10up
diff --git a/‎includes/Classifai/Admin/Settings.php‎
Lines changed: 24 additions & 6 deletions b/‎includes/Classifai/Admin/Settings.php‎
Lines changed: 24 additions & 6 deletions
diff --git a/‎includes/Classifai/Features/ContentGeneration.php‎
Lines changed: 11 additions & 3 deletions b/‎includes/Classifai/Features/ContentGeneration.php‎
Lines changed: 11 additions & 3 deletions
diff --git a/‎includes/Classifai/Features/Feature.php‎
Lines changed: 8 additions & 0 deletions b/‎includes/Classifai/Features/Feature.php‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎includes/Classifai/Features/QuickDraftIntegration.php‎
Lines changed: 232 additions & 0 deletions b/‎includes/Classifai/Features/QuickDraftIntegration.php‎
Lines changed: 232 additions & 0 deletions
diff --git a/‎includes/Classifai/Providers/Azure/OpenAI.php‎
Lines changed: 1 addition & 1 deletion b/‎includes/Classifai/Providers/Azure/OpenAI.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎includes/Classifai/Providers/Browser/ChromeAI.php‎
Lines changed: 1 addition & 1 deletion b/‎includes/Classifai/Providers/Browser/ChromeAI.php‎
Lines changed: 1 addition & 1 deletion
@@ -7,6 +7,7 @@
 use Classifai\Services\ServicesManager;
 use Classifai\Taxonomy\TaxonomyFactory;
 use Classifai\Helpers\CredentialReuse;
+use Classifai\Providers\CredentialObfuscator;
 
 use function Classifai\get_asset_info;
 use function Classifai\get_plugin;
@@ -226,14 +227,18 @@ public function get_nlu_taxonomies(): array {
 	/**
 	 * Get the settings.
 	 *
-	 * @return array The settings.
+	 * Obfuscates sensitive credentials before returning to prevent
+	 * exposure of API keys in the frontend.
+	 *
+	 * @return array The settings with credentials obfuscated.
 	 */
 	public function get_settings(): array {
 		$features = $this->get_features( true );
 		$settings = [];
 
 		foreach ( $features as $feature ) {
-			$settings[ $feature::ID ] = $feature->get_settings();
+			$feature_settings         = $feature->get_settings();
+			$settings[ $feature::ID ] = CredentialObfuscator::obfuscate_feature_settings( $feature_settings );
 		}
 
 		return $settings;
@@ -472,6 +477,12 @@ public function update_settings_permissions_check(): bool {
 	public function get_registration_settings_callback(): \WP_REST_Response {
 		$service_manager = new ServicesManager();
 		$settings        = $service_manager->get_settings();
+
+		// Obfuscate the license key before returning.
+		if ( isset( $settings['license_key'] ) ) {
+			$settings['license_key'] = CredentialObfuscator::obfuscate( $settings['license_key'] );
+		}
+
 		return rest_ensure_response( $settings );
 	}
 
@@ -487,12 +498,19 @@ public function update_registration_settings_callback( \WP_REST_Request $request
 			require_once ABSPATH . 'wp-admin/includes/template.php';
 		}
 
-		$service_manager = new ServicesManager();
-		$settings        = $service_manager->get_settings();
-		$new_settings    = $service_manager->sanitize_settings( $request->get_json_params() );
+		$service_manager  = new ServicesManager();
+		$current_settings = $service_manager->get_settings();
+		$new_settings     = $request->get_json_params();
+
+		// If the license key is obfuscated, use the current value.
+		if ( isset( $new_settings['license_key'] ) && CredentialObfuscator::is_obfuscated( $new_settings['license_key'] ) ) {
+			$new_settings['license_key'] = $current_settings['license_key'] ?? '';
+		}
+
+		$new_settings = $service_manager->sanitize_settings( $new_settings );
 
 		// Update the settings with the new values.
-		$new_settings = array_merge( $settings, $new_settings );
+		$new_settings = array_merge( $current_settings, $new_settings );
 		update_option( 'classifai_settings', $new_settings );
 
 		$setting_errors = get_settings_errors();
 
@@ -6,6 +6,7 @@
 use Classifai\Providers\OpenAI\ChatGPT;
 use Classifai\Providers\Localhost\Ollama;
 use Classifai\Services\LanguageProcessing;
+use Classifai\Features\QuickDraftIntegration;
 use WP_REST_Server;
 use WP_REST_Request;
 use WP_Error;
@@ -113,6 +114,9 @@ public function setup() {
 	 */
 	public function feature_setup() {
 		add_action( 'enqueue_block_assets', [ $this, 'enqueue_editor_assets' ] );
+
+		$quick_draft = new QuickDraftIntegration();
+		$quick_draft->init();
 	}
 
 	/**
@@ -260,17 +264,18 @@ public function get_enable_description(): string {
 	 */
 	public function get_feature_default_settings(): array {
 		return [
-			'prompt'     => [
+			'prompt'             => [
 				[
 					'title'    => esc_html__( 'ClassifAI default', 'classifai' ),
 					'prompt'   => $this->prompt,
 					'original' => 1,
 				],
 			],
-			'post_types' => [
+			'post_types'         => [
 				'post' => 'post',
 			],
-			'provider'   => ChatGPT::ID,
+			'provider'           => ChatGPT::ID,
+			'enable_quick_draft' => false,
 		];
 	}
 
@@ -315,6 +320,9 @@ public function sanitize_default_feature_settings( array $new_settings ): array
 			}
 		}
 
+		// Sanitize Quick Draft setting.
+		$new_settings['enable_quick_draft'] = isset( $new_settings['enable_quick_draft'] ) ? (bool) $new_settings['enable_quick_draft'] : false;
+
 		return $new_settings;
 	}
 }
@@ -4,6 +4,7 @@
 
 use WP_REST_Request;
 use WP_Error;
+use Classifai\Providers\CredentialObfuscator;
 
 use function Classifai\find_provider_class;
 use function Classifai\should_use_legacy_settings_panel;
@@ -301,6 +302,13 @@ public function sanitize_settings( array $settings ): array {
 		// Sanitize the feature specific settings.
 		$new_settings = $this->sanitize_default_feature_settings( $new_settings );
 
+		// Preserve obfuscated credentials for all Providers.
+		// This ensures switching Providers doesn't save obfuscated values for inactive Providers.
+		$new_settings = CredentialObfuscator::merge_all_provider_credentials(
+			$new_settings,
+			$current_settings
+		);
+
 		// Sanitize the provider specific settings.
 		$provider_instance = $this->get_feature_provider_instance( $new_settings['provider'] );
 
 
@@ -0,0 +1,232 @@
+<?php
+/**
+ * Quick Draft Integration Feature.
+ *
+ * Integrates ClassifAI Content Generation with WordPress Quick Draft widget.
+ */
+
+namespace Classifai\Features;
+
+use Classifai\Features\ContentGeneration;
+use WP_REST_Server;
+use WP_REST_Request;
+use WP_Error;
+
+use function Classifai\get_asset_info;
+
+if ( ! defined( 'ABSPATH' ) ) {
+	exit;
+}
+
+/**
+ * Quick Draft Integration Feature.
+ *
+ * Integrates ClassifAI Content Generation with WordPress Quick Draft widget.
+ */
+class QuickDraftIntegration {
+
+	/**
+	 * Content Generation Feature instance.
+	 *
+	 * @var ContentGeneration
+	 */
+	private $content_generation;
+
+	/**
+	 * Constructor.
+	 */
+	public function __construct() {
+		$this->content_generation = new ContentGeneration();
+	}
+
+	/**
+	 * Initialize the Quick Draft integration.
+	 */
+	public function init() {
+		// Check if Quick Draft integration is enabled.
+		if ( ! $this->is_quick_draft_enabled() ) {
+			return;
+		}
+
+		add_action( 'admin_enqueue_scripts', [ $this, 'enqueue_assets' ] );
+		add_action( 'rest_api_init', [ $this, 'register_endpoints' ] );
+	}
+
+	/**
+	 * Check if Quick Draft integration is enabled.
+	 *
+	 * @return bool
+	 */
+	public function is_quick_draft_enabled(): bool {
+		$settings = $this->content_generation->get_settings();
+		return isset( $settings['enable_quick_draft'] ) ? (bool) $settings['enable_quick_draft'] : true;
+	}
+
+	/**
+	 * Enqueue Quick Draft assets on the dashboard.
+	 */
+	public function enqueue_assets() {
+		$screen = get_current_screen();
+
+		// Only load on dashboard.
+		if ( ! $screen || 'dashboard' !== $screen->id ) {
+			return;
+		}
+
+		// Only load if user can create posts.
+		if ( ! current_user_can( 'edit_posts' ) ) {
+			return;
+		}
+
+		wp_enqueue_script(
+			'classifai-quick-draft-js',
+			CLASSIFAI_PLUGIN_URL . 'dist/classifai-quick-draft.js',
+			array_merge( get_asset_info( 'classifai-quick-draft', 'dependencies' ), array( 'jquery', 'media-editor', 'lodash' ) ),
+			get_asset_info( 'classifai-quick-draft', 'version' ),
+			true
+		);
+
+		wp_localize_script(
+			'classifai-quick-draft-js',
+			'classifaiQuickDraft',
+			[
+				'createContent' => __( 'Create Draft from Prompt', 'classifai' ),
+				'generating'    => __( 'Generating...', 'classifai' ),
+				'error'         => __( 'Error generating content. Please try again.', 'classifai' ),
+			]
+		);
+
+		wp_enqueue_style(
+			'classifai-quick-draft-css',
+			CLASSIFAI_PLUGIN_URL . 'dist/classifai-quick-draft.css',
+			[],
+			get_asset_info( 'classifai-quick-draft', 'version' ),
+		);
+	}
+
+	/**
+	 * Register Quick Draft specific endpoints.
+	 */
+	public function register_endpoints() {
+		register_rest_route(
+			'classifai/v1',
+			'quick-draft-generate',
+			[
+				'methods'             => WP_REST_Server::CREATABLE,
+				'callback'            => [ $this, 'endpoint_callback' ],
+				'permission_callback' => [ $this, 'permissions_check' ],
+				'args'                => [
+					'title'   => [
+						'required'          => true,
+						'type'              => 'string',
+						'sanitize_callback' => 'sanitize_text_field',
+						'validate_callback' => 'rest_validate_request_arg',
+						'description'       => esc_html__( 'The title of the post.', 'classifai' ),
+					],
+					'content' => [
+						'required'          => true,
+						'type'              => 'string',
+						'sanitize_callback' => 'sanitize_textarea_field',
+						'validate_callback' => 'rest_validate_request_arg',
+						'description'       => esc_html__( 'The prompt to use for content generation.', 'classifai' ),
+					],
+				],
+			]
+		);
+	}
+
+	/**
+	 * Check permissions for Quick Draft generation.
+	 *
+	 * @return WP_Error|bool
+	 */
+	public function permissions_check() {
+		// Ensure user can create posts.
+		if ( ! current_user_can( 'edit_posts' ) ) {
+			return false;
+		}
+
+		$post_type_obj = get_post_type_object( 'post' );
+
+		// Ensure the post type is allowed in REST endpoints.
+		if ( empty( $post_type_obj ) || empty( $post_type_obj->show_in_rest ) ) {
+			return false;
+		}
+
+		// Ensure the Feature is enabled.
+		if ( ! $this->content_generation->is_feature_enabled() ) {
+			return new WP_Error( 'not_enabled', esc_html__( 'Content Generation is not currently enabled.', 'classifai' ) );
+		}
+
+		return true;
+	}
+
+	/**
+	 * Handle Quick Draft content generation.
+	 *
+	 * @param WP_REST_Request $request The full request object.
+	 * @return \WP_REST_Response
+	 */
+	public function endpoint_callback( WP_REST_Request $request ) {
+		$title   = $request->get_param( 'title' );
+		$content = $request->get_param( 'content' );
+
+		if ( empty( $title ) || empty( $content ) ) {
+			return new WP_Error( 'missing_required_parameters', esc_html__( 'Title and content are required.', 'classifai' ) );
+		}
+
+		// Create a new auto-draft post.
+		$post_data = [
+			'post_title'   => $title,
+			'post_content' => '',
+			'post_status'  => 'auto-draft',
+			'post_type'    => 'post',
+			'post_author'  => get_current_user_id(),
+		];
+
+		$post_id = wp_insert_post( $post_data, true );
+
+		if ( is_wp_error( $post_id ) ) {
+			return new WP_Error( 'post_creation_failed', esc_html__( 'Failed to create draft post.', 'classifai' ) );
+		}
+
+		// Generate content using the existing content generation logic.
+		$result = $this->content_generation->run(
+			$post_id,
+			'create_content',
+			[
+				'title'   => $title,
+				'summary' => $content,
+			]
+		);
+
+		if ( is_wp_error( $result ) ) {
+			// Clean up the post if generation failed.
+			wp_delete_post( $post_id, true );
+			return $result;
+		}
+
+		// Update the post with generated content.
+		$updated_post = [
+			'ID'           => $post_id,
+			'post_content' => $result,
+			'post_status'  => 'draft',
+		];
+
+		$update_result = wp_update_post( $updated_post );
+
+		if ( is_wp_error( $update_result ) ) {
+			return new WP_Error( 'post_update_failed', esc_html__( 'Failed to update post with generated content.', 'classifai' ) );
+		}
+
+		return rest_ensure_response(
+			[
+				'post_id'  => $post_id,
+				'edit_url' => admin_url( "post.php?post={$post_id}&action=edit" ),
+				'content'  => $result,
+				'title'    => $title,
+				'success'  => true,
+			]
+		);
+	}
+}
@@ -316,7 +316,7 @@ protected function authenticate_credentials( array $settings = [] ) {
 	 */
 	public function rest_endpoint_callback( $post_id = 0, string $route_to_call = '', array $args = [] ) {
 		if ( ! $post_id || ! get_post( $post_id ) ) {
-			return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required to generate titles.', 'classifai' ) );
+			return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required.', 'classifai' ) );
 		}
 
 		$route_to_call = strtolower( $route_to_call );
 
@@ -80,7 +80,7 @@ public function sanitize_settings( array $new_settings ): array {
 	 */
 	public function rest_endpoint_callback( $post_id = 0, string $route_to_call = '', array $args = [] ) {
 		if ( ! $post_id || ! get_post( $post_id ) ) {
-			return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required to generate titles.', 'classifai' ) );
+			return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required.', 'classifai' ) );
 		}
 
 		$route_to_call = strtolower( $route_to_call );
Original file line number	Diff line number	Diff line change
`@@ -316,7 +316,7 @@ protected function authenticate_credentials( array $settings = [] ) {`
`316`	`316`	`*/`
`317`	`317`	`public function rest_endpoint_callback( $post_id = 0, string $route_to_call = '', array $args = [] ) {`
`318`	`318`	`if ( ! $post_id \|\| ! get_post( $post_id ) ) {`
`319`		`- return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required to generate titles.', 'classifai' ) );`
	`319`	`+ return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required.', 'classifai' ) );`
`320`	`320`	`}`
`321`	`321`
`322`	`322`	`$route_to_call = strtolower( $route_to_call );`
Original file line number	Diff line number	Diff line change
`@@ -80,7 +80,7 @@ public function sanitize_settings( array $new_settings ): array {`
`80`	`80`	`*/`
`81`	`81`	`public function rest_endpoint_callback( $post_id = 0, string $route_to_call = '', array $args = [] ) {`
`82`	`82`	`if ( ! $post_id \|\| ! get_post( $post_id ) ) {`
`83`		`- return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required to generate titles.', 'classifai' ) );`
	`83`	`+ return new WP_Error( 'post_id_required', esc_html__( 'A valid post ID is required.', 'classifai' ) );`
`84`	`84`	`}`
`85`	`85`
`86`	`86`	`$route_to_call = strtolower( $route_to_call );`