Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
プラグインとの付き合い方 #WPmeetupkobe / 2019-08-31 Kansai ...
Search
Toro_Unit (Hiroshi Urabe)
August 31, 2019
Technology
4
1.4k
プラグインとの付き合い方 #WPmeetupkobe / 2019-08-31 Kansai WordPress Meetup Kobe vol.10
Toro_Unit (Hiroshi Urabe)
August 31, 2019
Tweet
Share
More Decks by Toro_Unit (Hiroshi Urabe)
See All by Toro_Unit (Hiroshi Urabe)
僕が考える 「HTML サイトを WordPress にする」話 / 2023-11-05 Kansai WordPress Meetup
torounit
9
7.2k
Cloudflare Pages に入門してみた / 2023-10-14 Cloudflare Meetup Nagano Vol.2
torounit
2
1.4k
ブロックエディタをゴリゴリに使い倒してサイトを作った話 / Kansai WordPress Meetup 2023 09 23
torounit
14
9.5k
ブロックエディターカスタマイズことはじめ #wpshinshu / 2023-06-17 Shinshu WordPress Meetup vol.24
torounit
1
360
FSE時代におけるWEBサイト制作の研究 #wpshinshu / 2023-05-20 Shinshu WordPress Meetup vol.23
torounit
0
400
ブロックエディターを用いたWEBサイト開発とカスタムフィールドのあり方を考える。/ WordCamp Japan 2021
torounit
0
520
ブロックエディターで変わる、WordPress でのウェブサイト開発 / SaCSS Special 26
torounit
4
830
Block Editor カスタマイズ入門 #WPmeetupOsaka / Get started customize for block editor
torounit
12
3.1k
本当にだれにでもできる、WordPress をよりよいものにする方法。/ wordcamp tokyo 2019
torounit
2
2.8k
Other Decks in Technology
See All in Technology
APIテスト自動化の勘所
yokawasa
7
4.2k
Commitment vs Harrisonism - Keynote for Scrum Niseko 2024
miholovesq
6
1.1k
Autify Company Deck
autifyhq
1
39k
オーティファイ会社紹介資料 / Autify Company Deck
autifyhq
9
120k
物価高なラスベガスでの過ごし方
zakky
0
380
君は隠しイベントを見つけれるか?
mujyun
0
300
生成AIの強みと弱みを理解して、生成AIがもたらすパワーをプロダクトの価値へ繋げるために実践したこと / advance-ai-generating
cyberagentdevelopers
PRO
1
180
Fargateを使った研修の話
takesection
0
120
신뢰할 수 있는 AI 검색 엔진을 만들기 위한 Liner의 여정
huffon
0
360
カメラを用いた店内計測におけるオプトインの仕組みの実現 / ai-optin-camera
cyberagentdevelopers
PRO
1
120
Oracle Base Database Service 技術詳細
oracle4engineer
PRO
5
49k
ネット広告に未来はあるか?「3rd Party Cookie廃止とPrivacy Sandboxの効果検証の裏側」 / third-party-cookie-privacy
cyberagentdevelopers
PRO
1
130
Featured
See All Featured
YesSQL, Process and Tooling at Scale
rocio
167
14k
The Art of Programming - Codeland 2020
erikaheidi
51
13k
Designing the Hi-DPI Web
ddemaree
280
34k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
46
2.1k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
27
1.9k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
A designer walks into a library…
pauljervisheath
202
24k
GraphQLの誤解/rethinking-graphql
sonatard
66
9.9k
Building Better People: How to give real-time feedback that sticks.
wjessup
363
19k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
26
1.4k
Thoughts on Productivity
jonyablonski
67
4.3k
How GitHub (no longer) Works
holman
311
140k
Transcript
ϓϥάΠϯͱͷ͖߹͍ํ Toro_Unit @Kansai WP Meetup Kobe vol.10 1
$ whoami 2
Toro_Unit ෦ ߛ (͏Β ͻΖ͠) • Frontend Engineer • WordPress
Plugin and Theme Developer Github: @torounit Twitter: @Toro_Unit 3
Contribution • Shinshu WordPress Meetup • WordPress 4.3 / 4.4
/ 4.7 / 5.0 / 5.1 / 5.2 • WordCamp Osaka 2019 • WordCamp Osaka 2018 Speaker. • etc... 4
Plugins and Themes • Custom Post Type Permalinks • Advanced
Posts Blocks • Simple Post Type Permalinks • Powerful Posts Per Page (PPPP) • Vanilla • and more... 5
6
ݝদຊࢢ͔Β͖·ͨ͠ • ࠷ۙɺچ։ஐֶߍߍࣷͱ͍͏໌࣏ͷ ݐங͕ࠃๅʹͳΓ·ͨ͠ɻ • 8/29~9/9 ϏʔϧࡇΓ(দຊαϚʔϑΣ ετ) • 9/21
Shinshu WordPress Meetup • 9/20~23 ΫϥϑτϏʔϧϑΣε@দຊ 7
8
1.Α͋͘Δͭ͠Μɻ 9
Q.ʮϓϥάΠϯͬͯԿݸ͙Β͍͕͍͍ΜͰ͔͢ʁʯ 10
ͦΜͳͶ͐Αʂʂʂ 11
ͰɺϓϥάΠϯೖΕ͗͢Δͱ͘ͳΔͬͯฉ͍ͨΜͰ͚͢Ͳɾɾɾ 12
• ϓϥάΠϯͷ1ສߦͷϓϥάΠϯ1ͭͱɺ10ߦͷϓϥάΠϯ 100ݸͳΒɺޙऀͷํ͕ߦগͳ͍ (10000ߦ > 1000ߦ)ɻ • PHPϑΝΠϧ 100ݸͷϓϥάΠϯ̍ͭͱɺ1ݸͷϓϥάΠϯ10 ݸͳΒʁ
13
ͦͦͦΜͳʹߦͱ͔ϑΝΠϧͱ͔Ͱ͘ͳΓ·͢ʁ ޡࠩ͡Όͳ͍ʁ ܭଌͨ͠ʁ 14
• దʹཧग़དྷΔͷͰ͋Ε ɺ͓͖ͳ͚ͩͲ͏ͧɻ • ͕ଟ͍΄Ͳɺߋ৽ͳͲอकͷखؒ૿͑Δɻʢޙड़ʣ 15
ʮઈରʹΠϯετʔϧ͖͢ϓϥάΠϯʯ ʮඞਢϓϥάΠϯ ◦બʯ 16
ΜͳΜͶ͐Αʂʂʂ 17
• શͯͷ WordPress ϢʔβʔʹඞཁͳػೳͳΒͳΜͰຊମʹ ೖͬͯͳ͍ͷʁ • ͦͦຊମΛΧελϚΠζ͢ΔͨΊͷػೳɻͦΜͳʹΰϦ ΰϦΧελϚΠζ͠ͳ͍ͱ͑ͳ͍Ϟϊʁ 18
ྑ͘հ͞ΕΔͷɻ 19
1. ΩϟογϡܥϓϥάΠϯ • WP Super Cache • W3 Total Cache
͋ͨΓ͕Α͘ɺʮߴԽͷͨΊʹೖΕΑ͏ʂʯతϊϦհ͞Ε ͯ·͕͢ɻ 20
• Ωϟογϡ = Ұ࣌తʹอଘͯ͠σʔλΛ͍·Θ͢Έɻ • WordPress جຊతʹಈతʹHTMLΛੜ͢Δઓུɻ ਖ਼͘͠ ͖߹Θͳ͍ͱࣄނΔɻ •
Ωϟογϡػߏ͕ຊମʹଘࡏ͢Δ CMS ͋Δ • Drupal, concrete5 • ͦͦ htmlϑΝΠϧΛ࣮ࡍʹੜ͢ΔCMSɻ ( MovableType, ੩తαΠτδΣωϨʔλʔͳͲɻ) 21
22
• Πϯετʔϧ͢Δ͚ͩͰ؆୯ʂߴԽʂͦΜͳ͏·͍͕͋ ΔΘ͚ͳ͍ɻ • ͦͦ WP Super Cache Automattic
͕ 12લ͔Β࡞ͬ ͍ͯΔϓϥάΠϯ͕ͩɺ͍·ͩʹίΞʹऔΓࠐ·ΕΔ༧ఆ ؾແ͍࣌ͰશͯͷέʔεʹඞཁͳϞϊͰͳ͍ɻ • αΠτͷछྨɺઃఆɺػೳ࣍ୈͰ༷ʑͳෆ۩߹ΛҾ͖ى͜ ͢߹ɻ 23
24
2. ηΩϡϦςΟରࡦܥ • All In One WP Security & Firewall
• Wordfence Security • SiteGuard WP Plugin • etc... ਖ਼͘͠ઃఆ͢ΕηΩϡϦςΟΛ্ͤͯ͘͞ΕΔ߹͋Δ ͔͠Εͳ͍͚ͲɺͦΕΛ͠ͳ͚Ε΄΅ҙຯ͕ແ͍ɻ 25
ηΩϡϦςΟӠʑΛؾʹ͢ΔͳΒɺ·ͣͨΓલͷ͜ͱΛͨΓલʹ͔ͬͯΒɻ 26
ͨΓલͷ͜ͱ • ຊମɾϓϥάΠϯɾςʔϚͷΞοϓσʔτ • ेͳ͞ͷύεϫʔυ • ΞΧϯτΛෳਓͰڞ༗͠ͳ͍ / దͳݖݶઃఆ •
αʔόʔύεϫʔυͷదͳཧɻॳظύεϫʔυͷ··ʹ͠ͳ͍ɻ • αʔόʔ্Ͱݖݶͷઃఆɻ • ສ͕Ұʹඋ͑ͨόοΫΞοϓͱɺ෮چଶɻ 27
3. ΤσΟλ֦ுܥ • AddQuicktag • TinyMCE Advanced ΫϥγοΫΤσΟλʔʹ͍Ζ͍ΖػೳΛͯ͠هࣄͷ০ͱ͔ Λ͍͡Δͭɻ σϑΥϧτͰຬͰ͖ͳ͔ͬͨͱ͖ʹߟ͑Εʁ
ϩΫʹ͍ͬͯͳ͍ͷʹೖͬͯΔ͜ͱΊͬͪΌଟ͍ɻ 28
• Classic Editor ͱΓ͋͑ͣɺϒϩοΫΤσΟλʔͱͪΌΜͱ͖߹͔ͬͯΒͩͱ ࢥ͏Αɻ 29
4. SEO ܥ • All in One SEO Pack •
Yeost SEO • Google XML Sitemap • and more.... 30
• ͱΓ͋͑ͣೖΕͱ͖ΌॱҐ্͕Δͱ͔͋Γಘͳ͍ɻదͳઃ ఆ & ӡ༻͕ඞཁɻ • XML Sitemap ͕ڝ߹ͯ͠Δͷ·ΕʹΑ͘ݟ͔͚Δɻ •
ྑ͘ղΒͳ͍ͳΒͪΌΜͱ͑ͳ͍ͷͰɺ·ͣͦͬͪͷษ ڧΛɻͦͷ্Ͱඞཁͳઃఆ͕͋ΔͳΒߟ͑Δɻ 31
ϓϥάΠϯͷબఆ 32
ͪΌΜͱߟ͑ͯೖΕΔ • ͳΜͰೖΕ͔ͨྑ͘ղΒͳ͍ϓϥάΠϯ͍Ζ͍Ζॏՙʹ͔͠ͳΒ ͳ͍ɻ • ͳΜͰೖΕ͔ͨղΒͳ͍͔Βফͤͳ͍ɻ • ͪΌΜͱػೳΛ֬ೝͯ͠ೖΕΔɻ • ͨ·ʔʹɺಉ͡ػೳΛఏڙ͢ΔϓϥάΠϯ͕ෳ༗ޮʹͳͬͯͨ
Γ͢Δɻ • ྑ͘ղΒͳ͍ͷ͍Εͳ͍ɻ 33
ͳΔ͘γϯϓϧͳϞϊΛ • γϯϓϧʹɺͻͱͭͷ͜ͱΛ্ख͘͜ͳ͢ϓϥάΠϯͷํ͕ ཧղ͠қ͘ɺϝϯς͍͢͠ɻ • All in One ͳΜͱ͔Έ͍ͨͳͷͱ͔ɺԿ͔͛͢ʔύϫʔΞο ϓ͢ΔϓϥάΠϯɺͪΌΜͱཧղ͠ͳ͍ͱة͏͍ɻ
• ϓϥάΠϯ։ൃ͕ࢭ·ͬͨΓ͢Δ͜ͱرʹΑ͋͘ΔͷͰɺ ͦͷࡍʹɺ༰қʹΓ͑ΒΕΔ or ࣗͰϝϯςφϯεग़དྷ ΔϞϊΛɻ 34
େنͳϞϊ৺த͢Δ֮ޛΛ • WooCommerce BuddyPress ɺେنʹαΠτͦͷͷ ͷੑ࣭Λม͑ͯ͠·͏Α͏ͳϓϥάΠϯɺWordPress ϕʔε ͷผͷ CMS
ͱଊ͑ͯ৺த͢Δ֮ޛΛɻ • ʮWooCommerce ࣙΊΔ = ଞͷ CMS ʹΓ͑Δʯ͘Β ͍ͷϞϊͱଊ͖͑ͯ߹͏ɻ • ͦͷࡍʹॏཁʹͳͬͯ͘Δͷɺ αϙʔτ ɺ ίϛϡχςΟ ɺ ΤίγεςϜ 35
ͷબఆج४ • ϓϥάΠϯ୭Ͱ࡞ΕΔͷͰɺۄੴࠞަɻ • ഁյతมߋ͕ೖͬͨΓɺPro൛ʹҠߦͯ͠Free൛ػೳ͕ݮͬͨΓ͢ Δ͜ͱɻ • ࡞ऀͷ࣮ɺWordPress.org ɺGithub Ͱͷ׆ಈɺίʔυͷ
࣭ɺαϙʔτϑΥʔϥϜͰͷճͳͲΛݟͯஅɻ • ࡞ऀͱͷίϛϡχέʔγϣϯίετɻ • Γ߹͍ɺݴ༿͕௨͍͢͡ਓͷํ͕ίετ͍ɻ 36
• Active installɺμϯϩʔυɺ։ൃ࣌ظɺ༻్࣍ୈͳ ͷͰͦ͜·Ͱ͋ͯʹͯ͠ͳ͍ɻࣅͨΑ͏ͳϓϥάΠϯ͕͋ͬ ͨΒؾʹ͢Δ͔ͳʔͬͯఔɻ 37
༨ஊʮϓϥάΠϯΛ͔ͭΘͳ͍Ͱग़དྷΔʂʯͱ͔͋Δ͚Ͳ • ࣗͰ࡞Δ߹ͷͱϝϯςφϯεͱɺϓϥάΠϯΛ͏߹ ͷͱϦεΫ(ޙड़)Λఱṝʹ͔͚ͯબɻ • ͍ͯ͏͔Α͘͠Βͳ͍ͻͱͷίʔυΛӏವΈʹ͠ͳ͍ɻ • ͍ͯ͏͔ͦΕϓϥάΠϯʹ͢Ε͑͑Μɻ • functions.php
ͳͷ͔ϓϥάΠϯͳͷ͔ςʔϚͷઃܭͷͳ ͷͰ͋ͬͯɺطଘͷϓϥάΠϯΛ͍͍͔͍ͨͨ͘ͳ͍͔ͱ ผ࣍ݩͷͩΑɻ 38
ϓϥάΠϯͱ্खʹ͖߹͏ͨΊʹɻ 39
ࠓͳͬͨ੬ऑੑɻ ใࠂ ରͷϓϥάΠϯ Πϯετʔϧ όʔδϣϯ ੬ऑੑ 2019/03/15 Easy WP SMTP
40ສ݅ 1.3.9Ҏલ ཧऀͷಛݖঢ֨ 2019/03/21 Social Warfare 6ສ݅ 3.5.2Ҏલ XSSʢ֨ೲܕʣɺ ҙίʔυͷ࣮ߦ 2019/03/30 Yuzo Related Posts 6ສ݅ 5.12.91Ҏલ XSSʢ֨ೲܕʣ 2019/04/09 Visual CSS Style Editor 3ສ݅ 7.1.9Ҏલ ཧऀͷಛݖঢ֨ WordPressϓϥάΠϯΛૂ͏߈ܸ͕׆ൃԽ͍ͯ͠Δ݅Λ·ͱΊͯΈͨ - piyolog 40
Ҿ༻ݩɿJP-Secure Labs Report Vol.03 | ٕज़ใ | ιϑτΣΞWAFͷJP-Secure 41
• ຊମͷ߈ܸͱ͍͏ͷ࣮গͳ͍ɻ • ϓϥάΠϯɾςʔϚͷ߈ܸ͕6ׂɻ 42
/wp-content/themes/urbancity/lib/scripts/ download.php?file=../../../../../wp-config.php /wp-content/themes/trinity/lib/scripts/ download.php?file=../../../../../wp-config.php /wp-content/themes/MichaelCanthony/download.php?file=../../../wp-config.php /wp-content/themes/TheLoft/download.php?file=../../../wp-config.php /wp-content/themes/lote27/download.php?download=../../../wp-config.php /wp-content/themes/authentic/includes/download.php? file=../../../../wp-config.php /wp-content/plugins/membership-simplified-for-oap-members-only/
download.php?download_file=.././.././.././wp-config.php /wp-content/plugins/ajax-store-locator-wordpress_0/sl_file_download.php? download_file=../../../wp-config.php Ҿ༻ݩɿJP-Secure Labs Report Vol.03 | ٕज़ใ | ιϑτΣΞWAFͷJP- Secure 43
Πϯετʔϧ͕ଟ͍ != ҆શ • ͻͱͭͷج४ʹҧ͍ͳ͍͚Ͳɺ҆શੑɾ࣭Λอূ͢Δج ४Ͱͳ͍ɻ • Πϯετʔϧ͕ଟ͍ = ߈ܸͷλʔήοτʹͳΓ͍͢ɻ
44
੬ऑੑͳͲͷใऩू ੬ऑੑͳͲக໋తʹͳΓ͕ͪͳͷͰɺϚϝʹνΣοΫɻ • WordPress Tavern – WordPress News — Free
as in Beer. • WPScan Vulnerability Database • JVN iPedia - ੬ऑੑରࡦใσʔλϕʔε • Blog – Plugin Vulnerabilities 45
46
WPScan WPScan Vulnerability Database ͷσʔλΛ༻͍ͯɺ੬ऑੑݕࠪ Λ͢ΔϓϥάΠϯɻ • ੬ऑੑ͕ൃݟ͞Εͨ߹ϝʔϧͰͷ௨͞ΕΔɻ 47
ΞοϓσʔτઓུΛߟ͑Δ • ྲྀੴʹɺ24࣌ؒ365ࢹ͠ଓ͚Δͷ͍͠ • ۓٸͷߴ͍ϞϊͰແ͚Εͪΐͬͱ์ஔͯ͠େৎɻ • ์ஔ͗͢͠Δͱɺόʔδϣϯ্͕͕Γ͗͢Δ & ಉ࣌ʹෳͷ ϓϥάΠϯΛΞοϓσʔτ͢Δ͜ͱʹͳΓɺෆ۩߹ͷݕূ͕
ࠔʹɻ 48
ྫ1 • ੬ऑੑ͕ൃݟ͞ΕͨΒͪʹߋ৽ • ͦ͏Ͱແ͚Εि1ͱ͔Ͱߋ৽ • ຊ൪ͱ΄΅ಉҰͷςετڥΛ༻ҙɺ֬ೝޙɺຊ൪ద༻ɻ 49
ྫ2 • Advanced Automatic Updates ɺ JetPack Ͱࣗಈߋ৽ɻ • յΕͨΒόοΫΞοϓ͔Β෮چͯ͠ݪҼௐࠪɻ
50
ྫ3 • WordPress Λ੩తԽ • هࣄߋ৽࣌ͷΈαʔόʔΛىಈ 51
ϓϥάΠϯΛ͏͜ͱͷϦ εΫ 1. ϓϥάΠϯͷόάɻෆ۩߹ɻηΩϡϦ ςΟϗʔϧɻ 2. ޙํޓੑͷແ͍มߋɻ 3. ։ൃͷఀࢭɻ 4.
PHP ͷ ΞοϓσʔτʹΑΔෆ۩߹ͳ Ͳ 52
͜ΕΒͱͲ͏͖߹͍ͬͯ͘ʁ 53
ϑΥʔΫͯࣗ͠Ͱϝϯςφϯεɻ • ϋʔυϞʔυɻ ͓ۚ͘͠ΛͬͯͬͯΒ͏ɻ શ෦ࣗͰ։ൃ • ϋʔυϞʔυɻ طଘͷϓϥάΠϯͷ࣮͕ؾʹ͘Θͳ͍ɺ ΦʔόʔεϖοΫա͗Δͱ͖ͱ͔ɻ 54
or 55
࡞ऀϑΟʔυόοΫ 56
ͨͱ͑ • ։ൃ൛ͷςετ • όάϨϙʔτ • ػೳఏҊ • υΩϡϝϯτ •
मਖ਼ͨ͠ΒύονɺϓϧϦΫΤετͳͲΛૹͬͯΈΔɻ • ελʔΛ͚ͨΓɺدͯ͠ΈͨΓɻ 57
࡞ऀϑΟʔυόοΫΛͬͯ·͢ʂ Φʔϓϯιʔεʂ 58
ϓϥάΠϯΛެ։͍ͯ͠Δཧ༝ɻ • ཧը໘͔ΒΞοϓσʔτ͍ͨ͠ʂ • ϓϥάΠϯʹ͢Δ͜ͱͰɺ͍Ζ͍Ζ͍ճͤΔΑ͏ʹͳΔɻ • ࣗͰؾ͔ͳ͍όάɺࣝɾΞΠσΞͳͲΛڭ͑ͯ ΒͬͨΓɻͯ͠ΒͬͨΓɻ • ͦΕʹΑͬͯൃੜ͢Δίϛϡχέʔγϣϯɻ
59
࡞ऀͱͷίϛϡχέʔγϣϯେɻ 60
• όάϨϙʔτɺࠔΓ͝ͱͳͲͷϑΟʔυόοΫଟ͍͕ɺϙ δςΟϒͳϑΟʔυόοΫҙ֎ʹগͳ͍ɻ • ΘΕ͍ͯΔ͜ͱΛ࡞ऀΒͳ͍͜ͱҙ֎ʹଟ͍ɻ • ελʔΛ͚ͨΓɺدͳͲΛ͢Δͷ΄Μͱʹॏཁɻ • ʮࣄͱͯ͠ϓϥάΠϯอकͯ͠ ʯΈ͍ͨͳέʔε͋Δɻ
61
WordPress Φʔϓϯιʔε! 62
ΦʔϓϯιʔεͷιϑτΣΞͱ ୭Ͱࣗ༝ʹɺར༻ɾมߋɾڞ༗ग़དྷΔιϑτΣΞɻ Φʔϓϯιʔεͷֶͱ ୭Ͱࣗ༝ʹɺίϐʔɺมߋɺίϛϡχέʔγϣϯΛ͠ͳ͕ΒߩݙͰ͖ Δڞಉ࡞ۀͷߟ͑ํͰ͋Δɻ Ҿ༻ɿGovernment open source — ࣏ࣗମͷΦʔϓϯιʔε׆༻
// Speaker Deck 63
64
65
@See.. • Government open source — ࣏ࣗମͷΦʔϓϯιʔε׆ ༻ // Speaker
Deck • Takayuki Miyauchi: ϫʔΫϑϩʔͱͯ͠ͷΦʔϓϯιʔε | WordPress.tv • Hiroshi Urabe: WordPressͷϓϥάΠϯ࡞ͬͨΓίΞίϯτϦ Ϗϡʔλʔʹͳͬͨɻ ͦͯ͠ɺͦͷָ͠͞ͱҙٛ | WordPress.tv 66
Thanks! Github: @torounit Twitter: @Toro_Unit Facebook: fb.me/torounit Blog: https://torounit.com 67