Automattic\WooCommerce\Internal\Api\Autogenerated\GraphQLMutations

DeleteProduct{}WC 1.0

No Hooks.

Usage

$DeleteProduct = new DeleteProduct();
// use class methods

Methods

  1. public static compute_preauthorized( \Automattic\WooCommerce\Api\Infrastructure\Principal $principal )
  2. public __( 'Delete a product.', 'woocommerce' )
  3. public static get_field_definition()
  4. public static resolve( mixed $root, array $args, mixed $context, ResolveInfo $info )

DeleteProduct{} code WC 10.9.1

class DeleteProduct {
	public static function get_field_definition(): array {
		return array(
			'type'          => Type::nonNull(
				new \Automattic\WooCommerce\Api\Infrastructure\Schema\ObjectType(
					array(
						'name'   => 'DeleteProductResult',
						'fields' => array(
							'result' => array( 'type' => Type::nonNull( Type::boolean() ) ),
						),
					)
				)
			),
			'description'   => __( 'Delete a product.', 'woocommerce' ),
			'authorization' => array(
				array(
					'attribute' => 'RequiredCapability',
					'args'      => array(
						0 => 'manage_woocommerce',
					),
				),
			),
			'args'          => array(
				'id'    => array(
					'type'        => Type::nonNull( Type::int() ),
					'description' => __( 'The ID of the product to delete.', 'woocommerce' ),
				),
				'force' => array(
					'type'         => Type::nonNull( Type::boolean() ),
					'description'  => __( 'Whether to permanently delete the product (bypass trash).', 'woocommerce' ),
					'defaultValue' => false,
				),
			),
			'resolve'       => array( self::class, 'resolve' ),
		);
	}

	public static function resolve( mixed $root, array $args, mixed $context, ResolveInfo $info ): mixed {
		// Standalone authorization gate: no authorize() method on the command,
		// so the autodiscovered authorization attributes are the sole guard.
		if ( ! self::compute_preauthorized( $context['principal'] ) ) {
			throw ResolverHelpers::build_authorization_error( $context['principal'] );
		}

		// Publish the root query's metadata so downstream field-level
		// authorization gates can read it via `$_metadata['query']`.
		// $context is an ArrayObject (see GraphQLController::process_request())
		// so the mutation propagates to nested resolvers.
		$context['_query_metadata'] = array();

		$command = \Automattic\WooCommerce\Api\Infrastructure\ClassResolver::resolve_class( DeleteProductCommand::class );

		$execute_args = array();
		if ( array_key_exists( 'id', $args ) ) {
			$execute_args['id'] = $args['id'];
		}
		if ( array_key_exists( 'force', $args ) ) {
			$execute_args['force'] = $args['force'];
		}

		$result = ResolverHelpers::execute_command( $command, $execute_args );

		return array( 'result' => $result );
	}

	/**
	 * Compute the value `_preauthorized` would carry for a given principal —
	 * the AND of the autodiscovered authorization attributes' authorize()
	 * outcomes on this command. Single source of truth for both the resolver's
	 * own gates and external (code-API) callers asking about authorization
	 * without going through GraphQL execution.
	 *
	 * Returns true vacuously when the command has no authorization attributes
	 * (in that case authorize() on the command is the sole guard, and that
	 * method should be consulted instead).
	 */
	public static function compute_preauthorized( \Automattic\WooCommerce\Api\Infrastructure\Principal $principal ): bool {
		return ( new \Automattic\WooCommerce\Api\Attributes\RequiredCapability( 'manage_woocommerce' ) )->authorize( $principal );
	}
}