Merge branch 'dev' for v0.1.0 release

- Conducted comprehensive security and best practices review
- Fixed VersionManager null format handling for attachment updates
- Improved input sanitization in AdminController for page context checks
- Updated README.md with complete feature documentation
- Updated CHANGELOG.md with 0.1.0 release notes
- Updated translations (.pot, .po, .mo files) to version 0.1.0
- Bumped version to 0.1.0 in plugin header and constant

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

.claude/settings.json

@@ -0,0 +1,8 @@
+{
+  "permissions": {
+    "allow": [
+      "Bash(composer config:*)",
+      "Bash(composer update:*)"
+    ]
+  }
+}

.gitignore

@@ -3,3 +3,4 @@
 wp-plugins
 wp-core
 vendor/
+releases/*

CHANGELOG.md

@@ -7,6 +7,39 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [0.1.0] - 2026-01-22
+
+### Added
+
+- First stable minor release
+- Comprehensive code review for WordPress/WooCommerce best practices
+- Security audit completed
+
+### Changed
+
+- Improved input sanitization for admin page context checks
+- Fixed VersionManager null format handling for attachment updates
+
+### Technical Details
+
+- All code reviewed for OWASP Top 10 security vulnerabilities
+- Verified proper nonce verification, capability checks, and input sanitization
+- SQL injection prevention confirmed using `$wpdb->prepare()` throughout
+- XSS prevention confirmed with proper output escaping
+- Rate limiting verified on REST API endpoints
+- README.md updated with full feature documentation
+
+## [0.0.11] - 2026-01-22
+
+### Added
+
+- Created date column in admin license overview
+
+### Technical Details
+
+- Added "Created" column to licenses table in admin (Twig template and PHP fallback)
+- Shows when each license was generated
+
 ## [0.0.10] - 2026-01-21
 
 ### Added
@@ -17,13 +50,25 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - View licenses table showing all licenses for an order
 - Link to full licenses management page from order view
 - Support for both classic orders and HPOS (High-Performance Order Storage)
+- Inline editing for license fields (status, expiry date, domain) in admin
+- Copy license key button in admin licenses overview
+- Live search for licenses in admin overview
+- Settings link in plugin actions
+
+### Fixed
+
+- Fixed 404 error on licenses menu item
+- Fixed Twig template cache issues with auto_reload
 
 ### Technical Details
 
 - New `OrderLicenseController` class for order page integration
 - New `getLicensesByOrder()` method in LicenseManager
+- New `updateLicenseExpiry()` method in LicenseManager
 - JavaScript file `order-licenses.js` for inline domain editing
+- JavaScript file `admin-licenses.js` for live search and inline editing
 - AJAX handlers for updating order domain and license domains
+- AJAX handlers for inline editing (status, expiry, domain updates)
 
 ## [0.0.9] - 2026-01-21
 
@@ -252,7 +297,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - WordPress REST API integration
 - Custom WooCommerce product type extending WC_Product
 
-[Unreleased]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.7...HEAD
+[Unreleased]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.1.0...HEAD
+[0.1.0]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.11...v0.1.0
+[0.0.11]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.10...v0.0.11
+[0.0.10]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.9...v0.0.10
+[0.0.9]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.8...v0.0.9
+[0.0.8]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.7...v0.0.8
 [0.0.7]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.6...v0.0.7
 [0.0.6]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.5...v0.0.6
 [0.0.5]: https://src.bundespruefstelle.ch/magdev/wc-licensed-product/compare/v0.0.4...v0.0.5

CLAUDE.md

@@ -34,11 +34,14 @@ This project is proudly **"vibe-coded"** using Claude.AI - the entire codebase w
 
 ### Known Bugs
 
-None currently known.
+No known bugs at the moment
 
-### Version 0.0.11 (planned)
+### Release 0.1.0
 
-- TBD - no specific features planned yet
+- Check the code for wordpress best practices, WooCommerce best practices and common security pitfalls. Refactor if needed.
+- Update the README.md according to the current featureset
+- Update all translations
+- Create a release package 0.1.0
 
 ## Technical Stack
 
@@ -554,17 +557,70 @@ Full API documentation available in `openapi.json` (OpenAPI 3.1 specification).
 - Inline edit UI with save/cancel for license domains
 - Links to full licenses management page for advanced actions
 
-**Bug fix (post v0.0.10):**
+**Additional features added in this session:**
+
+- Inline editing for license fields (status, expiry date, domain) in admin licenses overview
+- Copy license key button with clipboard API and fallback for older browsers
+- Live search for licenses in admin overview with AJAX-powered results dropdown
+- Settings link added to plugin action links in Plugins list
+- Fixed 404 error on licenses menu item in customer account
+- Fixed Twig template cache issues with `auto_reload` option
+
+**New files:**
+
+- `assets/js/admin-licenses.js` - JavaScript for live search, inline editing, and copy functionality
+
+**New methods in LicenseManager:**
+
+- `updateLicenseExpiry()` - Update license expiry date with auto-reactivation for expired licenses
+
+**AJAX handlers added to AdminController:**
+
+- `handleAjaxStatusUpdate()` - Update license status via AJAX
+- `handleAjaxExpiryUpdate()` - Update license expiry date via AJAX
+- `handleAjaxDomainUpdate()` - Update license domain via AJAX
+- `handleAjaxRevoke()` - Revoke license via AJAX
+
+**Technical notes:**
+
+- Live search uses 300ms debounce and keyboard navigation (arrows, enter, escape)
+- Inline editing shows edit icons on hover, supports enter to save and escape to cancel
+- Copy button uses Clipboard API with textarea fallback for older browsers
+- All AJAX handlers use nonce verification (`wclp_inline_edit` nonce)
+- Twig configured with `auto_reload => true` for development to always check template changes
+
+**Bug fix:**
 
 - Fixed: Licenses menu item in customer account page resulted in 404 error
+- Root cause: WooCommerce My Account endpoints require both `add_rewrite_endpoint()` AND registration with `woocommerce_get_query_vars` filter
+- Fix: Added `addLicensesQueryVar()` method to register the endpoint query var with WooCommerce
 
-**Root cause:**
+**Release v0.0.10:**
 
-- WooCommerce My Account endpoints require both `add_rewrite_endpoint()` AND registration with `woocommerce_get_query_vars` filter
-- The endpoint also needs to be registered before rewrite rules are flushed during activation
+- Created release package: `releases/wc-licensed-product-0.0.10.zip` (472 KB)
+- SHA256: `3f4a093f6d4d02389082c3a88c00542f477ab3ad4d4a0c65079e524ef0739620`
+- Tagged as `v0.0.10` and pushed to `main` branch
 
-**Fix:**
+### 2026-01-22 - Version 0.0.11 Features
 
-- Added `addLicensesQueryVar()` method to register the endpoint query var with WooCommerce
-- Updated Installer to register endpoint before flushing rewrite rules on activation
-- Existing installations may need to visit Settings > Permalinks and click Save to regenerate rewrite rules
+**Implemented:**
+
+- Created date column added to admin license overview showing when each license was generated
+
+**Modified files:**
+
+- `templates/admin/licenses.html.twig` - Added "Created" column to table header and data cells
+- `src/Admin/AdminController.php` - Added "Created" column to PHP fallback rendering
+- `src/Plugin.php` - Added `getInstance()` alias for singleton access
+
+**Technical notes:**
+
+- New column displays license creation date in Y-m-d format
+- Both Twig template and PHP fallback updated for consistency
+- WooCommerce Analytics integration was attempted but removed due to WordPress permission issues with submenu pages
+
+**Release v0.0.11:**
+
+- Created release package: `releases/wc-licensed-product-0.0.11.zip` (473 KB)
+- SHA256: `c3f66c4ac54741053f87ce1a63b4ddb49ad9707d5c194a271311bb95518ab13c`
+- Tagged as `v0.0.11` and pushed to `main` branch

README.md

@@ -17,6 +17,7 @@ WC Licensed Product adds a new product type "Licensed Product" to WooCommerce, e
 - **Version Binding**: Optional binding to major software versions
 - **Expiration Support**: Set license validity periods or lifetime licenses
 - **Rate Limiting**: API endpoints protected with rate limiting (30 requests/minute)
+- **Checkout Blocks**: Full support for WooCommerce Checkout Blocks (default since WC 8.3+)
 
 ### Customer Features
 
@@ -30,12 +31,16 @@ WC Licensed Product adds a new product type "Licensed Product" to WooCommerce, e
 - **License Management**: Full CRUD interface for license management
 - **License Dashboard**: Statistics and analytics (WooCommerce > Reports > Licenses)
 - **Search & Filtering**: Search by license key, domain, status, or product
+- **Live Search**: AJAX-powered instant search results
+- **Inline Editing**: Edit license status, expiry, and domain directly in the list
 - **Bulk Operations**: Activate, deactivate, revoke, extend, or delete multiple licenses
 - **License Transfer**: Transfer licenses to new domains
 - **CSV Export/Import**: Export and import licenses via CSV
+- **Order Integration**: View and manage licenses directly from order pages
 - **Expiration Warnings**: Automatic email notifications before license expiration
 - **Version Management**: Manage multiple versions per product with file attachments
 - **Global Settings**: Default license settings via WooCommerce settings tab
+- **WooCommerce HPOS**: Compatible with High-Performance Order Storage
 
 ## Requirements
 
@@ -60,7 +65,6 @@ WC Licensed Product adds a new product type "Licensed Product" to WooCommerce, e
    - **Max Activations**: Number of domains allowed per license
    - **License Validity**: Days until expiration (empty = lifetime)
    - **Bind to Major Version**: Lock license to current major version
-   - **Current Version**: Your software's current version
 
 ### Managing Product Versions
 

src/Admin/AdminController.php

@@ -105,7 +105,9 @@ final class AdminController
     {
         // Check for our pages and WooCommerce Reports page with licenses tab
         $isLicensePage = in_array($hook, ['woocommerce_page_wc-licenses', 'woocommerce_page_wc-license-dashboard'], true);
-        $isReportsPage = $hook === 'woocommerce_page_wc-reports' && isset($_GET['tab']) && $_GET['tab'] === 'licenses';
+        // phpcs:ignore WordPress.Security.NonceVerification.Recommended -- Only checking current page context
+        $currentTab = isset($_GET['tab']) ? sanitize_text_field(wp_unslash($_GET['tab'])) : '';
+        $isReportsPage = $hook === 'woocommerce_page_wc-reports' && $currentTab === 'licenses';
 
         if (!$isLicensePage && !$isReportsPage) {
             return;
@@ -1253,6 +1255,7 @@ final class AdminController
                             <th><?php esc_html_e('Customer', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Domain', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Status', 'wc-licensed-product'); ?></th>
+                            <th><?php esc_html_e('Created', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Expires', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Actions', 'wc-licensed-product'); ?></th>
                         </tr>
@@ -1260,7 +1263,7 @@ final class AdminController
                     <tbody>
                         <?php if (empty($enrichedLicenses)): ?>
                             <tr>
-                                <td colspan="8"><?php esc_html_e('No licenses found.', 'wc-licensed-product'); ?></td>
+                                <td colspan="9"><?php esc_html_e('No licenses found.', 'wc-licensed-product'); ?></td>
                             </tr>
                         <?php else: ?>
                             <?php foreach ($enrichedLicenses as $item): ?>
@@ -1320,6 +1323,9 @@ final class AdminController
                                             <button type="button" class="wclp-cancel-btn button button-small"><?php esc_html_e('Cancel', 'wc-licensed-product'); ?></button>
                                         </div>
                                     </td>
+                                    <td class="wclp-created-cell">
+                                        <?php echo esc_html($item['license']->getCreatedAt()->format(get_option('date_format'))); ?>
+                                    </td>
                                     <td class="wclp-editable-cell" data-field="expiry" data-license-id="<?php echo esc_attr($item['license']->getId()); ?>">
                                         <?php $expiresAt = $item['license']->getExpiresAt(); ?>
                                         <span class="wclp-display-value">
@@ -1387,6 +1393,7 @@ final class AdminController
                             <th><?php esc_html_e('Customer', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Domain', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Status', 'wc-licensed-product'); ?></th>
+                            <th><?php esc_html_e('Created', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Expires', 'wc-licensed-product'); ?></th>
                             <th><?php esc_html_e('Actions', 'wc-licensed-product'); ?></th>
                         </tr>

src/Plugin.php

@@ -68,6 +68,14 @@ final class Plugin
         return self::$instance;
     }
 
+    /**
+     * Get singleton instance (alias for instance())
+     */
+    public static function getInstance(): Plugin
+    {
+        return self::instance();
+    }
+
     /**
      * Private constructor for singleton
      */

src/Product/VersionManager.php

@@ -167,8 +167,20 @@ class VersionManager
         }
 
         if ($attachmentId !== null) {
-            $data['attachment_id'] = $attachmentId > 0 ? $attachmentId : null;
-            $formats[] = $attachmentId > 0 ? '%d' : null;
+            if ($attachmentId > 0) {
+                $data['attachment_id'] = $attachmentId;
+                $formats[] = '%d';
+            } else {
+                // Set to NULL using raw SQL instead of adding to $data
+                global $wpdb;
+                $tableName = Installer::getVersionsTable();
+                $wpdb->query(
+                    $wpdb->prepare(
+                        "UPDATE {$tableName} SET attachment_id = NULL WHERE id = %d",
+                        $versionId
+                    )
+                );
+            }
         }
 
         if (empty($data)) {

templates/admin/licenses.html.twig

@@ -95,6 +95,7 @@
                     <th>{{ __('Customer') }}</th>
                     <th>{{ __('Domain') }}</th>
                     <th>{{ __('Status') }}</th>
+                    <th>{{ __('Created') }}</th>
                     <th>{{ __('Expires') }}</th>
                     <th>{{ __('Actions') }}</th>
                 </tr>
@@ -102,7 +103,7 @@
             <tbody>
                 {% if licenses is empty %}
                     <tr>
-                        <td colspan="8">{{ __('No licenses found.') }}</td>
+                        <td colspan="9">{{ __('No licenses found.') }}</td>
                     </tr>
                 {% else %}
                     {% for item in licenses %}
@@ -160,6 +161,9 @@
                                     <button type="button" class="wclp-cancel-btn button button-small">{{ __('Cancel') }}</button>
                                 </div>
                             </td>
+                            <td class="wclp-created-cell">
+                                {{ item.license.createdAt|date('Y-m-d') }}
+                            </td>
                             <td class="wclp-editable-cell" data-field="expiry" data-license-id="{{ item.license.id }}">
                                 <span class="wclp-display-value">
                                     {% if item.license.expiresAt %}
@@ -219,6 +223,7 @@
                     <th>{{ __('Customer') }}</th>
                     <th>{{ __('Domain') }}</th>
                     <th>{{ __('Status') }}</th>
+                    <th>{{ __('Created') }}</th>
                     <th>{{ __('Expires') }}</th>
                     <th>{{ __('Actions') }}</th>
                 </tr>

wc-licensed-product.php

@@ -3,7 +3,7 @@
  * Plugin Name: WooCommerce Licensed Product
  * Plugin URI: https://src.bundespruefstelle.ch/magdev/wc-licensed-product
  * Description: WooCommerce plugin to sell software products using license keys with domain-based validation.
- * Version: 0.0.10
+ * Version: 0.1.0
  * Author: Marco Graetsch
  * Author URI: https://src.bundespruefstelle.ch/magdev
  * License: GPL-2.0-or-later
@@ -28,7 +28,7 @@ if (!defined('ABSPATH')) {
 }
 
 // Plugin constants
-define('WC_LICENSED_PRODUCT_VERSION', '0.0.10');
+define('WC_LICENSED_PRODUCT_VERSION', '0.1.0');
 define('WC_LICENSED_PRODUCT_PLUGIN_FILE', __FILE__);
 define('WC_LICENSED_PRODUCT_PLUGIN_DIR', plugin_dir_path(__FILE__));
 define('WC_LICENSED_PRODUCT_PLUGIN_URL', plugin_dir_url(__FILE__));