;
			}
		}

		register_rest_field(
			$base,
			'acf',
			array(
				'schema'          => $this->get_schema(),
				'get_callback'    => array( $this, 'load_fields' ),
				'update_callback' => array( $this, 'update_fields' ),
			)
		);
	}

	/**
	 * Dynamically generate the schema for the current request.
	 *
	 * @return array
	 */
	private function get_schema() {
		$schema = array(
			'description' => 'ACF field data',
			'type'        => 'object',
			'properties'  => array(),
			'arg_options' => array(
				'validate_callback' => array( $this, 'validate_rest_arg' ),
			),
		);

		// If we don't have an object type, we can't determine the schema for the current request.
		$object_type = $this->request->object_type;
		if ( ! $object_type ) {
			return $schema;
		}

		$object_id       = $this->request->get_url_param( 'id' );
		$child_id        = $this->request->get_url_param( 'child_id' );
		$object_sub_type = $this->request->object_sub_type;

		if ( $child_id ) {
			$object_id = $child_id;
		}

		if ( ! $object_id ) {
			$field_groups = $this->get_field_groups_by_object_type( $object_type );
		} else {
			$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type );
		}

		if ( empty( $field_groups ) ) {
			return $schema;
		}

		foreach ( $field_groups as $field_group ) {
			foreach ( $this->get_fields( $field_group, $object_id ) as $field ) {
				$schema['properties'][ $field['name'] ] = acf_get_field_rest_schema( $field );
			}
		}

		return $schema;
	}

	/**
	 * Validate the request args. Mostly a wrapper for `rest_validate_request_arg()`, but also
	 * fires off a filter, so we can add some custom validation for specific fields.
	 *
	 * This will likely no longer be needed once WordPress implements something like `validate_callback`
	 * and `sanitize_callback` for nested schema properties, see:
	 * https://core.trac.wordpress.org/ticket/49960
	 *
	 * @param mixed            $value
	 * @param \WP_REST_Request $request
	 * @param string           $param
	 *
	 * @return bool|WP_Error
	 */
	public function validate_rest_arg( $value, $request, $param ) {
		// Validate all fields with default WordPress validation first.
		$valid = rest_validate_request_arg( $value, $request, $param );

		if ( true !== $valid ) {
			return $valid;
		}

		foreach ( $value as $field_name => $field_value ) {
			$field = acf_get_field( $field_name );

			if ( ! $field ) {
				continue;
			}

			/**
			 * Filters whether a value passed via REST is valid.
			 *
			 * @since   5.11
			 *
			 * @param bool  $valid True if the value is valid, false or WP_Error if not.
			 * @param mixed $value The value to check.
			 * @param array $field An array of information about the field.
			 */
			$valid = apply_filters( 'acf/validate_rest_value/type=' . $field['type'], true, $field_value, $field );

			if ( true !== $valid ) {
				return $valid;
			}
		}

		return true;
	}

	/**
	 * Load field values into the requested object. This method is not a part of any public API and is only public as
	 * it is required by WordPress.
	 *
	 * @param array           $object An array representation of the post, term, or user object.
	 * @param string          $field_name
	 * @param WP_REST_Request $request
	 * @param string          $object_sub_type Note that this isn't the same as $this->object_type. This variable is
	 *                                           more specific and can be a post type or taxonomy.
	 * @return array
	 */
	public function load_fields( $object, $field_name, $request, $object_sub_type ) {
		// The fields loaded for display on the REST API in the form of {$field_name}=>{$field_value} pairs.
		$fields = array();

		// Determine the object ID from the given object.
		$object_id = acf_get_object_id( $object );

		// Use this object type parsed from the request.
		$object_type = $this->request->object_type;

		// Object ID and type are essential to determining which fields to load. Return if we don't have both.
		if ( ! $object_id or ! $object_type ) {
			return $fields;
		}

		$object_sub_type = str_replace( '-revision', '', $object_sub_type );

		// Get all field groups for the current object.
		$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type );
		if ( empty( $field_groups ) ) {
			return $fields;
		}

		// Determine the ACF ID string for the current object.
		$post_id = $this->make_identifier( $object_id, $object_type );

		// Loop through the fields within all applicable field groups and add the fields to the response.
		foreach ( $field_groups as $field_group ) {
			foreach ( $this->get_fields( $field_group, $object_id ) as $field ) {
				$value = acf_get_value( $post_id, $field );

				if ( $this->embed_links ) {
					$this->embed_links->prepare_links( $post_id, $field );
				}

				// Format the field value according to the request params.
				$format = $request->get_param( 'acf_format' ) ?: acf_get_setting( 'rest_api_format' );
				$value  = acf_format_value_for_rest( $value, $post_id, $field, $format );

				$fields[ $field['name'] ] = $value;
			}
		}

		/**
		 * Reset the store so that REST API values (which may be preloaded
		 * by WP core and have different values than standard values) aren't
		 * saved to the store.
		 */
		acf_get_store( 'values' )->reset();

		return $fields;
	}

	/**
	 * Update any incoming field values for the given object. This method is not a part of any public API and is only
	 * public as it is required by WordPress.
	 *
	 * @param array                   $data
	 * @param WP_Post|WP_Term|WP_User $object
	 * @param string                  $property 'acf'
	 * @param WP_REST_Request         $request
	 * @param string                  $object_sub_type This will be the post type, the taxonomy, or 'user'.
	 * @return bool|WP_Error
	 */
	public function update_fields( $data, $object, $property, $request, $object_sub_type ) {
		// If 'acf' data object is empty, don't do anything.
		if ( empty( $data ) ) {
			return true;
		}

		// Determine the object context (type & ID). If the context can't be determined from the current request, throw an
		// error as the fields are not updateable. This handles in line with WordPress' \WP_REST_Request::sanitize_params().
		$object_id   = acf_get_object_id( $object );
		$object_type = $this->request->object_type;
		if ( ! $object_id or ! $object_type ) {
			return new WP_Error(
				'acf_rest_object_unknown',
				__( sprintf( 'Unable to determine the %s object ID or type. The %s property cannot be updated.', get_class( $object ), $property ), 'acf' ),
				array( 'status' => 400 )
			);
		}

		// Determine the ACF selector for the current object.
		$post_id = $this->make_identifier( $object_id, $object_type );

		// Allow unrestricted update of fields by field key when saving via the WordPress admin. Admin mode will
		// update fields using their field keys to lookup the field. The field lookup is not scoped to field groups
		// located on the given object so any field can be updated. Given the field keys are not defined in the
		// schema, core validation/sanitisation are also bypassed.
		// if ( $this->is_admin_mode( $data ) ) {
		// Loop through payload and save fields using field keys.
		// foreach ( $data as $field_key => $value ) {
		// if ( $field = acf_get_field( $field_key ) ) {
		// acf_update_value( $value, $post_id, $field );
		// }
		// }
		//
		// return true;
		// }

		// todo - consider/discuss handling this in the request object instead
		// If the incoming data defines field group keys, extract it from the data. This is used to scope the
		// field lookup in \ACF_Rest_Api::get_field_groups_by_id();
		$field_group_scope = acf_extract_var( $data, '_acf_field_group_scope', array() );

		// Get all field groups for the current object.
		$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type, $field_group_scope );
		if ( empty( $field_groups ) ) {
			return true;
		}

		// Collect all fields from matching field groups.
		$all_fields = array();
		foreach ( $field_groups as $field_group ) {
			if ( $fields = $this->get_fields( $field_group, $object_id ) ) {
				$all_fields = array_merge( $fields, $all_fields );
			}
		}

		if ( $all_fields ) {
			// todo - consider/discuss handling this in the request object instead.
			// If the incoming request has a map of field names to keys, extract it for use in the subsequent
			// field search.
			$field_key_map = acf_extract_var( $data, '_acf_field_key_map', array() );

			// Loop through the inbound data payload, find the field matching the incoming field name, and
			// update the field.
			foreach ( $data as $field_name => $value ) {

				// If the field name has a key explicitly mapped to it, use the field key to find the field.
				if ( isset( $field_key_map[ $field_name ] ) ) {
					$field_name = $field_key_map[ $field_name ];
				}

				if ( $field = acf_search_fields( $field_name, $all_fields ) ) {
					acf_update_value( $value, $post_id, $field );
				}
			}
		}

		return true;
	}

	// todo - this should check for a flag and validate a nonce to ensure we are in admin mode.
	// todo - consider/discuss handling this in the request object instead.
	private function is_admin_mode( $data ) {
		return isset( $data['_acf_admin_mode'] ) && $data['_acf_admin_mode'];
	}

	/**
	 * Make the ACF identifier string for the given object.
	 *
	 * @param int    $object_id
	 * @param string $object_type 'user', 'term', or 'post'
	 * @return string
	 */
	private function make_identifier( $object_id, $object_type ) {
		$formats = array(
			'user'    => 'user_%s',
			'term'    => 'term_%s',
			'comment' => 'comment_%s',
		);

		return isset( $formats[ $object_type ] )
			? sprintf( $formats[ $object_type ], $object_id )
			: $object_id;
	}

	/**
	 * Gets an array of the location types that a field group is configured to use.
	 *
	 * @param string $object_type    'user', 'term', or 'post'
	 * @param array  $field_group    The field group to check.
	 * @param array  $location_types An array of location types.
	 *
	 * @return bool
	 */
	private function object_type_has_field_group( $object_type, $field_group, $location_types = array() ) {
		if ( ! isset( $field_group['location'] ) || ! is_array( $field_group['location'] ) ) {
			return false;
		}

		$location_types = empty( $location_types ) ? acf_get_location_types() : $location_types;

		foreach ( $field_group['location'] as $rule_group ) {

			$match = false;
			foreach ( $rule_group as $rule ) {
				$rule = acf_validate_location_rule( $rule );

				if ( ! isset( $location_types[ $rule['param'] ] ) ) {
					continue;
				}

				// Make sure the main object type matches.
				$location_type = $location_types[ $rule['param'] ];
				if ( ! isset( $location_type->object_type ) || $location_type->object_type !== (string) $object_type ) {
					continue;
				}

				/**
				 * For posts/pages, we can only be sure that fields will show up if
				 * the field group is configured to show up for all items of the current
				 * post type.
				 */
				if ( 'post' === $object_type && 'post_type' === $rule['param'] ) {
					if ( $rule['operator'] === '==' && $this->request->object_sub_type !== $rule['value'] ) {
						continue;
					}
					if ( $rule['operator'] === '!=' && $this->request->object_sub_type === $rule['value'] ) {
						continue;
					}

					$match = true;
				}

				if ( 'term' === $object_type && 'taxonomy' === $rule['param'] ) {
					if ( $rule['operator'] === '==' && $this->request->object_sub_type !== $rule['value'] ) {
						continue;
					}
					if ( $rule['operator'] === '!=' && $this->request->object_sub_type === $rule['value'] ) {
						continue;
					}

					$match = true;
				}

				if ( in_array( $object_type, array( 'user', 'comment' ) ) ) {
					$match = true;
				}
			}

			if ( $match ) {
				return true;
			}
		}

		return false;
	}

	/**
	 * Get all field groups for the provided object type.
	 *
	 * @param string $object_type  'user', 'term', or 'post'
	 *
	 * @return array An array of field groups that display for that location type.
	 */
	private function get_field_groups_by_object_type( $object_type ) {
		$field_groups       = acf_get_field_groups();
		$location_types     = acf_get_location_types();
		$object_type_groups = array();

		foreach ( $field_groups as $field_group ) {
			if ( empty( $field_group['show_in_rest'] ) ) {
				continue;
			}

			if ( $this->object_type_has_field_group( $object_type, $field_group, $location_types ) ) {
				$object_type_groups[] = $field_group;
			}
		}

		return $object_type_groups;
	}

	/**
	 * Get all field groups for a given object.
	 *
	 * @param int         $object_id
	 * @param string      $object_type 'user', 'term', or 'post'
	 * @param string|null $object_sub_type The post type or taxonomy. When an $object_type of 'user' is in play, this can be ignored.
	 * @param array       $scope Field group keys to limit the returned set of field groups to. This is used to scope field lookups to specific groups.
	 * @return array An array of matching field groups.
	 */
	private function get_field_groups_by_id( $object_id, $object_type, $object_sub_type = null, $scope = array() ) {
		// When dealing with a term, we need the taxonomy in order to look up the relevant field groups. The taxonomy is expected
		// in the $object_sub_type variable but when building our schema, this isn't readily available. This block ensures the
		// taxonomy is set when not passed in.
		if ( $object_type === 'term' && $object_sub_type === null ) {
			$term = get_term( $object_id );
			if ( ! $term instanceof WP_Term ) {
				return array();
			}
			$object_sub_type = $term->taxonomy;
		}

		switch ( $object_type ) {
			case 'user':
				$args = array(
					'user_id'   => $object_id,
					'rest'      => true,
				);
				break;
			case 'term':
				$args = array( 'taxonomy' => $object_sub_type );
				break;
			case 'comment':
				$comment   = get_comment( $object_id );
				$post_type = get_post_type( $comment->comment_post_ID );
				$args      = array( 'comment'  => $post_type );
				break;
			case 'post':
			default:
				$args            = array( 'post_id' => $object_id );
				$child_rest_base = $this->request->get_url_param( 'child_rest_base' );
				if ( $child_rest_base && 'post' === $object_type ) {
					$args['post_type'] = $object_sub_type;
				}
		}

		// Only return field groups that are configured to show in REST.
		return array_filter(
			acf_get_field_groups( $args ),
			function ( $group ) use ( $scope ) {
				if ( $scope and ! in_array( $group['key'], $scope ) ) {
					return false;
				}

				return $group['show_in_rest'];
			}
		);
	}

	/**
	 * Get all ACF fields for a given field group and allow third party filtering.
	 *
	 * @param array    $field_group This could technically be other possible values supported by acf_get_fields() but in this
	 *                           context, we're only using the field group arrays.
	 * @param null|int $object_id The ID of the object being prepared.
	 * @return array
	 */
	private function get_fields( $field_group, $object_id = null ) {
		// Get all fields for this field group that are rest enabled.
		$fields = array_filter(
			acf_get_fields( $field_group ),
			function ( $field ) {
				$field_type = acf_get_field_type( $field['type'] );
				return isset( $field_type->show_in_rest ) && $field_type->show_in_rest;
			}
		);

		// Set up context array for use in the filter below.
		$resource = array(
			'type'     => $this->request->object_type,
			'sub_type' => $this->request->object_sub_type,
			'id'       => $object_id,
		);

		$http_method = $this->request->http_method;

		/**
		 * Filter the fields available to the REST API.
		 *
		 * @param array  $fields The ACF fields for this field group.
		 * @param array  $resource Contextual information about the current resource request.
		 * @param string $http_method The HTTP method of the current request (GET, POST, PUT, PATCH, DELETE, OPTION, HEAD).
		 */
		return (array) apply_filters( 'acf/rest/get_fields', $fields, $resource, $http_method );
	}

}
first 2024-05-20 15:37:46 +03:00			`<?php`

			`// Exit if accessed directly.`
			`if ( ! defined( 'ABSPATH' ) ) {`
			`exit;`
			`}`

			`// If class is already defined, return.`
			`if ( class_exists( 'ACF_Rest_Api' ) ) {`
			`return;`
			`}`

			`class ACF_Rest_Api {`

			`/** @var ACF_Rest_Request */`
			`private $request;`

			`/** @var ACF_Rest_Embed_Links */`
			`private $embed_links;`

			`public function __construct() {`
			`add_filter( 'rest_pre_dispatch', array( $this, 'initialize' ), 10, 3 );`
			`add_action( 'rest_api_init', array( $this, 'register_field' ) );`
			`}`

			`public function initialize( $response, $handler, $request ) {`
			`if ( ! acf_get_setting( 'rest_api_enabled' ) ) {`
			`return;`
			`}`

			`// Parse request and set the object for local access.`
			`$this->request = new ACF_Rest_Request();`
			`$this->request->parse_request( $request );`

			`// Register the 'acf' REST property.`
			`$this->register_field();`

			`// If embed links are enabled in ACF's global settings, init the handler and set for local access.`
			`if ( acf_get_setting( 'rest_api_embed_links' ) ) {`
			`$this->embed_links = new ACF_Rest_Embed_Links();`
			`$this->embed_links->initialize();`
			`}`
			`}`

			`/**`
			`* Register our custom property as a REST field.`
			`*/`
			`public function register_field() {`
			`if ( ! acf_get_setting( 'rest_api_enabled' ) ) {`
			`return;`
			`}`

			`if ( ! $this->request instanceof ACF_Rest_Request ) {`
			`$this->request = new ACF_Rest_Request();`
			`$this->request->parse_request( null );`
			`}`

			`$base = $this->request->object_sub_type;`

			`// If the object sub type ($post_type, $taxonomy, 'user') cannot be determined from the current request,`
			`// we don't know what endpoint to register the field against. Bail if that is the case.`
			`if ( ! $base ) {`
			`return;`
			`}`

			`if ( $this->request->child_object_type ) {`
			`$base = $this->request->child_object_type;`
			`}`

			`// If we've already registered this route, no need to do it again.`
			`if ( acf_did( 'acf/register_rest_field' ) ) {`
			`global $wp_rest_additional_fields;`

			`if ( isset( $wp_rest_additional_fields[ $base ], $wp_rest_additional_fields[ $base ]['acf'] ) ) {`
			`return;`
			`}`
			`}`

			`register_rest_field(`
			`$base,`
			`'acf',`
			`array(`
			`'schema' => $this->get_schema(),`
			`'get_callback' => array( $this, 'load_fields' ),`
			`'update_callback' => array( $this, 'update_fields' ),`
			`)`
			`);`
			`}`

			`/**`
			`* Dynamically generate the schema for the current request.`
			`*`
			`* @return array`
			`*/`
			`private function get_schema() {`
			`$schema = array(`
			`'description' => 'ACF field data',`
			`'type' => 'object',`
			`'properties' => array(),`
			`'arg_options' => array(`
			`'validate_callback' => array( $this, 'validate_rest_arg' ),`
			`),`
			`);`

			`// If we don't have an object type, we can't determine the schema for the current request.`
			`$object_type = $this->request->object_type;`
			`if ( ! $object_type ) {`
			`return $schema;`
			`}`

			`$object_id = $this->request->get_url_param( 'id' );`
			`$child_id = $this->request->get_url_param( 'child_id' );`
			`$object_sub_type = $this->request->object_sub_type;`

			`if ( $child_id ) {`
			`$object_id = $child_id;`
			`}`

			`if ( ! $object_id ) {`
			`$field_groups = $this->get_field_groups_by_object_type( $object_type );`
			`} else {`
			`$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type );`
			`}`

			`if ( empty( $field_groups ) ) {`
			`return $schema;`
			`}`

			`foreach ( $field_groups as $field_group ) {`
			`foreach ( $this->get_fields( $field_group, $object_id ) as $field ) {`
			`$schema['properties'][ $field['name'] ] = acf_get_field_rest_schema( $field );`
			`}`
			`}`

			`return $schema;`
			`}`

			`/**`
			* Validate the request args. Mostly a wrapper for `rest_validate_request_arg()`, but also
			`* fires off a filter, so we can add some custom validation for specific fields.`
			`*`
			* This will likely no longer be needed once WordPress implements something like `validate_callback`
			* and `sanitize_callback` for nested schema properties, see:
			`* https://core.trac.wordpress.org/ticket/49960`
			`*`
			`* @param mixed $value`
			`* @param \WP_REST_Request $request`
			`* @param string $param`
			`*`
			`* @return bool\|WP_Error`
			`*/`
			`public function validate_rest_arg( $value, $request, $param ) {`
			`// Validate all fields with default WordPress validation first.`
			`$valid = rest_validate_request_arg( $value, $request, $param );`

			`if ( true !== $valid ) {`
			`return $valid;`
			`}`

			`foreach ( $value as $field_name => $field_value ) {`
			`$field = acf_get_field( $field_name );`

			`if ( ! $field ) {`
			`continue;`
			`}`

			`/**`
			`* Filters whether a value passed via REST is valid.`
			`*`
			`* @since 5.11`
			`*`
			`* @param bool $valid True if the value is valid, false or WP_Error if not.`
			`* @param mixed $value The value to check.`
			`* @param array $field An array of information about the field.`
			`*/`
			`$valid = apply_filters( 'acf/validate_rest_value/type=' . $field['type'], true, $field_value, $field );`

			`if ( true !== $valid ) {`
			`return $valid;`
			`}`
			`}`

			`return true;`
			`}`

			`/**`
			`* Load field values into the requested object. This method is not a part of any public API and is only public as`
			`* it is required by WordPress.`
			`*`
			`* @param array $object An array representation of the post, term, or user object.`
			`* @param string $field_name`
			`* @param WP_REST_Request $request`
			`* @param string $object_sub_type Note that this isn't the same as $this->object_type. This variable is`
			`* more specific and can be a post type or taxonomy.`
			`* @return array`
			`*/`
			`public function load_fields( $object, $field_name, $request, $object_sub_type ) {`
			`// The fields loaded for display on the REST API in the form of {$field_name}=>{$field_value} pairs.`
			`$fields = array();`

			`// Determine the object ID from the given object.`
			`$object_id = acf_get_object_id( $object );`

			`// Use this object type parsed from the request.`
			`$object_type = $this->request->object_type;`

			`// Object ID and type are essential to determining which fields to load. Return if we don't have both.`
			`if ( ! $object_id or ! $object_type ) {`
			`return $fields;`
			`}`

			`$object_sub_type = str_replace( '-revision', '', $object_sub_type );`

			`// Get all field groups for the current object.`
			`$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type );`
			`if ( empty( $field_groups ) ) {`
			`return $fields;`
			`}`

			`// Determine the ACF ID string for the current object.`
			`$post_id = $this->make_identifier( $object_id, $object_type );`

			`// Loop through the fields within all applicable field groups and add the fields to the response.`
			`foreach ( $field_groups as $field_group ) {`
			`foreach ( $this->get_fields( $field_group, $object_id ) as $field ) {`
			`$value = acf_get_value( $post_id, $field );`

			`if ( $this->embed_links ) {`
			`$this->embed_links->prepare_links( $post_id, $field );`
			`}`

			`// Format the field value according to the request params.`
			`$format = $request->get_param( 'acf_format' ) ?: acf_get_setting( 'rest_api_format' );`
			`$value = acf_format_value_for_rest( $value, $post_id, $field, $format );`

			`$fields[ $field['name'] ] = $value;`
			`}`
			`}`

			`/**`
			`* Reset the store so that REST API values (which may be preloaded`
			`* by WP core and have different values than standard values) aren't`
			`* saved to the store.`
			`*/`
			`acf_get_store( 'values' )->reset();`

			`return $fields;`
			`}`

			`/**`
			`* Update any incoming field values for the given object. This method is not a part of any public API and is only`
			`* public as it is required by WordPress.`
			`*`
			`* @param array $data`
			`* @param WP_Post\|WP_Term\|WP_User $object`
			`* @param string $property 'acf'`
			`* @param WP_REST_Request $request`
			`* @param string $object_sub_type This will be the post type, the taxonomy, or 'user'.`
			`* @return bool\|WP_Error`
			`*/`
			`public function update_fields( $data, $object, $property, $request, $object_sub_type ) {`
			`// If 'acf' data object is empty, don't do anything.`
			`if ( empty( $data ) ) {`
			`return true;`
			`}`

			`// Determine the object context (type & ID). If the context can't be determined from the current request, throw an`
			`// error as the fields are not updateable. This handles in line with WordPress' \WP_REST_Request::sanitize_params().`
			`$object_id = acf_get_object_id( $object );`
			`$object_type = $this->request->object_type;`
			`if ( ! $object_id or ! $object_type ) {`
			`return new WP_Error(`
			`'acf_rest_object_unknown',`
			`__( sprintf( 'Unable to determine the %s object ID or type. The %s property cannot be updated.', get_class( $object ), $property ), 'acf' ),`
			`array( 'status' => 400 )`
			`);`
			`}`

			`// Determine the ACF selector for the current object.`
			`$post_id = $this->make_identifier( $object_id, $object_type );`

			`// Allow unrestricted update of fields by field key when saving via the WordPress admin. Admin mode will`
			`// update fields using their field keys to lookup the field. The field lookup is not scoped to field groups`
			`// located on the given object so any field can be updated. Given the field keys are not defined in the`
			`// schema, core validation/sanitisation are also bypassed.`
			`// if ( $this->is_admin_mode( $data ) ) {`
			`// Loop through payload and save fields using field keys.`
			`// foreach ( $data as $field_key => $value ) {`
			`// if ( $field = acf_get_field( $field_key ) ) {`
			`// acf_update_value( $value, $post_id, $field );`
			`// }`
			`// }`
			`//`
			`// return true;`
			`// }`

			`// todo - consider/discuss handling this in the request object instead`
			`// If the incoming data defines field group keys, extract it from the data. This is used to scope the`
			`// field lookup in \ACF_Rest_Api::get_field_groups_by_id();`
			`$field_group_scope = acf_extract_var( $data, '_acf_field_group_scope', array() );`

			`// Get all field groups for the current object.`
			`$field_groups = $this->get_field_groups_by_id( $object_id, $object_type, $object_sub_type, $field_group_scope );`
			`if ( empty( $field_groups ) ) {`
			`return true;`
			`}`

			`// Collect all fields from matching field groups.`
			`$all_fields = array();`
			`foreach ( $field_groups as $field_group ) {`
			`if ( $fields = $this->get_fields( $field_group, $object_id ) ) {`
			`$all_fields = array_merge( $fields, $all_fields );`
			`}`
			`}`

			`if ( $all_fields ) {`
			`// todo - consider/discuss handling this in the request object instead.`
			`// If the incoming request has a map of field names to keys, extract it for use in the subsequent`
			`// field search.`
			`$field_key_map = acf_extract_var( $data, '_acf_field_key_map', array() );`

			`// Loop through the inbound data payload, find the field matching the incoming field name, and`
			`// update the field.`
			`foreach ( $data as $field_name => $value ) {`

			`// If the field name has a key explicitly mapped to it, use the field key to find the field.`
			`if ( isset( $field_key_map[ $field_name ] ) ) {`
			`$field_name = $field_key_map[ $field_name ];`
			`}`

			`if ( $field = acf_search_fields( $field_name, $all_fields ) ) {`
			`acf_update_value( $value, $post_id, $field );`
			`}`
			`}`
			`}`

			`return true;`
			`}`

			`// todo - this should check for a flag and validate a nonce to ensure we are in admin mode.`
			`// todo - consider/discuss handling this in the request object instead.`
			`private function is_admin_mode( $data ) {`
			`return isset( $data['_acf_admin_mode'] ) && $data['_acf_admin_mode'];`
			`}`

			`/**`
			`* Make the ACF identifier string for the given object.`
			`*`
			`* @param int $object_id`
			`* @param string $object_type 'user', 'term', or 'post'`
			`* @return string`
			`*/`
			`private function make_identifier( $object_id, $object_type ) {`
			`$formats = array(`
			`'user' => 'user_%s',`
			`'term' => 'term_%s',`
			`'comment' => 'comment_%s',`
			`);`

			`return isset( $formats[ $object_type ] )`
			`? sprintf( $formats[ $object_type ], $object_id )`
			`: $object_id;`
			`}`

			`/**`
			`* Gets an array of the location types that a field group is configured to use.`
			`*`
			`* @param string $object_type 'user', 'term', or 'post'`
			`* @param array $field_group The field group to check.`
			`* @param array $location_types An array of location types.`
			`*`
			`* @return bool`
			`*/`
			`private function object_type_has_field_group( $object_type, $field_group, $location_types = array() ) {`
			`if ( ! isset( $field_group['location'] ) \|\| ! is_array( $field_group['location'] ) ) {`
			`return false;`
			`}`

			`$location_types = empty( $location_types ) ? acf_get_location_types() : $location_types;`

			`foreach ( $field_group['location'] as $rule_group ) {`

			`$match = false;`
			`foreach ( $rule_group as $rule ) {`
			`$rule = acf_validate_location_rule( $rule );`

			`if ( ! isset( $location_types[ $rule['param'] ] ) ) {`
			`continue;`
			`}`

			`// Make sure the main object type matches.`
			`$location_type = $location_types[ $rule['param'] ];`
			`if ( ! isset( $location_type->object_type ) \|\| $location_type->object_type !== (string) $object_type ) {`
			`continue;`
			`}`

			`/**`
			`* For posts/pages, we can only be sure that fields will show up if`
			`* the field group is configured to show up for all items of the current`
			`* post type.`
			`*/`
			`if ( 'post' === $object_type && 'post_type' === $rule['param'] ) {`
			`if ( $rule['operator'] === '==' && $this->request->object_sub_type !== $rule['value'] ) {`
			`continue;`
			`}`
			`if ( $rule['operator'] === '!=' && $this->request->object_sub_type === $rule['value'] ) {`
			`continue;`
			`}`

			`$match = true;`
			`}`

			`if ( 'term' === $object_type && 'taxonomy' === $rule['param'] ) {`
			`if ( $rule['operator'] === '==' && $this->request->object_sub_type !== $rule['value'] ) {`
			`continue;`
			`}`
			`if ( $rule['operator'] === '!=' && $this->request->object_sub_type === $rule['value'] ) {`
			`continue;`
			`}`

			`$match = true;`
			`}`

			`if ( in_array( $object_type, array( 'user', 'comment' ) ) ) {`
			`$match = true;`
			`}`
			`}`

			`if ( $match ) {`
			`return true;`
			`}`
			`}`

			`return false;`
			`}`

			`/**`
			`* Get all field groups for the provided object type.`
			`*`
			`* @param string $object_type 'user', 'term', or 'post'`
			`*`
			`* @return array An array of field groups that display for that location type.`
			`*/`
			`private function get_field_groups_by_object_type( $object_type ) {`
			`$field_groups = acf_get_field_groups();`
			`$location_types = acf_get_location_types();`
			`$object_type_groups = array();`

			`foreach ( $field_groups as $field_group ) {`
			`if ( empty( $field_group['show_in_rest'] ) ) {`
			`continue;`
			`}`

			`if ( $this->object_type_has_field_group( $object_type, $field_group, $location_types ) ) {`
			`$object_type_groups[] = $field_group;`
			`}`
			`}`

			`return $object_type_groups;`
			`}`

			`/**`
			`* Get all field groups for a given object.`
			`*`
			`* @param int $object_id`
			`* @param string $object_type 'user', 'term', or 'post'`
			`* @param string\|null $object_sub_type The post type or taxonomy. When an $object_type of 'user' is in play, this can be ignored.`
			`* @param array $scope Field group keys to limit the returned set of field groups to. This is used to scope field lookups to specific groups.`
			`* @return array An array of matching field groups.`
			`*/`
			`private function get_field_groups_by_id( $object_id, $object_type, $object_sub_type = null, $scope = array() ) {`
			`// When dealing with a term, we need the taxonomy in order to look up the relevant field groups. The taxonomy is expected`
			`// in the $object_sub_type variable but when building our schema, this isn't readily available. This block ensures the`
			`// taxonomy is set when not passed in.`
			`if ( $object_type === 'term' && $object_sub_type === null ) {`
			`$term = get_term( $object_id );`
			`if ( ! $term instanceof WP_Term ) {`
			`return array();`
			`}`
			`$object_sub_type = $term->taxonomy;`
			`}`

			`switch ( $object_type ) {`
			`case 'user':`
			`$args = array(`
			`'user_id' => $object_id,`
			`'rest' => true,`
			`);`
			`break;`
			`case 'term':`
			`$args = array( 'taxonomy' => $object_sub_type );`
			`break;`
			`case 'comment':`
			`$comment = get_comment( $object_id );`
			`$post_type = get_post_type( $comment->comment_post_ID );`
			`$args = array( 'comment' => $post_type );`
			`break;`
			`case 'post':`
			`default:`
			`$args = array( 'post_id' => $object_id );`
			`$child_rest_base = $this->request->get_url_param( 'child_rest_base' );`
			`if ( $child_rest_base && 'post' === $object_type ) {`
			`$args['post_type'] = $object_sub_type;`
			`}`
			`}`

			`// Only return field groups that are configured to show in REST.`
			`return array_filter(`
			`acf_get_field_groups( $args ),`
			`function ( $group ) use ( $scope ) {`
			`if ( $scope and ! in_array( $group['key'], $scope ) ) {`
			`return false;`
			`}`

			`return $group['show_in_rest'];`
			`}`
			`);`
			`}`

			`/**`
			`* Get all ACF fields for a given field group and allow third party filtering.`
			`*`
			`* @param array $field_group This could technically be other possible values supported by acf_get_fields() but in this`
			`* context, we're only using the field group arrays.`
			`* @param null\|int $object_id The ID of the object being prepared.`
			`* @return array`
			`*/`
			`private function get_fields( $field_group, $object_id = null ) {`
			`// Get all fields for this field group that are rest enabled.`
			`$fields = array_filter(`
			`acf_get_fields( $field_group ),`
			`function ( $field ) {`
			`$field_type = acf_get_field_type( $field['type'] );`
			`return isset( $field_type->show_in_rest ) && $field_type->show_in_rest;`
			`}`
			`);`

			`// Set up context array for use in the filter below.`
			`$resource = array(`
			`'type' => $this->request->object_type,`
			`'sub_type' => $this->request->object_sub_type,`
			`'id' => $object_id,`
			`);`

			`$http_method = $this->request->http_method;`

			`/**`
			`* Filter the fields available to the REST API.`
			`*`
			`* @param array $fields The ACF fields for this field group.`
			`* @param array $resource Contextual information about the current resource request.`
			`* @param string $http_method The HTTP method of the current request (GET, POST, PUT, PATCH, DELETE, OPTION, HEAD).`
			`*/`
			`return (array) apply_filters( 'acf/rest/get_fields', $fields, $resource, $http_method );`
			`}`

			`}`