There are cool plugins available that create forms without any programming effort but still many times we need to create custom forms in our WordPress website. So where to start with? What should be the form action? And where do we handle form submission? How WordPress will detect our custom form is submitted? These questions comes in mind when you set to go with development of custom form plugin. In this post I will answer all those questions and make you able to create custom form. Plugin constructor: On second line we are registering a shortcode that we will be putting in pages to render our form. In this example the shortcode is ‘custom_form’. You will be putting Inside the plugins Lastly there is shortcode handler function that renders our form. Complete code: How to create custom form in WordPress? What should be the form action? And how to intercept form submission? This post will answer all these questions…How to create custom form in WordPress and handle submission?
Last modified
First line of constructor method is to hook WordPress’s init function. This is useful for intercepting $_GET or $_POST triggers because init() runs after WordPress has finished loading but before any headers are sent. Hence this is where we will be processing our form submissions.[custom_form] wherever you want to put your custom form.
public function __construct()
{
add_action('init', array($this, 'init'));
add_shortcode('custom_form', array($this, 'shortcode_handler'));
}
init() we check if $_POST['nonce_custom_form'] is present? Presence of this field in $_POST data means our custom form is being submitted. So no need to put ‘action’ for our custom form, just put some hidden field with unique name and check it inside init function to intercept form submission. Next we verify the nonce for security purpose. After nonce verification we validate the form fields and process them.
public function init()
{
if (!empty($_POST['nonce_custom_form']))
{
if (!wp_verify_nonce($_POST['nonce_custom_form'], 'handle_custom_form'))
{
die('You are not authorized to perform this action.');
} else
{
$error = null;
if (empty($_POST['name']))
{
$error = new WP_Error('empty_error', __('Please enter name.', 'tahiryasin'));
wp_die($error->get_error_message(), __('CustomForm Error', 'tahiryasin'));
}
else
die('Its safe to do further processing on submitted data.');
}
}
}
function shortcode_handler($atts)
{
return "<form method='post' action=''>
<input name='name' type='text' value='' />
" . wp_nonce_field('handle_custom_form', 'nonce_custom_form') . "
<input type='submit' value='Submit'/>
</form>";
}
<?php
/**
* Plugin Name: Custom Form
* Plugin URI: http://www.scriptbaker.com/
* Description: Creates a custom form through shortcode and handles the submit event.
* Version: 1.0
* Author: Tahir Yasin
* Author URI: http://www.scriptbaker.com/author/tahir/
* License: GPL2
*/
class CustomForm
{
public function __construct()
{
add_action('init', array($this, 'init'));
add_shortcode('custom_form', array($this, 'shortcode_handler'));
}
public function init()
{
if (!empty($_POST['nonce_custom_form']))
{
if (!wp_verify_nonce($_POST['nonce_custom_form'], 'handle_custom_form'))
{
die('You are not authorized to perform this action.');
} else
{
$error = null;
if (empty($_POST['name']))
{
$error = new WP_Error('empty_error', __('Please enter name.', 'tahiryasin'));
wp_die($error->get_error_message(), __('CustomForm Error', 'tahiryasin'));
}
else
die('Its safe to do further processing on submitted data.');
}
}
}
function shortcode_handler($atts)
{
return "<form method='post' action=''>
<input name='name' type='text' value='' />
" . wp_nonce_field('handle_custom_form', 'nonce_custom_form') . "
<input type='submit' value='Submit'/>
</form>";
}
}
$CustomForm = new CustomForm();
?>
5 min read