About the 'pending validation' warning

  • Resolved George Notaras

    (@gnotaras)


    10 years, 2 months ago

    Hey Takayuki,

    This is one of the most highly respected plugins I use, but the last release keeps bugging me with that warning about the validation of the contact form. I haven’t clicked on it yet, because my contact form works flawlessly and has been validated many times in practice.

    I wish you could make the validation an on-demand feature, for instance by adding a global link for the batch validation of all contact forms or an extra link under each contact form somewhere inside the page which contains the contact form listing.

    Moreover, may I ask if the form validation process includes the use of any external services or is it just a local test of the configuration of each form? Perhaps it would be nice to release some public info about these validations. I know I could check the source code and I will probably do so when time permits, but still some public info about the validations would be useful.

    Nevertheless, this is a fantastic plugin and BTW I’m going to add a review for it. πŸ™‚

    Thank you for reading this.

    Kind Regards,
    George

    https://wordpress.org/plugins/contact-form-7/

Viewing 8 replies - 1 through 8 (of 8 total)
  • Flexxo

    (@flexxo)

    10 years, 2 months ago

    +1

    Plugin Author Takayuki Miyoshi

    (@takayukister)

    10 years, 2 months ago

    It is just a useful tool that tells you when you have mistakes in your configuration. You can just ignore it if you think you don’t need it.

    For most users, this function is necessary to be always active because they often make mistakes. I think there is no reason to hate the harmless guide.

    If you still want to deactivate it, see https://wordpress.org/support/topic/configuration-errors-found-after-updating

    It doesn’t use any external services for the configuration validation.

    Thread Starter George Notaras

    (@gnotaras)

    10 years, 2 months ago

    Hi Takayuki,

    Thanks for your quick reply.

    It is just a useful tool that tells you when you have mistakes in your configuration. You can just ignore it if you think you don’t need it.

    For most users, this function is necessary to be always active because they often make mistakes. I think there is no reason to hate the harmless guide.

    Its usefulness is unquestioned. The form validation is a much needed feature and I’m sure it is going to help many users configure their contact forms correctly.

    I think there has been a misunderstanding here. In fact, I think the feature is great! πŸ™‚

    I was just suggesting that the persistent warning message about the pending validation of the existing contact forms could be replaced by an on-demand validation link (one like those links that appear when you hover over an existing form in the forms listing page). The automatic validation on newly created forms is not a problem. But I’m sure that most people would be hesitant to validate working forms, unless there was some more info about the validation process and what would happen if for any reason the validation of a working form failed. For example, would that form continue to work? Form validation is a new feature, it might have bugs or the validation rules may not cover the wide range of email server configurations or special contact form requirements.

    So, what I’m actually questioning is the necessity of the persistent warning message which admittedly forces users to commit an action on forms that are confirmed to work.

    I hope I’ve clarified what my feedback was about. The feature is great and I think everyone is grateful for it! πŸ™‚

    If you still want to deactivate it, see https://wordpress.org/support/topic/configuration-errors-found-after-updating

    Oh, I see. It seems I should have done some more research about it. πŸ™‚

    It doesn’t use any external services for the configuration validation.

    The reason I asked is that in many web applications email configurations are usually tested by sending a test email message. I had read a post containing release notes but it did not clarify the nature of the validation. Now that you’ve clarified it I think I’ll go ahead and validate the form.

    Thank you for the insight! It is much appreciated.

    Again, thanks for a great plugin! πŸ™‚

    Kind Regards,
    George

    Thread Starter George Notaras

    (@gnotaras)

    10 years, 2 months ago

    IMHO, creating a small FAQ about the validation process of existing forms and pointing to that from the warning message would greatly help people make a decision.

    Some questions I had as soon as I saw the warning:

    * My form is working fine. What is going to happen if the validation fails for whatever reason? Will the form continue to work?
    * Will I be able to save a form if validation fails?
    * What does the validation actually check?
    * Does it validate the settings by sending a test message? Does it use any external service?

    I think that’s all. πŸ™‚

    Best Regards,
    George

    Plugin Author Takayuki Miyoshi

    (@takayukister)

    10 years, 2 months ago

    One thing I learnt from the feedback to the last update was that there were so many users who had misconfiguration and actually their forms were not working, but they didn’t even notice the fact. If the configuration validation was optional or less noticeable, they would still be losing messages. I agree with you on the point that I should give a bit more info before the validation process. I appreciate your honest opinions.

    Thread Starter George Notaras

    (@gnotaras)

    10 years, 2 months ago

    Hi Takayuki,

    Very glad you found the feedback useful. I also found some great documentation of yours at:

    * http://contactform7.com/configuration-errors/
    * http://contactform7.com/best-practice-to-set-up-mail/

    I finally think I should have done some more research. My questions would have mostly been answered.

    However, adding a small section in the FAQ about the aforementioned concerns and linking to it from the warning message regarding the non-validated contact forms would still be nice.

    BTW, I played with this feature a bit and I think it’s great and every validation makes perfect sense!

    My only suggestion would be to add a filter based switch like the following:

    add_filter( 'wpcf7_validate__relaxed_from_email', '__return_true' );

    which would make the rule, which checks if the email address that has been added to the From field belongs to the exact domain of the web site, a little more relaxed by allowing email addresses the domain part of which is a parent domain of that of the web site’s.

    I’m sure I could have phrased the above better, so here is an example to make it more clear: provided that the above filter is set to True, if the web site’s domain is blog.example.com or test1.demo.example.com, the validator could allow an email address of the form user@example.com in the From field, but not an email address of the form user@example.net.

    For instance, in case of a multi-site installation, in which each sub-site is operated by different people, the current strict validation rule makes *perfect* sense, because in such a case all sub-domains should have separate MX records in the DNS zone, which usually translates to different mailboxes.

    But, in case all the sub-sites are operated by a single person (happens some times), chances are that there are not separate MX records for each sub-domain, but the same email address and mailbox are used for all sub-sites, which is the expected thing in almost all such cases.

    On the contrary, with the current strict validation rule in that latter case the multi-site operator, in order to be able to use the same mailbox for all sub-sites, would have to add an MX record and also an email alias (user@sub-site-N.example.com address pointing to user@example.com) for *each* sub-domain. Most of the time people won’t like having so many valid email addresses around as it could lead to receiving more spam.

    By supporting a switch like the one above, the validation rule could become a little relaxed with this so as to cover these cases.

    I hope I am not missing anything in all the above. πŸ™‚

    In any case I think the implementation of the validation is excellent and I hereby take back my suggestion to make it an on-demand feature. πŸ™‚

    Best Regards,
    George

    Plugin Author Takayuki Miyoshi

    (@takayukister)

    10 years, 2 months ago

    Right. In the next release (4.4.1), the relaxed validation for From email address is going to be employed. You can test it with the development version.

    Thread Starter George Notaras

    (@gnotaras)

    10 years, 2 months ago

    That’s great!

Viewing 8 replies - 1 through 8 (of 8 total)

The topic ‘About the 'pending validation' warning’ is closed to new replies.