cinecast.fr: web/wp-admin/admin-ajax.php@0d28b7c10758 (annotated)

1 0d28b7c10758 First commit ymh parents: diff changeset	1	<?php
0d28b7c10758 First commit ymh parents: diff changeset	2	/**
0d28b7c10758 First commit ymh parents: diff changeset	3	* WordPress AJAX Process Execution.
0d28b7c10758 First commit ymh parents: diff changeset	4	*
0d28b7c10758 First commit ymh parents: diff changeset	5	* @package WordPress
0d28b7c10758 First commit ymh parents: diff changeset	6	* @subpackage Administration
0d28b7c10758 First commit ymh parents: diff changeset	7	*/
0d28b7c10758 First commit ymh parents: diff changeset	8
0d28b7c10758 First commit ymh parents: diff changeset	9	/**
0d28b7c10758 First commit ymh parents: diff changeset	10	* Executing AJAX process.
0d28b7c10758 First commit ymh parents: diff changeset	11	*
0d28b7c10758 First commit ymh parents: diff changeset	12	* @since unknown
0d28b7c10758 First commit ymh parents: diff changeset	13	*/
0d28b7c10758 First commit ymh parents: diff changeset	14	define('DOING_AJAX', true);
0d28b7c10758 First commit ymh parents: diff changeset	15	define('WP_ADMIN', true);
0d28b7c10758 First commit ymh parents: diff changeset	16
0d28b7c10758 First commit ymh parents: diff changeset	17	require_once('../wp-load.php');
0d28b7c10758 First commit ymh parents: diff changeset	18	require_once('includes/admin.php');
0d28b7c10758 First commit ymh parents: diff changeset	19	@header('Content-Type: text/html; charset=' . get_option('blog_charset'));
0d28b7c10758 First commit ymh parents: diff changeset	20
0d28b7c10758 First commit ymh parents: diff changeset	21	do_action('admin_init');
0d28b7c10758 First commit ymh parents: diff changeset	22
0d28b7c10758 First commit ymh parents: diff changeset	23	if ( ! is_user_logged_in() ) {
0d28b7c10758 First commit ymh parents: diff changeset	24
0d28b7c10758 First commit ymh parents: diff changeset	25	if ( $_POST['action'] == 'autosave' ) {
0d28b7c10758 First commit ymh parents: diff changeset	26	$id = isset($_POST['post_ID'])? (int) $_POST['post_ID'] : 0;
0d28b7c10758 First commit ymh parents: diff changeset	27
0d28b7c10758 First commit ymh parents: diff changeset	28	if ( ! $id )
0d28b7c10758 First commit ymh parents: diff changeset	29	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	30
0d28b7c10758 First commit ymh parents: diff changeset	31	$message = sprintf( __('<strong>ALERT: You are logged out!</strong> Could not save draft. <a href="%s" target="blank">Please log in again.</a>'), wp_login_url() );
0d28b7c10758 First commit ymh parents: diff changeset	32	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	33	'what' => 'autosave',
0d28b7c10758 First commit ymh parents: diff changeset	34	'id' => $id,
0d28b7c10758 First commit ymh parents: diff changeset	35	'data' => $message
0d28b7c10758 First commit ymh parents: diff changeset	36	) );
0d28b7c10758 First commit ymh parents: diff changeset	37	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	38	}
0d28b7c10758 First commit ymh parents: diff changeset	39
0d28b7c10758 First commit ymh parents: diff changeset	40	if ( !empty( $_REQUEST['action']) )
0d28b7c10758 First commit ymh parents: diff changeset	41	do_action( 'wp_ajax_nopriv_' . $_REQUEST['action'] );
0d28b7c10758 First commit ymh parents: diff changeset	42
0d28b7c10758 First commit ymh parents: diff changeset	43	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	44	}
0d28b7c10758 First commit ymh parents: diff changeset	45
0d28b7c10758 First commit ymh parents: diff changeset	46	if ( isset( $_GET['action'] ) ) :
0d28b7c10758 First commit ymh parents: diff changeset	47	switch ( $action = $_GET['action'] ) :
0d28b7c10758 First commit ymh parents: diff changeset	48	case 'ajax-tag-search' :
0d28b7c10758 First commit ymh parents: diff changeset	49	if ( !current_user_can( 'edit_posts' ) )
0d28b7c10758 First commit ymh parents: diff changeset	50	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	51
0d28b7c10758 First commit ymh parents: diff changeset	52	$s = $_GET['q']; // is this slashed already?
0d28b7c10758 First commit ymh parents: diff changeset	53
0d28b7c10758 First commit ymh parents: diff changeset	54	if ( isset($_GET['tax']) )
0d28b7c10758 First commit ymh parents: diff changeset	55	$taxonomy = sanitize_title($_GET['tax']);
0d28b7c10758 First commit ymh parents: diff changeset	56	else
0d28b7c10758 First commit ymh parents: diff changeset	57	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	58
0d28b7c10758 First commit ymh parents: diff changeset	59	if ( false !== strpos( $s, ',' ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	60	$s = explode( ',', $s );
0d28b7c10758 First commit ymh parents: diff changeset	61	$s = $s[count( $s ) - 1];
0d28b7c10758 First commit ymh parents: diff changeset	62	}
0d28b7c10758 First commit ymh parents: diff changeset	63	$s = trim( $s );
0d28b7c10758 First commit ymh parents: diff changeset	64	if ( strlen( $s ) < 2 )
0d28b7c10758 First commit ymh parents: diff changeset	65	die; // require 2 chars for matching
0d28b7c10758 First commit ymh parents: diff changeset	66
0d28b7c10758 First commit ymh parents: diff changeset	67	$results = $wpdb->get_col( "SELECT t.name FROM $wpdb->term_taxonomy AS tt INNER JOIN $wpdb->terms AS t ON tt.term_id = t.term_id WHERE tt.taxonomy = '$taxonomy' AND t.name LIKE ('%" . $s . "%')" );
0d28b7c10758 First commit ymh parents: diff changeset	68
0d28b7c10758 First commit ymh parents: diff changeset	69	echo join( $results, "\n" );
0d28b7c10758 First commit ymh parents: diff changeset	70	die;
0d28b7c10758 First commit ymh parents: diff changeset	71	break;
0d28b7c10758 First commit ymh parents: diff changeset	72	case 'wp-compression-test' :
0d28b7c10758 First commit ymh parents: diff changeset	73	if ( !current_user_can( 'manage_options' ) )
0d28b7c10758 First commit ymh parents: diff changeset	74	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	75
0d28b7c10758 First commit ymh parents: diff changeset	76	if ( ini_get('zlib.output_compression') \|\| 'ob_gzhandler' == ini_get('output_handler') ) {
0d28b7c10758 First commit ymh parents: diff changeset	77	update_site_option('can_compress_scripts', 0);
0d28b7c10758 First commit ymh parents: diff changeset	78	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	79	}
0d28b7c10758 First commit ymh parents: diff changeset	80
0d28b7c10758 First commit ymh parents: diff changeset	81	if ( isset($_GET['test']) ) {
0d28b7c10758 First commit ymh parents: diff changeset	82	header( 'Expires: Wed, 11 Jan 1984 05:00:00 GMT' );
0d28b7c10758 First commit ymh parents: diff changeset	83	header( 'Last-Modified: ' . gmdate( 'D, d M Y H:i:s' ) . ' GMT' );
0d28b7c10758 First commit ymh parents: diff changeset	84	header( 'Cache-Control: no-cache, must-revalidate, max-age=0' );
0d28b7c10758 First commit ymh parents: diff changeset	85	header( 'Pragma: no-cache' );
0d28b7c10758 First commit ymh parents: diff changeset	86	header('Content-Type: application/x-javascript; charset=UTF-8');
0d28b7c10758 First commit ymh parents: diff changeset	87	$force_gzip = ( defined('ENFORCE_GZIP') && ENFORCE_GZIP );
0d28b7c10758 First commit ymh parents: diff changeset	88	$test_str = '"wpCompressionTest Lorem ipsum dolor sit amet consectetuer mollis sapien urna ut a. Eu nonummy condimentum fringilla tempor pretium platea vel nibh netus Maecenas. Hac molestie amet justo quis pellentesque est ultrices interdum nibh Morbi. Cras mattis pretium Phasellus ante ipsum ipsum ut sociis Suspendisse Lorem. Ante et non molestie. Porta urna Vestibulum egestas id congue nibh eu risus gravida sit. Ac augue auctor Ut et non a elit massa id sodales. Elit eu Nulla at nibh adipiscing mattis lacus mauris at tempus. Netus nibh quis suscipit nec feugiat eget sed lorem et urna. Pellentesque lacus at ut massa consectetuer ligula ut auctor semper Pellentesque. Ut metus massa nibh quam Curabitur molestie nec mauris congue. Volutpat molestie elit justo facilisis neque ac risus Ut nascetur tristique. Vitae sit lorem tellus et quis Phasellus lacus tincidunt nunc Fusce. Pharetra wisi Suspendisse mus sagittis libero lacinia Integer consequat ac Phasellus. Et urna ac cursus tortor aliquam Aliquam amet tellus volutpat Vestibulum. Justo interdum condimentum In augue congue tellus sollicitudin Quisque quis nibh."';
0d28b7c10758 First commit ymh parents: diff changeset	89
0d28b7c10758 First commit ymh parents: diff changeset	90	if ( 1 == $_GET['test'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	91	echo $test_str;
0d28b7c10758 First commit ymh parents: diff changeset	92	die;
0d28b7c10758 First commit ymh parents: diff changeset	93	} elseif ( 2 == $_GET['test'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	94	if ( !isset($_SERVER['HTTP_ACCEPT_ENCODING']) )
0d28b7c10758 First commit ymh parents: diff changeset	95	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	96	if ( false !== strpos( strtolower($_SERVER['HTTP_ACCEPT_ENCODING']), 'deflate') && function_exists('gzdeflate') && ! $force_gzip ) {
0d28b7c10758 First commit ymh parents: diff changeset	97	header('Content-Encoding: deflate');
0d28b7c10758 First commit ymh parents: diff changeset	98	$out = gzdeflate( $test_str, 1 );
0d28b7c10758 First commit ymh parents: diff changeset	99	} elseif ( false !== strpos( strtolower($_SERVER['HTTP_ACCEPT_ENCODING']), 'gzip') && function_exists('gzencode') ) {
0d28b7c10758 First commit ymh parents: diff changeset	100	header('Content-Encoding: gzip');
0d28b7c10758 First commit ymh parents: diff changeset	101	$out = gzencode( $test_str, 1 );
0d28b7c10758 First commit ymh parents: diff changeset	102	} else {
0d28b7c10758 First commit ymh parents: diff changeset	103	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	104	}
0d28b7c10758 First commit ymh parents: diff changeset	105	echo $out;
0d28b7c10758 First commit ymh parents: diff changeset	106	die;
0d28b7c10758 First commit ymh parents: diff changeset	107	} elseif ( 'no' == $_GET['test'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	108	update_site_option('can_compress_scripts', 0);
0d28b7c10758 First commit ymh parents: diff changeset	109	} elseif ( 'yes' == $_GET['test'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	110	update_site_option('can_compress_scripts', 1);
0d28b7c10758 First commit ymh parents: diff changeset	111	}
0d28b7c10758 First commit ymh parents: diff changeset	112	}
0d28b7c10758 First commit ymh parents: diff changeset	113
0d28b7c10758 First commit ymh parents: diff changeset	114	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	115	break;
0d28b7c10758 First commit ymh parents: diff changeset	116	case 'imgedit-preview' :
0d28b7c10758 First commit ymh parents: diff changeset	117	$post_id = intval($_GET['postid']);
0d28b7c10758 First commit ymh parents: diff changeset	118	if ( empty($post_id) \|\| !current_user_can('edit_post', $post_id) )
0d28b7c10758 First commit ymh parents: diff changeset	119	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	120
0d28b7c10758 First commit ymh parents: diff changeset	121	check_ajax_referer( "image_editor-$post_id" );
0d28b7c10758 First commit ymh parents: diff changeset	122
0d28b7c10758 First commit ymh parents: diff changeset	123	include_once( ABSPATH . 'wp-admin/includes/image-edit.php' );
0d28b7c10758 First commit ymh parents: diff changeset	124	if ( !stream_preview_image($post_id) )
0d28b7c10758 First commit ymh parents: diff changeset	125	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	126
0d28b7c10758 First commit ymh parents: diff changeset	127	die();
0d28b7c10758 First commit ymh parents: diff changeset	128	break;
0d28b7c10758 First commit ymh parents: diff changeset	129	case 'oembed-cache' :
0d28b7c10758 First commit ymh parents: diff changeset	130	$return = ( $wp_embed->cache_oembed( $_GET['post'] ) ) ? '1' : '0';
0d28b7c10758 First commit ymh parents: diff changeset	131	die( $return );
0d28b7c10758 First commit ymh parents: diff changeset	132	break;
0d28b7c10758 First commit ymh parents: diff changeset	133	default :
0d28b7c10758 First commit ymh parents: diff changeset	134	do_action( 'wp_ajax_' . $_GET['action'] );
0d28b7c10758 First commit ymh parents: diff changeset	135	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	136	break;
0d28b7c10758 First commit ymh parents: diff changeset	137	endswitch;
0d28b7c10758 First commit ymh parents: diff changeset	138	endif;
0d28b7c10758 First commit ymh parents: diff changeset	139
0d28b7c10758 First commit ymh parents: diff changeset	140	/**
0d28b7c10758 First commit ymh parents: diff changeset	141	* Sends back current comment total and new page links if they need to be updated.
0d28b7c10758 First commit ymh parents: diff changeset	142	*
0d28b7c10758 First commit ymh parents: diff changeset	143	* Contrary to normal success AJAX response ("1"), die with time() on success.
0d28b7c10758 First commit ymh parents: diff changeset	144	*
0d28b7c10758 First commit ymh parents: diff changeset	145	* @since 2.7
0d28b7c10758 First commit ymh parents: diff changeset	146	*
0d28b7c10758 First commit ymh parents: diff changeset	147	* @param int $comment_id
0d28b7c10758 First commit ymh parents: diff changeset	148	* @return die
0d28b7c10758 First commit ymh parents: diff changeset	149	*/
0d28b7c10758 First commit ymh parents: diff changeset	150	function _wp_ajax_delete_comment_response( $comment_id ) {
0d28b7c10758 First commit ymh parents: diff changeset	151	$total = (int) @$_POST['_total'];
0d28b7c10758 First commit ymh parents: diff changeset	152	$per_page = (int) @$_POST['_per_page'];
0d28b7c10758 First commit ymh parents: diff changeset	153	$page = (int) @$_POST['_page'];
0d28b7c10758 First commit ymh parents: diff changeset	154	$url = esc_url_raw( @$_POST['_url'] );
0d28b7c10758 First commit ymh parents: diff changeset	155	// JS didn't send us everything we need to know. Just die with success message
0d28b7c10758 First commit ymh parents: diff changeset	156	if ( !$total \|\| !$per_page \|\| !$page \|\| !$url )
0d28b7c10758 First commit ymh parents: diff changeset	157	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	158
0d28b7c10758 First commit ymh parents: diff changeset	159	if ( --$total < 0 ) // Take the total from POST and decrement it (since we just deleted one)
0d28b7c10758 First commit ymh parents: diff changeset	160	$total = 0;
0d28b7c10758 First commit ymh parents: diff changeset	161
0d28b7c10758 First commit ymh parents: diff changeset	162	if ( 0 != $total % $per_page && 1 != mt_rand( 1, $per_page ) ) // Only do the expensive stuff on a page-break, and about 1 other time per page
0d28b7c10758 First commit ymh parents: diff changeset	163	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	164
0d28b7c10758 First commit ymh parents: diff changeset	165	$post_id = 0;
0d28b7c10758 First commit ymh parents: diff changeset	166	$status = 'total_comments'; // What type of comment count are we looking for?
0d28b7c10758 First commit ymh parents: diff changeset	167	$parsed = parse_url( $url );
0d28b7c10758 First commit ymh parents: diff changeset	168	if ( isset( $parsed['query'] ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	169	parse_str( $parsed['query'], $query_vars );
0d28b7c10758 First commit ymh parents: diff changeset	170	if ( !empty( $query_vars['comment_status'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	171	$status = $query_vars['comment_status'];
0d28b7c10758 First commit ymh parents: diff changeset	172	if ( !empty( $query_vars['p'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	173	$post_id = (int) $query_vars['p'];
0d28b7c10758 First commit ymh parents: diff changeset	174	}
0d28b7c10758 First commit ymh parents: diff changeset	175
0d28b7c10758 First commit ymh parents: diff changeset	176	$comment_count = wp_count_comments($post_id);
0d28b7c10758 First commit ymh parents: diff changeset	177	$time = time(); // The time since the last comment count
0d28b7c10758 First commit ymh parents: diff changeset	178
0d28b7c10758 First commit ymh parents: diff changeset	179	if ( isset( $comment_count->$status ) ) // We're looking for a known type of comment count
0d28b7c10758 First commit ymh parents: diff changeset	180	$total = $comment_count->$status;
0d28b7c10758 First commit ymh parents: diff changeset	181	// else use the decremented value from above
0d28b7c10758 First commit ymh parents: diff changeset	182
0d28b7c10758 First commit ymh parents: diff changeset	183	$page_links = paginate_links( array(
0d28b7c10758 First commit ymh parents: diff changeset	184	'base' => add_query_arg( 'apage', '%#%', $url ),
0d28b7c10758 First commit ymh parents: diff changeset	185	'format' => '',
0d28b7c10758 First commit ymh parents: diff changeset	186	'prev_text' => __('«'),
0d28b7c10758 First commit ymh parents: diff changeset	187	'next_text' => __('»'),
0d28b7c10758 First commit ymh parents: diff changeset	188	'total' => ceil($total / $per_page),
0d28b7c10758 First commit ymh parents: diff changeset	189	'current' => $page
0d28b7c10758 First commit ymh parents: diff changeset	190	) );
0d28b7c10758 First commit ymh parents: diff changeset	191	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	192	'what' => 'comment',
0d28b7c10758 First commit ymh parents: diff changeset	193	'id' => $comment_id, // here for completeness - not used
0d28b7c10758 First commit ymh parents: diff changeset	194	'supplemental' => array(
0d28b7c10758 First commit ymh parents: diff changeset	195	'pageLinks' => $page_links,
0d28b7c10758 First commit ymh parents: diff changeset	196	'total' => $total,
0d28b7c10758 First commit ymh parents: diff changeset	197	'time' => $time
0d28b7c10758 First commit ymh parents: diff changeset	198	)
0d28b7c10758 First commit ymh parents: diff changeset	199	) );
0d28b7c10758 First commit ymh parents: diff changeset	200	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	201	}
0d28b7c10758 First commit ymh parents: diff changeset	202
0d28b7c10758 First commit ymh parents: diff changeset	203	$id = isset($_POST['id'])? (int) $_POST['id'] : 0;
0d28b7c10758 First commit ymh parents: diff changeset	204	switch ( $action = $_POST['action'] ) :
0d28b7c10758 First commit ymh parents: diff changeset	205	case 'delete-comment' : // On success, die with time() instead of 1
0d28b7c10758 First commit ymh parents: diff changeset	206	if ( !$comment = get_comment( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	207	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	208	if ( !current_user_can( 'edit_post', $comment->comment_post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	209	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	210
0d28b7c10758 First commit ymh parents: diff changeset	211	check_ajax_referer( "delete-comment_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	212	$status = wp_get_comment_status( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	213
0d28b7c10758 First commit ymh parents: diff changeset	214	if ( isset($_POST['trash']) && 1 == $_POST['trash'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	215	if ( 'trash' == $status )
0d28b7c10758 First commit ymh parents: diff changeset	216	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	217	$r = wp_trash_comment( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	218	} elseif ( isset($_POST['untrash']) && 1 == $_POST['untrash'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	219	if ( 'trash' != $status )
0d28b7c10758 First commit ymh parents: diff changeset	220	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	221	$r = wp_untrash_comment( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	222	} elseif ( isset($_POST['spam']) && 1 == $_POST['spam'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	223	if ( 'spam' == $status )
0d28b7c10758 First commit ymh parents: diff changeset	224	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	225	$r = wp_spam_comment( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	226	} elseif ( isset($_POST['unspam']) && 1 == $_POST['unspam'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	227	if ( 'spam' != $status )
0d28b7c10758 First commit ymh parents: diff changeset	228	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	229	$r = wp_unspam_comment( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	230	} elseif ( isset($_POST['delete']) && 1 == $_POST['delete'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	231	$r = wp_delete_comment( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	232	} else {
0d28b7c10758 First commit ymh parents: diff changeset	233	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	234	}
0d28b7c10758 First commit ymh parents: diff changeset	235
0d28b7c10758 First commit ymh parents: diff changeset	236	if ( $r ) // Decide if we need to send back '1' or a more complicated response including page links and comment counts
0d28b7c10758 First commit ymh parents: diff changeset	237	_wp_ajax_delete_comment_response( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	238	die( '0' );
0d28b7c10758 First commit ymh parents: diff changeset	239	break;
0d28b7c10758 First commit ymh parents: diff changeset	240	case 'delete-cat' :
0d28b7c10758 First commit ymh parents: diff changeset	241	check_ajax_referer( "delete-category_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	242	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	243	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	244
0d28b7c10758 First commit ymh parents: diff changeset	245	$cat = get_category( $id );
0d28b7c10758 First commit ymh parents: diff changeset	246	if ( !$cat \|\| is_wp_error( $cat ) )
0d28b7c10758 First commit ymh parents: diff changeset	247	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	248
0d28b7c10758 First commit ymh parents: diff changeset	249	if ( wp_delete_category( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	250	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	251	else
0d28b7c10758 First commit ymh parents: diff changeset	252	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	253	break;
0d28b7c10758 First commit ymh parents: diff changeset	254	case 'delete-tag' :
0d28b7c10758 First commit ymh parents: diff changeset	255	$tag_id = (int) $_POST['tag_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	256	check_ajax_referer( "delete-tag_$tag_id" );
0d28b7c10758 First commit ymh parents: diff changeset	257	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	258	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	259
0d28b7c10758 First commit ymh parents: diff changeset	260	$taxonomy = !empty($_POST['taxonomy']) ? $_POST['taxonomy'] : 'post_tag';
0d28b7c10758 First commit ymh parents: diff changeset	261
0d28b7c10758 First commit ymh parents: diff changeset	262	$tag = get_term( $tag_id, $taxonomy );
0d28b7c10758 First commit ymh parents: diff changeset	263	if ( !$tag \|\| is_wp_error( $tag ) )
0d28b7c10758 First commit ymh parents: diff changeset	264	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	265
0d28b7c10758 First commit ymh parents: diff changeset	266	if ( wp_delete_term($tag_id, $taxonomy))
0d28b7c10758 First commit ymh parents: diff changeset	267	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	268	else
0d28b7c10758 First commit ymh parents: diff changeset	269	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	270	break;
0d28b7c10758 First commit ymh parents: diff changeset	271	case 'delete-link-cat' :
0d28b7c10758 First commit ymh parents: diff changeset	272	check_ajax_referer( "delete-link-category_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	273	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	274	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	275
0d28b7c10758 First commit ymh parents: diff changeset	276	$cat = get_term( $id, 'link_category' );
0d28b7c10758 First commit ymh parents: diff changeset	277	if ( !$cat \|\| is_wp_error( $cat ) )
0d28b7c10758 First commit ymh parents: diff changeset	278	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	279
0d28b7c10758 First commit ymh parents: diff changeset	280	$cat_name = get_term_field('name', $id, 'link_category');
0d28b7c10758 First commit ymh parents: diff changeset	281
0d28b7c10758 First commit ymh parents: diff changeset	282	$default = get_option('default_link_category');
0d28b7c10758 First commit ymh parents: diff changeset	283
0d28b7c10758 First commit ymh parents: diff changeset	284	// Don't delete the default cats.
0d28b7c10758 First commit ymh parents: diff changeset	285	if ( $id == $default ) {
0d28b7c10758 First commit ymh parents: diff changeset	286	$x = new WP_AJAX_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	287	'what' => 'link-cat',
0d28b7c10758 First commit ymh parents: diff changeset	288	'id' => $id,
0d28b7c10758 First commit ymh parents: diff changeset	289	'data' => new WP_Error( 'default-link-cat', sprintf(__("Can’t delete the <strong>%s</strong> category: this is the default one"), $cat_name) )
0d28b7c10758 First commit ymh parents: diff changeset	290	) );
0d28b7c10758 First commit ymh parents: diff changeset	291	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	292	}
0d28b7c10758 First commit ymh parents: diff changeset	293
0d28b7c10758 First commit ymh parents: diff changeset	294	$r = wp_delete_term($id, 'link_category', array('default' => $default));
0d28b7c10758 First commit ymh parents: diff changeset	295	if ( !$r )
0d28b7c10758 First commit ymh parents: diff changeset	296	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	297	if ( is_wp_error($r) ) {
0d28b7c10758 First commit ymh parents: diff changeset	298	$x = new WP_AJAX_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	299	'what' => 'link-cat',
0d28b7c10758 First commit ymh parents: diff changeset	300	'id' => $id,
0d28b7c10758 First commit ymh parents: diff changeset	301	'data' => $r
0d28b7c10758 First commit ymh parents: diff changeset	302	) );
0d28b7c10758 First commit ymh parents: diff changeset	303	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	304	}
0d28b7c10758 First commit ymh parents: diff changeset	305	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	306	break;
0d28b7c10758 First commit ymh parents: diff changeset	307	case 'delete-link' :
0d28b7c10758 First commit ymh parents: diff changeset	308	check_ajax_referer( "delete-bookmark_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	309	if ( !current_user_can( 'manage_links' ) )
0d28b7c10758 First commit ymh parents: diff changeset	310	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	311
0d28b7c10758 First commit ymh parents: diff changeset	312	$link = get_bookmark( $id );
0d28b7c10758 First commit ymh parents: diff changeset	313	if ( !$link \|\| is_wp_error( $link ) )
0d28b7c10758 First commit ymh parents: diff changeset	314	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	315
0d28b7c10758 First commit ymh parents: diff changeset	316	if ( wp_delete_link( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	317	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	318	else
0d28b7c10758 First commit ymh parents: diff changeset	319	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	320	break;
0d28b7c10758 First commit ymh parents: diff changeset	321	case 'delete-meta' :
0d28b7c10758 First commit ymh parents: diff changeset	322	check_ajax_referer( "delete-meta_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	323	if ( !$meta = get_post_meta_by_id( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	324	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	325
0d28b7c10758 First commit ymh parents: diff changeset	326	if ( !current_user_can( 'edit_post', $meta->post_id ) )
0d28b7c10758 First commit ymh parents: diff changeset	327	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	328	if ( delete_meta( $meta->meta_id ) )
0d28b7c10758 First commit ymh parents: diff changeset	329	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	330	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	331	break;
0d28b7c10758 First commit ymh parents: diff changeset	332	case 'delete-post' :
0d28b7c10758 First commit ymh parents: diff changeset	333	check_ajax_referer( "{$action}_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	334	if ( !current_user_can( 'delete_post', $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	335	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	336
0d28b7c10758 First commit ymh parents: diff changeset	337	if ( !get_post( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	338	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	339
0d28b7c10758 First commit ymh parents: diff changeset	340	if ( wp_delete_post( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	341	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	342	else
0d28b7c10758 First commit ymh parents: diff changeset	343	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	344	break;
0d28b7c10758 First commit ymh parents: diff changeset	345	case 'trash-post' :
0d28b7c10758 First commit ymh parents: diff changeset	346	case 'untrash-post' :
0d28b7c10758 First commit ymh parents: diff changeset	347	check_ajax_referer( "{$action}_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	348	if ( !current_user_can( 'delete_post', $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	349	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	350
0d28b7c10758 First commit ymh parents: diff changeset	351	if ( !get_post( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	352	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	353
0d28b7c10758 First commit ymh parents: diff changeset	354	if ( 'trash-post' == $action )
0d28b7c10758 First commit ymh parents: diff changeset	355	$done = wp_trash_post( $id );
0d28b7c10758 First commit ymh parents: diff changeset	356	else
0d28b7c10758 First commit ymh parents: diff changeset	357	$done = wp_untrash_post( $id );
0d28b7c10758 First commit ymh parents: diff changeset	358
0d28b7c10758 First commit ymh parents: diff changeset	359	if ( $done )
0d28b7c10758 First commit ymh parents: diff changeset	360	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	361
0d28b7c10758 First commit ymh parents: diff changeset	362	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	363	break;
0d28b7c10758 First commit ymh parents: diff changeset	364	case 'delete-page' :
0d28b7c10758 First commit ymh parents: diff changeset	365	check_ajax_referer( "{$action}_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	366	if ( !current_user_can( 'delete_page', $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	367	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	368
0d28b7c10758 First commit ymh parents: diff changeset	369	if ( !get_page( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	370	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	371
0d28b7c10758 First commit ymh parents: diff changeset	372	if ( wp_delete_post( $id ) )
0d28b7c10758 First commit ymh parents: diff changeset	373	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	374	else
0d28b7c10758 First commit ymh parents: diff changeset	375	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	376	break;
0d28b7c10758 First commit ymh parents: diff changeset	377	case 'dim-comment' : // On success, die with time() instead of 1
0d28b7c10758 First commit ymh parents: diff changeset	378
0d28b7c10758 First commit ymh parents: diff changeset	379	if ( !$comment = get_comment( $id ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	380	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	381	'what' => 'comment',
0d28b7c10758 First commit ymh parents: diff changeset	382	'id' => new WP_Error('invalid_comment', sprintf(__('Comment %d does not exist'), $id))
0d28b7c10758 First commit ymh parents: diff changeset	383	) );
0d28b7c10758 First commit ymh parents: diff changeset	384	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	385	}
0d28b7c10758 First commit ymh parents: diff changeset	386
0d28b7c10758 First commit ymh parents: diff changeset	387	if ( !current_user_can( 'edit_post', $comment->comment_post_ID ) && !current_user_can( 'moderate_comments' ) )
0d28b7c10758 First commit ymh parents: diff changeset	388	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	389
0d28b7c10758 First commit ymh parents: diff changeset	390	$current = wp_get_comment_status( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	391	if ( $_POST['new'] == $current )
0d28b7c10758 First commit ymh parents: diff changeset	392	die( (string) time() );
0d28b7c10758 First commit ymh parents: diff changeset	393
0d28b7c10758 First commit ymh parents: diff changeset	394	check_ajax_referer( "approve-comment_$id" );
0d28b7c10758 First commit ymh parents: diff changeset	395	if ( in_array( $current, array( 'unapproved', 'spam' ) ) )
0d28b7c10758 First commit ymh parents: diff changeset	396	$result = wp_set_comment_status( $comment->comment_ID, 'approve', true );
0d28b7c10758 First commit ymh parents: diff changeset	397	else
0d28b7c10758 First commit ymh parents: diff changeset	398	$result = wp_set_comment_status( $comment->comment_ID, 'hold', true );
0d28b7c10758 First commit ymh parents: diff changeset	399
0d28b7c10758 First commit ymh parents: diff changeset	400	if ( is_wp_error($result) ) {
0d28b7c10758 First commit ymh parents: diff changeset	401	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	402	'what' => 'comment',
0d28b7c10758 First commit ymh parents: diff changeset	403	'id' => $result
0d28b7c10758 First commit ymh parents: diff changeset	404	) );
0d28b7c10758 First commit ymh parents: diff changeset	405	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	406	}
0d28b7c10758 First commit ymh parents: diff changeset	407
0d28b7c10758 First commit ymh parents: diff changeset	408	// Decide if we need to send back '1' or a more complicated response including page links and comment counts
0d28b7c10758 First commit ymh parents: diff changeset	409	_wp_ajax_delete_comment_response( $comment->comment_ID );
0d28b7c10758 First commit ymh parents: diff changeset	410	die( '0' );
0d28b7c10758 First commit ymh parents: diff changeset	411	break;
0d28b7c10758 First commit ymh parents: diff changeset	412	case 'add-category' : // On the Fly
0d28b7c10758 First commit ymh parents: diff changeset	413	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	414	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	415	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	416	$names = explode(',', $_POST['newcat']);
0d28b7c10758 First commit ymh parents: diff changeset	417	if ( 0 > $parent = (int) $_POST['newcat_parent'] )
0d28b7c10758 First commit ymh parents: diff changeset	418	$parent = 0;
0d28b7c10758 First commit ymh parents: diff changeset	419	$post_category = isset($_POST['post_category'])? (array) $_POST['post_category'] : array();
0d28b7c10758 First commit ymh parents: diff changeset	420	$checked_categories = array_map( 'absint', (array) $post_category );
0d28b7c10758 First commit ymh parents: diff changeset	421	$popular_ids = wp_popular_terms_checklist('category', 0, 10, false);
0d28b7c10758 First commit ymh parents: diff changeset	422
0d28b7c10758 First commit ymh parents: diff changeset	423	foreach ( $names as $cat_name ) {
0d28b7c10758 First commit ymh parents: diff changeset	424	$cat_name = trim($cat_name);
0d28b7c10758 First commit ymh parents: diff changeset	425	$category_nicename = sanitize_title($cat_name);
0d28b7c10758 First commit ymh parents: diff changeset	426	if ( '' === $category_nicename )
0d28b7c10758 First commit ymh parents: diff changeset	427	continue;
0d28b7c10758 First commit ymh parents: diff changeset	428	$cat_id = wp_create_category( $cat_name, $parent );
0d28b7c10758 First commit ymh parents: diff changeset	429	$checked_categories[] = $cat_id;
0d28b7c10758 First commit ymh parents: diff changeset	430	if ( $parent ) // Do these all at once in a second
0d28b7c10758 First commit ymh parents: diff changeset	431	continue;
0d28b7c10758 First commit ymh parents: diff changeset	432	$category = get_category( $cat_id );
0d28b7c10758 First commit ymh parents: diff changeset	433	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	434	wp_category_checklist( 0, $cat_id, $checked_categories, $popular_ids );
0d28b7c10758 First commit ymh parents: diff changeset	435	$data = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	436	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	437	$add = array(
0d28b7c10758 First commit ymh parents: diff changeset	438	'what' => 'category',
0d28b7c10758 First commit ymh parents: diff changeset	439	'id' => $cat_id,
0d28b7c10758 First commit ymh parents: diff changeset	440	'data' => str_replace( array("\n", "\t"), '', $data),
0d28b7c10758 First commit ymh parents: diff changeset	441	'position' => -1
0d28b7c10758 First commit ymh parents: diff changeset	442	);
0d28b7c10758 First commit ymh parents: diff changeset	443	}
0d28b7c10758 First commit ymh parents: diff changeset	444	if ( $parent ) { // Foncy - replace the parent and all its children
0d28b7c10758 First commit ymh parents: diff changeset	445	$parent = get_category( $parent );
0d28b7c10758 First commit ymh parents: diff changeset	446	$term_id = $parent->term_id;
0d28b7c10758 First commit ymh parents: diff changeset	447
0d28b7c10758 First commit ymh parents: diff changeset	448	while ( $parent->parent ) { // get the top parent
0d28b7c10758 First commit ymh parents: diff changeset	449	$parent = &get_category( $parent->parent );
0d28b7c10758 First commit ymh parents: diff changeset	450	if ( is_wp_error( $parent ) )
0d28b7c10758 First commit ymh parents: diff changeset	451	break;
0d28b7c10758 First commit ymh parents: diff changeset	452	$term_id = $parent->term_id;
0d28b7c10758 First commit ymh parents: diff changeset	453	}
0d28b7c10758 First commit ymh parents: diff changeset	454
0d28b7c10758 First commit ymh parents: diff changeset	455	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	456	wp_category_checklist( 0, $term_id, $checked_categories, $popular_ids, null, false );
0d28b7c10758 First commit ymh parents: diff changeset	457	$data = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	458	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	459	$add = array(
0d28b7c10758 First commit ymh parents: diff changeset	460	'what' => 'category',
0d28b7c10758 First commit ymh parents: diff changeset	461	'id' => $term_id,
0d28b7c10758 First commit ymh parents: diff changeset	462	'data' => str_replace( array("\n", "\t"), '', $data),
0d28b7c10758 First commit ymh parents: diff changeset	463	'position' => -1
0d28b7c10758 First commit ymh parents: diff changeset	464	);
0d28b7c10758 First commit ymh parents: diff changeset	465	}
0d28b7c10758 First commit ymh parents: diff changeset	466
0d28b7c10758 First commit ymh parents: diff changeset	467	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	468	wp_dropdown_categories( array( 'hide_empty' => 0, 'name' => 'newcat_parent', 'orderby' => 'name', 'hierarchical' => 1, 'show_option_none' => __('Parent category') ) );
0d28b7c10758 First commit ymh parents: diff changeset	469	$sup = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	470	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	471	$add['supplemental'] = array( 'newcat_parent' => $sup );
0d28b7c10758 First commit ymh parents: diff changeset	472
0d28b7c10758 First commit ymh parents: diff changeset	473	$x = new WP_Ajax_Response( $add );
0d28b7c10758 First commit ymh parents: diff changeset	474	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	475	break;
0d28b7c10758 First commit ymh parents: diff changeset	476	case 'add-link-category' : // On the Fly
0d28b7c10758 First commit ymh parents: diff changeset	477	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	478	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	479	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	480	$names = explode(',', $_POST['newcat']);
0d28b7c10758 First commit ymh parents: diff changeset	481	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	482	foreach ( $names as $cat_name ) {
0d28b7c10758 First commit ymh parents: diff changeset	483	$cat_name = trim($cat_name);
0d28b7c10758 First commit ymh parents: diff changeset	484	$slug = sanitize_title($cat_name);
0d28b7c10758 First commit ymh parents: diff changeset	485	if ( '' === $slug )
0d28b7c10758 First commit ymh parents: diff changeset	486	continue;
0d28b7c10758 First commit ymh parents: diff changeset	487	if ( !$cat_id = is_term( $cat_name, 'link_category' ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	488	$cat_id = wp_insert_term( $cat_name, 'link_category' );
0d28b7c10758 First commit ymh parents: diff changeset	489	}
0d28b7c10758 First commit ymh parents: diff changeset	490	$cat_id = $cat_id['term_id'];
0d28b7c10758 First commit ymh parents: diff changeset	491	$cat_name = esc_html(stripslashes($cat_name));
0d28b7c10758 First commit ymh parents: diff changeset	492	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	493	'what' => 'link-category',
0d28b7c10758 First commit ymh parents: diff changeset	494	'id' => $cat_id,
0d28b7c10758 First commit ymh parents: diff changeset	495	'data' => "<li id='link-category-$cat_id'><label for='in-link-category-$cat_id' class='selectit'><input value='" . esc_attr($cat_id) . "' type='checkbox' checked='checked' name='link_category[]' id='in-link-category-$cat_id'/> $cat_name</label></li>",
0d28b7c10758 First commit ymh parents: diff changeset	496	'position' => -1
0d28b7c10758 First commit ymh parents: diff changeset	497	) );
0d28b7c10758 First commit ymh parents: diff changeset	498	}
0d28b7c10758 First commit ymh parents: diff changeset	499	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	500	break;
0d28b7c10758 First commit ymh parents: diff changeset	501	case 'add-cat' : // From Manage->Categories
0d28b7c10758 First commit ymh parents: diff changeset	502	check_ajax_referer( 'add-category' );
0d28b7c10758 First commit ymh parents: diff changeset	503	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	504	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	505
0d28b7c10758 First commit ymh parents: diff changeset	506	if ( '' === trim($_POST['cat_name']) ) {
0d28b7c10758 First commit ymh parents: diff changeset	507	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	508	'what' => 'cat',
0d28b7c10758 First commit ymh parents: diff changeset	509	'id' => new WP_Error( 'cat_name', __('You did not enter a category name.') )
0d28b7c10758 First commit ymh parents: diff changeset	510	) );
0d28b7c10758 First commit ymh parents: diff changeset	511	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	512	}
0d28b7c10758 First commit ymh parents: diff changeset	513
0d28b7c10758 First commit ymh parents: diff changeset	514	if ( category_exists( trim( $_POST['cat_name'] ), $_POST['category_parent'] ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	515	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	516	'what' => 'cat',
0d28b7c10758 First commit ymh parents: diff changeset	517	'id' => new WP_Error( 'cat_exists', __('The category you are trying to create already exists.'), array( 'form-field' => 'cat_name' ) ),
0d28b7c10758 First commit ymh parents: diff changeset	518	) );
0d28b7c10758 First commit ymh parents: diff changeset	519	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	520	}
0d28b7c10758 First commit ymh parents: diff changeset	521
0d28b7c10758 First commit ymh parents: diff changeset	522	$cat = wp_insert_category( $_POST, true );
0d28b7c10758 First commit ymh parents: diff changeset	523
0d28b7c10758 First commit ymh parents: diff changeset	524	if ( is_wp_error($cat) ) {
0d28b7c10758 First commit ymh parents: diff changeset	525	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	526	'what' => 'cat',
0d28b7c10758 First commit ymh parents: diff changeset	527	'id' => $cat
0d28b7c10758 First commit ymh parents: diff changeset	528	) );
0d28b7c10758 First commit ymh parents: diff changeset	529	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	530	}
0d28b7c10758 First commit ymh parents: diff changeset	531
0d28b7c10758 First commit ymh parents: diff changeset	532	if ( !$cat \|\| (!$cat = get_category( $cat )) )
0d28b7c10758 First commit ymh parents: diff changeset	533	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	534
0d28b7c10758 First commit ymh parents: diff changeset	535	$level = 0;
0d28b7c10758 First commit ymh parents: diff changeset	536	$cat_full_name = $cat->name;
0d28b7c10758 First commit ymh parents: diff changeset	537	$_cat = $cat;
0d28b7c10758 First commit ymh parents: diff changeset	538	while ( $_cat->parent ) {
0d28b7c10758 First commit ymh parents: diff changeset	539	$_cat = get_category( $_cat->parent );
0d28b7c10758 First commit ymh parents: diff changeset	540	$cat_full_name = $_cat->name . ' — ' . $cat_full_name;
0d28b7c10758 First commit ymh parents: diff changeset	541	$level++;
0d28b7c10758 First commit ymh parents: diff changeset	542	}
0d28b7c10758 First commit ymh parents: diff changeset	543	$cat_full_name = esc_attr($cat_full_name);
0d28b7c10758 First commit ymh parents: diff changeset	544
0d28b7c10758 First commit ymh parents: diff changeset	545	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	546	'what' => 'cat',
0d28b7c10758 First commit ymh parents: diff changeset	547	'id' => $cat->term_id,
0d28b7c10758 First commit ymh parents: diff changeset	548	'position' => -1,
0d28b7c10758 First commit ymh parents: diff changeset	549	'data' => _cat_row( $cat, $level, $cat_full_name ),
0d28b7c10758 First commit ymh parents: diff changeset	550	'supplemental' => array('name' => $cat_full_name, 'show-link' => sprintf(__( 'Category <a href="#%s">%s</a> added' ), "cat-$cat->term_id", $cat_full_name))
0d28b7c10758 First commit ymh parents: diff changeset	551	) );
0d28b7c10758 First commit ymh parents: diff changeset	552	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	553	break;
0d28b7c10758 First commit ymh parents: diff changeset	554	case 'add-link-cat' : // From Blogroll -> Categories
0d28b7c10758 First commit ymh parents: diff changeset	555	check_ajax_referer( 'add-link-category' );
0d28b7c10758 First commit ymh parents: diff changeset	556	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	557	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	558
0d28b7c10758 First commit ymh parents: diff changeset	559	if ( '' === trim($_POST['name']) ) {
0d28b7c10758 First commit ymh parents: diff changeset	560	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	561	'what' => 'link-cat',
0d28b7c10758 First commit ymh parents: diff changeset	562	'id' => new WP_Error( 'name', __('You did not enter a category name.') )
0d28b7c10758 First commit ymh parents: diff changeset	563	) );
0d28b7c10758 First commit ymh parents: diff changeset	564	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	565	}
0d28b7c10758 First commit ymh parents: diff changeset	566
0d28b7c10758 First commit ymh parents: diff changeset	567	$r = wp_insert_term($_POST['name'], 'link_category', $_POST );
0d28b7c10758 First commit ymh parents: diff changeset	568	if ( is_wp_error( $r ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	569	$x = new WP_AJAX_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	570	'what' => 'link-cat',
0d28b7c10758 First commit ymh parents: diff changeset	571	'id' => $r
0d28b7c10758 First commit ymh parents: diff changeset	572	) );
0d28b7c10758 First commit ymh parents: diff changeset	573	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	574	}
0d28b7c10758 First commit ymh parents: diff changeset	575
0d28b7c10758 First commit ymh parents: diff changeset	576	extract($r, EXTR_SKIP);
0d28b7c10758 First commit ymh parents: diff changeset	577
0d28b7c10758 First commit ymh parents: diff changeset	578	if ( !$link_cat = link_cat_row( $term_id ) )
0d28b7c10758 First commit ymh parents: diff changeset	579	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	580
0d28b7c10758 First commit ymh parents: diff changeset	581	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	582	'what' => 'link-cat',
0d28b7c10758 First commit ymh parents: diff changeset	583	'id' => $term_id,
0d28b7c10758 First commit ymh parents: diff changeset	584	'position' => -1,
0d28b7c10758 First commit ymh parents: diff changeset	585	'data' => $link_cat
0d28b7c10758 First commit ymh parents: diff changeset	586	) );
0d28b7c10758 First commit ymh parents: diff changeset	587	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	588	break;
0d28b7c10758 First commit ymh parents: diff changeset	589	case 'add-tag' : // From Manage->Tags
0d28b7c10758 First commit ymh parents: diff changeset	590	check_ajax_referer( 'add-tag' );
0d28b7c10758 First commit ymh parents: diff changeset	591	if ( !current_user_can( 'manage_categories' ) )
0d28b7c10758 First commit ymh parents: diff changeset	592	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	593
0d28b7c10758 First commit ymh parents: diff changeset	594	$taxonomy = !empty($_POST['taxonomy']) ? $_POST['taxonomy'] : 'post_tag';
0d28b7c10758 First commit ymh parents: diff changeset	595	$tag = wp_insert_term($_POST['tag-name'], $taxonomy, $_POST );
0d28b7c10758 First commit ymh parents: diff changeset	596
0d28b7c10758 First commit ymh parents: diff changeset	597	if ( !$tag \|\| is_wp_error($tag) \|\| (!$tag = get_term( $tag['term_id'], $taxonomy )) ) {
0d28b7c10758 First commit ymh parents: diff changeset	598	echo '<div class="error"><p>' . __('An error has occured. Please reload the page and try again.') . '</p></div>';
0d28b7c10758 First commit ymh parents: diff changeset	599	exit;
0d28b7c10758 First commit ymh parents: diff changeset	600	}
0d28b7c10758 First commit ymh parents: diff changeset	601
0d28b7c10758 First commit ymh parents: diff changeset	602	echo _tag_row( $tag, '', $taxonomy );
0d28b7c10758 First commit ymh parents: diff changeset	603	exit;
0d28b7c10758 First commit ymh parents: diff changeset	604	break;
0d28b7c10758 First commit ymh parents: diff changeset	605	case 'get-tagcloud' :
0d28b7c10758 First commit ymh parents: diff changeset	606	if ( !current_user_can( 'edit_posts' ) )
0d28b7c10758 First commit ymh parents: diff changeset	607	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	608
0d28b7c10758 First commit ymh parents: diff changeset	609	if ( isset($_POST['tax']) )
0d28b7c10758 First commit ymh parents: diff changeset	610	$taxonomy = sanitize_title($_POST['tax']);
0d28b7c10758 First commit ymh parents: diff changeset	611	else
0d28b7c10758 First commit ymh parents: diff changeset	612	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	613
0d28b7c10758 First commit ymh parents: diff changeset	614	$tags = get_terms( $taxonomy, array( 'number' => 45, 'orderby' => 'count', 'order' => 'DESC' ) );
0d28b7c10758 First commit ymh parents: diff changeset	615
0d28b7c10758 First commit ymh parents: diff changeset	616	if ( empty( $tags ) )
0d28b7c10758 First commit ymh parents: diff changeset	617	die( __('No tags found!') );
0d28b7c10758 First commit ymh parents: diff changeset	618
0d28b7c10758 First commit ymh parents: diff changeset	619	if ( is_wp_error($tags) )
0d28b7c10758 First commit ymh parents: diff changeset	620	die($tags->get_error_message());
0d28b7c10758 First commit ymh parents: diff changeset	621
0d28b7c10758 First commit ymh parents: diff changeset	622	foreach ( $tags as $key => $tag ) {
0d28b7c10758 First commit ymh parents: diff changeset	623	$tags[ $key ]->link = '#';
0d28b7c10758 First commit ymh parents: diff changeset	624	$tags[ $key ]->id = $tag->term_id;
0d28b7c10758 First commit ymh parents: diff changeset	625	}
0d28b7c10758 First commit ymh parents: diff changeset	626
0d28b7c10758 First commit ymh parents: diff changeset	627	// We need raw tag names here, so don't filter the output
0d28b7c10758 First commit ymh parents: diff changeset	628	$return = wp_generate_tag_cloud( $tags, array('filter' => 0) );
0d28b7c10758 First commit ymh parents: diff changeset	629
0d28b7c10758 First commit ymh parents: diff changeset	630	if ( empty($return) )
0d28b7c10758 First commit ymh parents: diff changeset	631	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	632
0d28b7c10758 First commit ymh parents: diff changeset	633	echo $return;
0d28b7c10758 First commit ymh parents: diff changeset	634
0d28b7c10758 First commit ymh parents: diff changeset	635	exit;
0d28b7c10758 First commit ymh parents: diff changeset	636	break;
0d28b7c10758 First commit ymh parents: diff changeset	637	case 'add-comment' :
0d28b7c10758 First commit ymh parents: diff changeset	638	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	639	if ( !current_user_can( 'edit_posts' ) )
0d28b7c10758 First commit ymh parents: diff changeset	640	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	641	$search = isset($_POST['s']) ? $_POST['s'] : false;
0d28b7c10758 First commit ymh parents: diff changeset	642	$status = isset($_POST['comment_status']) ? $_POST['comment_status'] : 'all';
0d28b7c10758 First commit ymh parents: diff changeset	643	$per_page = isset($_POST['per_page']) ? (int) $_POST['per_page'] + 8 : 28;
0d28b7c10758 First commit ymh parents: diff changeset	644	$start = isset($_POST['page']) ? ( intval($_POST['page']) * $per_page ) -1 : $per_page - 1;
0d28b7c10758 First commit ymh parents: diff changeset	645	if ( 1 > $start )
0d28b7c10758 First commit ymh parents: diff changeset	646	$start = 27;
0d28b7c10758 First commit ymh parents: diff changeset	647
0d28b7c10758 First commit ymh parents: diff changeset	648	$mode = isset($_POST['mode']) ? $_POST['mode'] : 'detail';
0d28b7c10758 First commit ymh parents: diff changeset	649	$p = isset($_POST['p']) ? $_POST['p'] : 0;
0d28b7c10758 First commit ymh parents: diff changeset	650	$comment_type = isset($_POST['comment_type']) ? $_POST['comment_type'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	651	list($comments, $total) = _wp_get_comment_list( $status, $search, $start, 1, $p, $comment_type );
0d28b7c10758 First commit ymh parents: diff changeset	652
0d28b7c10758 First commit ymh parents: diff changeset	653	if ( get_option('show_avatars') )
0d28b7c10758 First commit ymh parents: diff changeset	654	add_filter( 'comment_author', 'floated_admin_avatar' );
0d28b7c10758 First commit ymh parents: diff changeset	655
0d28b7c10758 First commit ymh parents: diff changeset	656	if ( !$comments )
0d28b7c10758 First commit ymh parents: diff changeset	657	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	658	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	659	foreach ( (array) $comments as $comment ) {
0d28b7c10758 First commit ymh parents: diff changeset	660	get_comment( $comment );
0d28b7c10758 First commit ymh parents: diff changeset	661	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	662	_wp_comment_row( $comment->comment_ID, $mode, $status, true, true );
0d28b7c10758 First commit ymh parents: diff changeset	663	$comment_list_item = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	664	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	665	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	666	'what' => 'comment',
0d28b7c10758 First commit ymh parents: diff changeset	667	'id' => $comment->comment_ID,
0d28b7c10758 First commit ymh parents: diff changeset	668	'data' => $comment_list_item
0d28b7c10758 First commit ymh parents: diff changeset	669	) );
0d28b7c10758 First commit ymh parents: diff changeset	670	}
0d28b7c10758 First commit ymh parents: diff changeset	671	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	672	break;
0d28b7c10758 First commit ymh parents: diff changeset	673	case 'get-comments' :
0d28b7c10758 First commit ymh parents: diff changeset	674	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	675
0d28b7c10758 First commit ymh parents: diff changeset	676	$post_ID = (int) $_POST['post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	677	if ( !current_user_can( 'edit_post', $post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	678	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	679
0d28b7c10758 First commit ymh parents: diff changeset	680	$start = isset($_POST['start']) ? intval($_POST['start']) : 0;
0d28b7c10758 First commit ymh parents: diff changeset	681	$num = isset($_POST['num']) ? intval($_POST['num']) : 10;
0d28b7c10758 First commit ymh parents: diff changeset	682
0d28b7c10758 First commit ymh parents: diff changeset	683	list($comments, $total) = _wp_get_comment_list( false, false, $start, $num, $post_ID );
0d28b7c10758 First commit ymh parents: diff changeset	684
0d28b7c10758 First commit ymh parents: diff changeset	685	if ( !$comments )
0d28b7c10758 First commit ymh parents: diff changeset	686	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	687
0d28b7c10758 First commit ymh parents: diff changeset	688	$comment_list_item = '';
0d28b7c10758 First commit ymh parents: diff changeset	689	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	690	foreach ( (array) $comments as $comment ) {
0d28b7c10758 First commit ymh parents: diff changeset	691	get_comment( $comment );
0d28b7c10758 First commit ymh parents: diff changeset	692	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	693	_wp_comment_row( $comment->comment_ID, 'single', false, false );
0d28b7c10758 First commit ymh parents: diff changeset	694	$comment_list_item .= ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	695	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	696	}
0d28b7c10758 First commit ymh parents: diff changeset	697	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	698	'what' => 'comments',
0d28b7c10758 First commit ymh parents: diff changeset	699	'data' => $comment_list_item
0d28b7c10758 First commit ymh parents: diff changeset	700	) );
0d28b7c10758 First commit ymh parents: diff changeset	701	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	702	break;
0d28b7c10758 First commit ymh parents: diff changeset	703	case 'replyto-comment' :
0d28b7c10758 First commit ymh parents: diff changeset	704	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	705
0d28b7c10758 First commit ymh parents: diff changeset	706	$comment_post_ID = (int) $_POST['comment_post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	707	if ( !current_user_can( 'edit_post', $comment_post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	708	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	709
0d28b7c10758 First commit ymh parents: diff changeset	710	$status = $wpdb->get_var( $wpdb->prepare("SELECT post_status FROM $wpdb->posts WHERE ID = %d", $comment_post_ID) );
0d28b7c10758 First commit ymh parents: diff changeset	711
0d28b7c10758 First commit ymh parents: diff changeset	712	if ( empty($status) )
0d28b7c10758 First commit ymh parents: diff changeset	713	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	714	elseif ( in_array($status, array('draft', 'pending', 'trash') ) )
0d28b7c10758 First commit ymh parents: diff changeset	715	die( __('Error: you are replying to a comment on a draft post.') );
0d28b7c10758 First commit ymh parents: diff changeset	716
0d28b7c10758 First commit ymh parents: diff changeset	717	$user = wp_get_current_user();
0d28b7c10758 First commit ymh parents: diff changeset	718	if ( $user->ID ) {
0d28b7c10758 First commit ymh parents: diff changeset	719	$comment_author = $wpdb->escape($user->display_name);
0d28b7c10758 First commit ymh parents: diff changeset	720	$comment_author_email = $wpdb->escape($user->user_email);
0d28b7c10758 First commit ymh parents: diff changeset	721	$comment_author_url = $wpdb->escape($user->user_url);
0d28b7c10758 First commit ymh parents: diff changeset	722	$comment_content = trim($_POST['content']);
0d28b7c10758 First commit ymh parents: diff changeset	723	if ( current_user_can('unfiltered_html') ) {
0d28b7c10758 First commit ymh parents: diff changeset	724	if ( wp_create_nonce('unfiltered-html-comment_' . $comment_post_ID) != $_POST['_wp_unfiltered_html_comment'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	725	kses_remove_filters(); // start with a clean slate
0d28b7c10758 First commit ymh parents: diff changeset	726	kses_init_filters(); // set up the filters
0d28b7c10758 First commit ymh parents: diff changeset	727	}
0d28b7c10758 First commit ymh parents: diff changeset	728	}
0d28b7c10758 First commit ymh parents: diff changeset	729	} else {
0d28b7c10758 First commit ymh parents: diff changeset	730	die( __('Sorry, you must be logged in to reply to a comment.') );
0d28b7c10758 First commit ymh parents: diff changeset	731	}
0d28b7c10758 First commit ymh parents: diff changeset	732
0d28b7c10758 First commit ymh parents: diff changeset	733	if ( '' == $comment_content )
0d28b7c10758 First commit ymh parents: diff changeset	734	die( __('Error: please type a comment.') );
0d28b7c10758 First commit ymh parents: diff changeset	735
0d28b7c10758 First commit ymh parents: diff changeset	736	$comment_parent = absint($_POST['comment_ID']);
0d28b7c10758 First commit ymh parents: diff changeset	737	$commentdata = compact('comment_post_ID', 'comment_author', 'comment_author_email', 'comment_author_url', 'comment_content', 'comment_type', 'comment_parent', 'user_ID');
0d28b7c10758 First commit ymh parents: diff changeset	738
0d28b7c10758 First commit ymh parents: diff changeset	739	$comment_id = wp_new_comment( $commentdata );
0d28b7c10758 First commit ymh parents: diff changeset	740	$comment = get_comment($comment_id);
0d28b7c10758 First commit ymh parents: diff changeset	741	if ( ! $comment ) die('1');
0d28b7c10758 First commit ymh parents: diff changeset	742
0d28b7c10758 First commit ymh parents: diff changeset	743	$modes = array( 'single', 'detail', 'dashboard' );
0d28b7c10758 First commit ymh parents: diff changeset	744	$mode = isset($_POST['mode']) && in_array( $_POST['mode'], $modes ) ? $_POST['mode'] : 'detail';
0d28b7c10758 First commit ymh parents: diff changeset	745	$position = ( isset($_POST['position']) && (int) $_POST['position']) ? (int) $_POST['position'] : '-1';
0d28b7c10758 First commit ymh parents: diff changeset	746	$checkbox = ( isset($_POST['checkbox']) && true == $_POST['checkbox'] ) ? 1 : 0;
0d28b7c10758 First commit ymh parents: diff changeset	747
0d28b7c10758 First commit ymh parents: diff changeset	748	if ( get_option('show_avatars') && 'single' != $mode )
0d28b7c10758 First commit ymh parents: diff changeset	749	add_filter( 'comment_author', 'floated_admin_avatar' );
0d28b7c10758 First commit ymh parents: diff changeset	750
0d28b7c10758 First commit ymh parents: diff changeset	751	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	752
0d28b7c10758 First commit ymh parents: diff changeset	753	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	754	if ( 'dashboard' == $mode ) {
0d28b7c10758 First commit ymh parents: diff changeset	755	require_once( ABSPATH . 'wp-admin/includes/dashboard.php' );
0d28b7c10758 First commit ymh parents: diff changeset	756	_wp_dashboard_recent_comments_row( $comment, false );
0d28b7c10758 First commit ymh parents: diff changeset	757	} else {
0d28b7c10758 First commit ymh parents: diff changeset	758	_wp_comment_row( $comment->comment_ID, $mode, false, $checkbox );
0d28b7c10758 First commit ymh parents: diff changeset	759	}
0d28b7c10758 First commit ymh parents: diff changeset	760	$comment_list_item = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	761	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	762
0d28b7c10758 First commit ymh parents: diff changeset	763	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	764	'what' => 'comment',
0d28b7c10758 First commit ymh parents: diff changeset	765	'id' => $comment->comment_ID,
0d28b7c10758 First commit ymh parents: diff changeset	766	'data' => $comment_list_item,
0d28b7c10758 First commit ymh parents: diff changeset	767	'position' => $position
0d28b7c10758 First commit ymh parents: diff changeset	768	));
0d28b7c10758 First commit ymh parents: diff changeset	769
0d28b7c10758 First commit ymh parents: diff changeset	770	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	771	break;
0d28b7c10758 First commit ymh parents: diff changeset	772	case 'edit-comment' :
0d28b7c10758 First commit ymh parents: diff changeset	773	check_ajax_referer( 'replyto-comment' );
0d28b7c10758 First commit ymh parents: diff changeset	774
0d28b7c10758 First commit ymh parents: diff changeset	775	$comment_post_ID = (int) $_POST['comment_post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	776	if ( ! current_user_can( 'edit_post', $comment_post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	777	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	778
0d28b7c10758 First commit ymh parents: diff changeset	779	if ( '' == $_POST['content'] )
0d28b7c10758 First commit ymh parents: diff changeset	780	die( __('Error: please type a comment.') );
0d28b7c10758 First commit ymh parents: diff changeset	781
0d28b7c10758 First commit ymh parents: diff changeset	782	$comment_id = (int) $_POST['comment_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	783	$_POST['comment_status'] = $_POST['status'];
0d28b7c10758 First commit ymh parents: diff changeset	784	edit_comment();
0d28b7c10758 First commit ymh parents: diff changeset	785
0d28b7c10758 First commit ymh parents: diff changeset	786	$mode = ( isset($_POST['mode']) && 'single' == $_POST['mode'] ) ? 'single' : 'detail';
0d28b7c10758 First commit ymh parents: diff changeset	787	$position = ( isset($_POST['position']) && (int) $_POST['position']) ? (int) $_POST['position'] : '-1';
0d28b7c10758 First commit ymh parents: diff changeset	788	$checkbox = ( isset($_POST['checkbox']) && true == $_POST['checkbox'] ) ? 1 : 0;
0d28b7c10758 First commit ymh parents: diff changeset	789	$comments_listing = isset($_POST['comments_listing']) ? $_POST['comments_listing'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	790
0d28b7c10758 First commit ymh parents: diff changeset	791	if ( get_option('show_avatars') && 'single' != $mode )
0d28b7c10758 First commit ymh parents: diff changeset	792	add_filter( 'comment_author', 'floated_admin_avatar' );
0d28b7c10758 First commit ymh parents: diff changeset	793
0d28b7c10758 First commit ymh parents: diff changeset	794	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	795
0d28b7c10758 First commit ymh parents: diff changeset	796	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	797	_wp_comment_row( $comment_id, $mode, $comments_listing, $checkbox );
0d28b7c10758 First commit ymh parents: diff changeset	798	$comment_list_item = ob_get_contents();
0d28b7c10758 First commit ymh parents: diff changeset	799	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	800
0d28b7c10758 First commit ymh parents: diff changeset	801	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	802	'what' => 'edit_comment',
0d28b7c10758 First commit ymh parents: diff changeset	803	'id' => $comment->comment_ID,
0d28b7c10758 First commit ymh parents: diff changeset	804	'data' => $comment_list_item,
0d28b7c10758 First commit ymh parents: diff changeset	805	'position' => $position
0d28b7c10758 First commit ymh parents: diff changeset	806	));
0d28b7c10758 First commit ymh parents: diff changeset	807
0d28b7c10758 First commit ymh parents: diff changeset	808	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	809	break;
0d28b7c10758 First commit ymh parents: diff changeset	810	case 'add-meta' :
0d28b7c10758 First commit ymh parents: diff changeset	811	check_ajax_referer( 'add-meta' );
0d28b7c10758 First commit ymh parents: diff changeset	812	$c = 0;
0d28b7c10758 First commit ymh parents: diff changeset	813	$pid = (int) $_POST['post_id'];
0d28b7c10758 First commit ymh parents: diff changeset	814	if ( isset($_POST['metakeyselect']) \|\| isset($_POST['metakeyinput']) ) {
0d28b7c10758 First commit ymh parents: diff changeset	815	if ( !current_user_can( 'edit_post', $pid ) )
0d28b7c10758 First commit ymh parents: diff changeset	816	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	817	if ( isset($_POST['metakeyselect']) && '#NONE#' == $_POST['metakeyselect'] && empty($_POST['metakeyinput']) )
0d28b7c10758 First commit ymh parents: diff changeset	818	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	819	if ( $pid < 0 ) {
0d28b7c10758 First commit ymh parents: diff changeset	820	$now = current_time('timestamp', 1);
0d28b7c10758 First commit ymh parents: diff changeset	821	if ( $pid = wp_insert_post( array(
0d28b7c10758 First commit ymh parents: diff changeset	822	'post_title' => sprintf('Draft created on %s at %s', date(get_option('date_format'), $now), date(get_option('time_format'), $now))
0d28b7c10758 First commit ymh parents: diff changeset	823	) ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	824	if ( is_wp_error( $pid ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	825	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	826	'what' => 'meta',
0d28b7c10758 First commit ymh parents: diff changeset	827	'data' => $pid
0d28b7c10758 First commit ymh parents: diff changeset	828	) );
0d28b7c10758 First commit ymh parents: diff changeset	829	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	830	}
0d28b7c10758 First commit ymh parents: diff changeset	831	if ( !$mid = add_meta( $pid ) )
0d28b7c10758 First commit ymh parents: diff changeset	832	die(__('Please provide a custom field value.'));
0d28b7c10758 First commit ymh parents: diff changeset	833	} else {
0d28b7c10758 First commit ymh parents: diff changeset	834	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	835	}
0d28b7c10758 First commit ymh parents: diff changeset	836	} else if ( !$mid = add_meta( $pid ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	837	die(__('Please provide a custom field value.'));
0d28b7c10758 First commit ymh parents: diff changeset	838	}
0d28b7c10758 First commit ymh parents: diff changeset	839
0d28b7c10758 First commit ymh parents: diff changeset	840	$meta = get_post_meta_by_id( $mid );
0d28b7c10758 First commit ymh parents: diff changeset	841	$pid = (int) $meta->post_id;
0d28b7c10758 First commit ymh parents: diff changeset	842	$meta = get_object_vars( $meta );
0d28b7c10758 First commit ymh parents: diff changeset	843	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	844	'what' => 'meta',
0d28b7c10758 First commit ymh parents: diff changeset	845	'id' => $mid,
0d28b7c10758 First commit ymh parents: diff changeset	846	'data' => _list_meta_row( $meta, $c ),
0d28b7c10758 First commit ymh parents: diff changeset	847	'position' => 1,
0d28b7c10758 First commit ymh parents: diff changeset	848	'supplemental' => array('postid' => $pid)
0d28b7c10758 First commit ymh parents: diff changeset	849	) );
0d28b7c10758 First commit ymh parents: diff changeset	850	} else {
0d28b7c10758 First commit ymh parents: diff changeset	851	$mid = (int) array_pop(array_keys($_POST['meta']));
0d28b7c10758 First commit ymh parents: diff changeset	852	$key = $_POST['meta'][$mid]['key'];
0d28b7c10758 First commit ymh parents: diff changeset	853	$value = $_POST['meta'][$mid]['value'];
0d28b7c10758 First commit ymh parents: diff changeset	854	if ( !$meta = get_post_meta_by_id( $mid ) )
0d28b7c10758 First commit ymh parents: diff changeset	855	die('0'); // if meta doesn't exist
0d28b7c10758 First commit ymh parents: diff changeset	856	if ( !current_user_can( 'edit_post', $meta->post_id ) )
0d28b7c10758 First commit ymh parents: diff changeset	857	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	858	if ( $meta->meta_value != stripslashes($value) ) {
0d28b7c10758 First commit ymh parents: diff changeset	859	if ( !$u = update_meta( $mid, $key, $value ) )
0d28b7c10758 First commit ymh parents: diff changeset	860	die('0'); // We know meta exists; we also know it's unchanged (or DB error, in which case there are bigger problems).
0d28b7c10758 First commit ymh parents: diff changeset	861	}
0d28b7c10758 First commit ymh parents: diff changeset	862
0d28b7c10758 First commit ymh parents: diff changeset	863	$key = stripslashes($key);
0d28b7c10758 First commit ymh parents: diff changeset	864	$value = stripslashes($value);
0d28b7c10758 First commit ymh parents: diff changeset	865	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	866	'what' => 'meta',
0d28b7c10758 First commit ymh parents: diff changeset	867	'id' => $mid, 'old_id' => $mid,
0d28b7c10758 First commit ymh parents: diff changeset	868	'data' => _list_meta_row( array(
0d28b7c10758 First commit ymh parents: diff changeset	869	'meta_key' => $key,
0d28b7c10758 First commit ymh parents: diff changeset	870	'meta_value' => $value,
0d28b7c10758 First commit ymh parents: diff changeset	871	'meta_id' => $mid
0d28b7c10758 First commit ymh parents: diff changeset	872	), $c ),
0d28b7c10758 First commit ymh parents: diff changeset	873	'position' => 0,
0d28b7c10758 First commit ymh parents: diff changeset	874	'supplemental' => array('postid' => $meta->post_id)
0d28b7c10758 First commit ymh parents: diff changeset	875	) );
0d28b7c10758 First commit ymh parents: diff changeset	876	}
0d28b7c10758 First commit ymh parents: diff changeset	877	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	878	break;
0d28b7c10758 First commit ymh parents: diff changeset	879	case 'add-user' :
0d28b7c10758 First commit ymh parents: diff changeset	880	check_ajax_referer( $action );
0d28b7c10758 First commit ymh parents: diff changeset	881	if ( !current_user_can('create_users') )
0d28b7c10758 First commit ymh parents: diff changeset	882	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	883	require_once(ABSPATH . WPINC . '/registration.php');
0d28b7c10758 First commit ymh parents: diff changeset	884	if ( !$user_id = add_user() )
0d28b7c10758 First commit ymh parents: diff changeset	885	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	886	elseif ( is_wp_error( $user_id ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	887	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	888	'what' => 'user',
0d28b7c10758 First commit ymh parents: diff changeset	889	'id' => $user_id
0d28b7c10758 First commit ymh parents: diff changeset	890	) );
0d28b7c10758 First commit ymh parents: diff changeset	891	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	892	}
0d28b7c10758 First commit ymh parents: diff changeset	893	$user_object = new WP_User( $user_id );
0d28b7c10758 First commit ymh parents: diff changeset	894
0d28b7c10758 First commit ymh parents: diff changeset	895	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	896	'what' => 'user',
0d28b7c10758 First commit ymh parents: diff changeset	897	'id' => $user_id,
0d28b7c10758 First commit ymh parents: diff changeset	898	'data' => user_row( $user_object, '', $user_object->roles[0] ),
0d28b7c10758 First commit ymh parents: diff changeset	899	'supplemental' => array(
0d28b7c10758 First commit ymh parents: diff changeset	900	'show-link' => sprintf(__( 'User <a href="#%s">%s</a> added' ), "user-$user_id", $user_object->user_login),
0d28b7c10758 First commit ymh parents: diff changeset	901	'role' => $user_object->roles[0]
0d28b7c10758 First commit ymh parents: diff changeset	902	)
0d28b7c10758 First commit ymh parents: diff changeset	903	) );
0d28b7c10758 First commit ymh parents: diff changeset	904	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	905	break;
0d28b7c10758 First commit ymh parents: diff changeset	906	case 'autosave' : // The name of this action is hardcoded in edit_post()
0d28b7c10758 First commit ymh parents: diff changeset	907	define( 'DOING_AUTOSAVE', true );
0d28b7c10758 First commit ymh parents: diff changeset	908
0d28b7c10758 First commit ymh parents: diff changeset	909	$nonce_age = check_ajax_referer( 'autosave', 'autosavenonce' );
0d28b7c10758 First commit ymh parents: diff changeset	910	global $current_user;
0d28b7c10758 First commit ymh parents: diff changeset	911
0d28b7c10758 First commit ymh parents: diff changeset	912	$_POST['post_category'] = explode(",", $_POST['catslist']);
0d28b7c10758 First commit ymh parents: diff changeset	913	if($_POST['post_type'] == 'page' \|\| empty($_POST['post_category']))
0d28b7c10758 First commit ymh parents: diff changeset	914	unset($_POST['post_category']);
0d28b7c10758 First commit ymh parents: diff changeset	915
0d28b7c10758 First commit ymh parents: diff changeset	916	$do_autosave = (bool) $_POST['autosave'];
0d28b7c10758 First commit ymh parents: diff changeset	917	$do_lock = true;
0d28b7c10758 First commit ymh parents: diff changeset	918
0d28b7c10758 First commit ymh parents: diff changeset	919	$data = '';
0d28b7c10758 First commit ymh parents: diff changeset	920	/* translators: draft saved date format, see http://php.net/date */
0d28b7c10758 First commit ymh parents: diff changeset	921	$draft_saved_date_format = __('g:i:s a');
0d28b7c10758 First commit ymh parents: diff changeset	922	$message = sprintf( __('Draft Saved at %s.'), date_i18n( $draft_saved_date_format ) );
0d28b7c10758 First commit ymh parents: diff changeset	923
0d28b7c10758 First commit ymh parents: diff changeset	924	$supplemental = array();
0d28b7c10758 First commit ymh parents: diff changeset	925	if ( isset($login_grace_period) )
0d28b7c10758 First commit ymh parents: diff changeset	926	$supplemental['session_expired'] = add_query_arg( 'interim-login', 1, wp_login_url() );
0d28b7c10758 First commit ymh parents: diff changeset	927
0d28b7c10758 First commit ymh parents: diff changeset	928	$id = $revision_id = 0;
0d28b7c10758 First commit ymh parents: diff changeset	929	if($_POST['post_ID'] < 0) {
0d28b7c10758 First commit ymh parents: diff changeset	930	$_POST['post_status'] = 'draft';
0d28b7c10758 First commit ymh parents: diff changeset	931	$_POST['temp_ID'] = $_POST['post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	932	if ( $do_autosave ) {
0d28b7c10758 First commit ymh parents: diff changeset	933	$id = wp_write_post();
0d28b7c10758 First commit ymh parents: diff changeset	934	$data = $message;
0d28b7c10758 First commit ymh parents: diff changeset	935	}
0d28b7c10758 First commit ymh parents: diff changeset	936	} else {
0d28b7c10758 First commit ymh parents: diff changeset	937	$post_ID = (int) $_POST['post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	938	$_POST['ID'] = $post_ID;
0d28b7c10758 First commit ymh parents: diff changeset	939	$post = get_post($post_ID);
0d28b7c10758 First commit ymh parents: diff changeset	940
0d28b7c10758 First commit ymh parents: diff changeset	941	if ( $last = wp_check_post_lock( $post->ID ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	942	$do_autosave = $do_lock = false;
0d28b7c10758 First commit ymh parents: diff changeset	943
0d28b7c10758 First commit ymh parents: diff changeset	944	$last_user = get_userdata( $last );
0d28b7c10758 First commit ymh parents: diff changeset	945	$last_user_name = $last_user ? $last_user->display_name : __( 'Someone' );
0d28b7c10758 First commit ymh parents: diff changeset	946	$data = new WP_Error( 'locked', sprintf(
0d28b7c10758 First commit ymh parents: diff changeset	947	$_POST['post_type'] == 'page' ? __( 'Autosave disabled: %s is currently editing this page.' ) : __( 'Autosave disabled: %s is currently editing this post.' ),
0d28b7c10758 First commit ymh parents: diff changeset	948	esc_html( $last_user_name )
0d28b7c10758 First commit ymh parents: diff changeset	949	) );
0d28b7c10758 First commit ymh parents: diff changeset	950
0d28b7c10758 First commit ymh parents: diff changeset	951	$supplemental['disable_autosave'] = 'disable';
0d28b7c10758 First commit ymh parents: diff changeset	952	}
0d28b7c10758 First commit ymh parents: diff changeset	953
0d28b7c10758 First commit ymh parents: diff changeset	954	if ( 'page' == $post->post_type ) {
0d28b7c10758 First commit ymh parents: diff changeset	955	if ( !current_user_can('edit_page', $post_ID) )
0d28b7c10758 First commit ymh parents: diff changeset	956	die(__('You are not allowed to edit this page.'));
0d28b7c10758 First commit ymh parents: diff changeset	957	} else {
0d28b7c10758 First commit ymh parents: diff changeset	958	if ( !current_user_can('edit_post', $post_ID) )
0d28b7c10758 First commit ymh parents: diff changeset	959	die(__('You are not allowed to edit this post.'));
0d28b7c10758 First commit ymh parents: diff changeset	960	}
0d28b7c10758 First commit ymh parents: diff changeset	961
0d28b7c10758 First commit ymh parents: diff changeset	962	if ( $do_autosave ) {
0d28b7c10758 First commit ymh parents: diff changeset	963	// Drafts are just overwritten by autosave
0d28b7c10758 First commit ymh parents: diff changeset	964	if ( 'draft' == $post->post_status ) {
0d28b7c10758 First commit ymh parents: diff changeset	965	$id = edit_post();
0d28b7c10758 First commit ymh parents: diff changeset	966	} else { // Non drafts are not overwritten. The autosave is stored in a special post revision.
0d28b7c10758 First commit ymh parents: diff changeset	967	$revision_id = wp_create_post_autosave( $post->ID );
0d28b7c10758 First commit ymh parents: diff changeset	968	if ( is_wp_error($revision_id) )
0d28b7c10758 First commit ymh parents: diff changeset	969	$id = $revision_id;
0d28b7c10758 First commit ymh parents: diff changeset	970	else
0d28b7c10758 First commit ymh parents: diff changeset	971	$id = $post->ID;
0d28b7c10758 First commit ymh parents: diff changeset	972	}
0d28b7c10758 First commit ymh parents: diff changeset	973	$data = $message;
0d28b7c10758 First commit ymh parents: diff changeset	974	} else {
0d28b7c10758 First commit ymh parents: diff changeset	975	$id = $post->ID;
0d28b7c10758 First commit ymh parents: diff changeset	976	}
0d28b7c10758 First commit ymh parents: diff changeset	977	}
0d28b7c10758 First commit ymh parents: diff changeset	978
0d28b7c10758 First commit ymh parents: diff changeset	979	if ( $do_lock && $id && is_numeric($id) )
0d28b7c10758 First commit ymh parents: diff changeset	980	wp_set_post_lock( $id );
0d28b7c10758 First commit ymh parents: diff changeset	981
0d28b7c10758 First commit ymh parents: diff changeset	982	if ( $nonce_age == 2 ) {
0d28b7c10758 First commit ymh parents: diff changeset	983	$supplemental['replace-autosavenonce'] = wp_create_nonce('autosave');
0d28b7c10758 First commit ymh parents: diff changeset	984	$supplemental['replace-getpermalinknonce'] = wp_create_nonce('getpermalink');
0d28b7c10758 First commit ymh parents: diff changeset	985	$supplemental['replace-samplepermalinknonce'] = wp_create_nonce('samplepermalink');
0d28b7c10758 First commit ymh parents: diff changeset	986	$supplemental['replace-closedpostboxesnonce'] = wp_create_nonce('closedpostboxes');
0d28b7c10758 First commit ymh parents: diff changeset	987	if ( $id ) {
0d28b7c10758 First commit ymh parents: diff changeset	988	if ( $_POST['post_type'] == 'post' )
0d28b7c10758 First commit ymh parents: diff changeset	989	$supplemental['replace-_wpnonce'] = wp_create_nonce('update-post_' . $id);
0d28b7c10758 First commit ymh parents: diff changeset	990	elseif ( $_POST['post_type'] == 'page' )
0d28b7c10758 First commit ymh parents: diff changeset	991	$supplemental['replace-_wpnonce'] = wp_create_nonce('update-page_' . $id);
0d28b7c10758 First commit ymh parents: diff changeset	992	}
0d28b7c10758 First commit ymh parents: diff changeset	993	}
0d28b7c10758 First commit ymh parents: diff changeset	994
0d28b7c10758 First commit ymh parents: diff changeset	995	$x = new WP_Ajax_Response( array(
0d28b7c10758 First commit ymh parents: diff changeset	996	'what' => 'autosave',
0d28b7c10758 First commit ymh parents: diff changeset	997	'id' => $id,
0d28b7c10758 First commit ymh parents: diff changeset	998	'data' => $id ? $data : '',
0d28b7c10758 First commit ymh parents: diff changeset	999	'supplemental' => $supplemental
0d28b7c10758 First commit ymh parents: diff changeset	1000	) );
0d28b7c10758 First commit ymh parents: diff changeset	1001	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	1002	break;
0d28b7c10758 First commit ymh parents: diff changeset	1003	case 'autosave-generate-nonces' :
0d28b7c10758 First commit ymh parents: diff changeset	1004	check_ajax_referer( 'autosave', 'autosavenonce' );
0d28b7c10758 First commit ymh parents: diff changeset	1005	$ID = (int) $_POST['post_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	1006	$post_type = ( 'page' == $_POST['post_type'] ) ? 'page' : 'post';
0d28b7c10758 First commit ymh parents: diff changeset	1007	if ( current_user_can( "edit_{$post_type}", $ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	1008	die( json_encode( array( 'updateNonce' => wp_create_nonce( "update-{$post_type}_{$ID}" ), 'deleteURL' => str_replace( '&', '&', wp_nonce_url( admin_url( $post_type . '.php?action=trash&post=' . $ID ), "trash-{$post_type}_{$ID}" ) ) ) ) );
0d28b7c10758 First commit ymh parents: diff changeset	1009	do_action('autosave_generate_nonces');
0d28b7c10758 First commit ymh parents: diff changeset	1010	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	1011	break;
0d28b7c10758 First commit ymh parents: diff changeset	1012	case 'closed-postboxes' :
0d28b7c10758 First commit ymh parents: diff changeset	1013	check_ajax_referer( 'closedpostboxes', 'closedpostboxesnonce' );
0d28b7c10758 First commit ymh parents: diff changeset	1014	$closed = isset( $_POST['closed'] ) ? $_POST['closed'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1015	$closed = explode( ',', $_POST['closed'] );
0d28b7c10758 First commit ymh parents: diff changeset	1016	$hidden = isset( $_POST['hidden'] ) ? $_POST['hidden'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1017	$hidden = explode( ',', $_POST['hidden'] );
0d28b7c10758 First commit ymh parents: diff changeset	1018	$page = isset( $_POST['page'] ) ? $_POST['page'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1019
0d28b7c10758 First commit ymh parents: diff changeset	1020	if ( !preg_match( '/^[a-z_-]+$/', $page ) )
0d28b7c10758 First commit ymh parents: diff changeset	1021	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1022
0d28b7c10758 First commit ymh parents: diff changeset	1023	if ( ! $user = wp_get_current_user() )
0d28b7c10758 First commit ymh parents: diff changeset	1024	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1025
0d28b7c10758 First commit ymh parents: diff changeset	1026	if ( is_array($closed) )
0d28b7c10758 First commit ymh parents: diff changeset	1027	update_usermeta($user->ID, 'closedpostboxes_'.$page, $closed);
0d28b7c10758 First commit ymh parents: diff changeset	1028
0d28b7c10758 First commit ymh parents: diff changeset	1029	if ( is_array($hidden) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1030	$hidden = array_diff( $hidden, array('submitdiv', 'linksubmitdiv') ); // postboxes that are always shown
0d28b7c10758 First commit ymh parents: diff changeset	1031	update_usermeta($user->ID, 'meta-box-hidden_'.$page, $hidden);
0d28b7c10758 First commit ymh parents: diff changeset	1032	}
0d28b7c10758 First commit ymh parents: diff changeset	1033
0d28b7c10758 First commit ymh parents: diff changeset	1034	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	1035	break;
0d28b7c10758 First commit ymh parents: diff changeset	1036	case 'hidden-columns' :
0d28b7c10758 First commit ymh parents: diff changeset	1037	check_ajax_referer( 'screen-options-nonce', 'screenoptionnonce' );
0d28b7c10758 First commit ymh parents: diff changeset	1038	$hidden = isset( $_POST['hidden'] ) ? $_POST['hidden'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1039	$hidden = explode( ',', $_POST['hidden'] );
0d28b7c10758 First commit ymh parents: diff changeset	1040	$page = isset( $_POST['page'] ) ? $_POST['page'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1041
0d28b7c10758 First commit ymh parents: diff changeset	1042	if ( !preg_match( '/^[a-z_-]+$/', $page ) )
0d28b7c10758 First commit ymh parents: diff changeset	1043	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1044
0d28b7c10758 First commit ymh parents: diff changeset	1045	if ( ! $user = wp_get_current_user() )
0d28b7c10758 First commit ymh parents: diff changeset	1046	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1047
0d28b7c10758 First commit ymh parents: diff changeset	1048	if ( is_array($hidden) )
0d28b7c10758 First commit ymh parents: diff changeset	1049	update_usermeta($user->ID, "manage-$page-columns-hidden", $hidden);
0d28b7c10758 First commit ymh parents: diff changeset	1050
0d28b7c10758 First commit ymh parents: diff changeset	1051	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	1052	break;
0d28b7c10758 First commit ymh parents: diff changeset	1053	case 'meta-box-order':
0d28b7c10758 First commit ymh parents: diff changeset	1054	check_ajax_referer( 'meta-box-order' );
0d28b7c10758 First commit ymh parents: diff changeset	1055	$order = isset( $_POST['order'] ) ? (array) $_POST['order'] : false;
0d28b7c10758 First commit ymh parents: diff changeset	1056	$page_columns = isset( $_POST['page_columns'] ) ? (int) $_POST['page_columns'] : 0;
0d28b7c10758 First commit ymh parents: diff changeset	1057	$page = isset( $_POST['page'] ) ? $_POST['page'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1058
0d28b7c10758 First commit ymh parents: diff changeset	1059	if ( !preg_match( '/^[a-z_-]+$/', $page ) )
0d28b7c10758 First commit ymh parents: diff changeset	1060	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1061
0d28b7c10758 First commit ymh parents: diff changeset	1062	if ( ! $user = wp_get_current_user() )
0d28b7c10758 First commit ymh parents: diff changeset	1063	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1064
0d28b7c10758 First commit ymh parents: diff changeset	1065	if ( $order )
0d28b7c10758 First commit ymh parents: diff changeset	1066	update_user_option($user->ID, "meta-box-order_$page", $order);
0d28b7c10758 First commit ymh parents: diff changeset	1067
0d28b7c10758 First commit ymh parents: diff changeset	1068	if ( $page_columns )
0d28b7c10758 First commit ymh parents: diff changeset	1069	update_usermeta($user->ID, "screen_layout_$page", $page_columns);
0d28b7c10758 First commit ymh parents: diff changeset	1070
0d28b7c10758 First commit ymh parents: diff changeset	1071	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	1072	break;
0d28b7c10758 First commit ymh parents: diff changeset	1073	case 'get-permalink':
0d28b7c10758 First commit ymh parents: diff changeset	1074	check_ajax_referer( 'getpermalink', 'getpermalinknonce' );
0d28b7c10758 First commit ymh parents: diff changeset	1075	$post_id = isset($_POST['post_id'])? intval($_POST['post_id']) : 0;
0d28b7c10758 First commit ymh parents: diff changeset	1076	die(add_query_arg(array('preview' => 'true'), get_permalink($post_id)));
0d28b7c10758 First commit ymh parents: diff changeset	1077	break;
0d28b7c10758 First commit ymh parents: diff changeset	1078	case 'sample-permalink':
0d28b7c10758 First commit ymh parents: diff changeset	1079	check_ajax_referer( 'samplepermalink', 'samplepermalinknonce' );
0d28b7c10758 First commit ymh parents: diff changeset	1080	$post_id = isset($_POST['post_id'])? intval($_POST['post_id']) : 0;
0d28b7c10758 First commit ymh parents: diff changeset	1081	$title = isset($_POST['new_title'])? $_POST['new_title'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1082	$slug = isset($_POST['new_slug'])? $_POST['new_slug'] : '';
0d28b7c10758 First commit ymh parents: diff changeset	1083	die(get_sample_permalink_html($post_id, $title, $slug));
0d28b7c10758 First commit ymh parents: diff changeset	1084	break;
0d28b7c10758 First commit ymh parents: diff changeset	1085	case 'inline-save':
0d28b7c10758 First commit ymh parents: diff changeset	1086	check_ajax_referer( 'inlineeditnonce', '_inline_edit' );
0d28b7c10758 First commit ymh parents: diff changeset	1087
0d28b7c10758 First commit ymh parents: diff changeset	1088	if ( ! isset($_POST['post_ID']) \|\| ! ( $post_ID = (int) $_POST['post_ID'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	1089	exit;
0d28b7c10758 First commit ymh parents: diff changeset	1090
0d28b7c10758 First commit ymh parents: diff changeset	1091	if ( 'page' == $_POST['post_type'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1092	if ( ! current_user_can( 'edit_page', $post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	1093	die( __('You are not allowed to edit this page.') );
0d28b7c10758 First commit ymh parents: diff changeset	1094	} else {
0d28b7c10758 First commit ymh parents: diff changeset	1095	if ( ! current_user_can( 'edit_post', $post_ID ) )
0d28b7c10758 First commit ymh parents: diff changeset	1096	die( __('You are not allowed to edit this post.') );
0d28b7c10758 First commit ymh parents: diff changeset	1097	}
0d28b7c10758 First commit ymh parents: diff changeset	1098
0d28b7c10758 First commit ymh parents: diff changeset	1099	if ( $last = wp_check_post_lock( $post_ID ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1100	$last_user = get_userdata( $last );
0d28b7c10758 First commit ymh parents: diff changeset	1101	$last_user_name = $last_user ? $last_user->display_name : __( 'Someone' );
0d28b7c10758 First commit ymh parents: diff changeset	1102	printf( $_POST['post_type'] == 'page' ? __( 'Saving is disabled: %s is currently editing this page.' ) : __( 'Saving is disabled: %s is currently editing this post.' ), esc_html( $last_user_name ) );
0d28b7c10758 First commit ymh parents: diff changeset	1103	exit;
0d28b7c10758 First commit ymh parents: diff changeset	1104	}
0d28b7c10758 First commit ymh parents: diff changeset	1105
0d28b7c10758 First commit ymh parents: diff changeset	1106	$data = &$_POST;
0d28b7c10758 First commit ymh parents: diff changeset	1107
0d28b7c10758 First commit ymh parents: diff changeset	1108	$post = get_post( $post_ID, ARRAY_A );
0d28b7c10758 First commit ymh parents: diff changeset	1109	$post = add_magic_quotes($post); //since it is from db
0d28b7c10758 First commit ymh parents: diff changeset	1110
0d28b7c10758 First commit ymh parents: diff changeset	1111	$data['content'] = $post['post_content'];
0d28b7c10758 First commit ymh parents: diff changeset	1112	$data['excerpt'] = $post['post_excerpt'];
0d28b7c10758 First commit ymh parents: diff changeset	1113
0d28b7c10758 First commit ymh parents: diff changeset	1114	// rename
0d28b7c10758 First commit ymh parents: diff changeset	1115	$data['user_ID'] = $GLOBALS['user_ID'];
0d28b7c10758 First commit ymh parents: diff changeset	1116
0d28b7c10758 First commit ymh parents: diff changeset	1117	if ( isset($data['post_parent']) )
0d28b7c10758 First commit ymh parents: diff changeset	1118	$data['parent_id'] = $data['post_parent'];
0d28b7c10758 First commit ymh parents: diff changeset	1119
0d28b7c10758 First commit ymh parents: diff changeset	1120	// status
0d28b7c10758 First commit ymh parents: diff changeset	1121	if ( isset($data['keep_private']) && 'private' == $data['keep_private'] )
0d28b7c10758 First commit ymh parents: diff changeset	1122	$data['post_status'] = 'private';
0d28b7c10758 First commit ymh parents: diff changeset	1123	else
0d28b7c10758 First commit ymh parents: diff changeset	1124	$data['post_status'] = $data['_status'];
0d28b7c10758 First commit ymh parents: diff changeset	1125
0d28b7c10758 First commit ymh parents: diff changeset	1126	if ( empty($data['comment_status']) )
0d28b7c10758 First commit ymh parents: diff changeset	1127	$data['comment_status'] = 'closed';
0d28b7c10758 First commit ymh parents: diff changeset	1128	if ( empty($data['ping_status']) )
0d28b7c10758 First commit ymh parents: diff changeset	1129	$data['ping_status'] = 'closed';
0d28b7c10758 First commit ymh parents: diff changeset	1130
0d28b7c10758 First commit ymh parents: diff changeset	1131	// update the post
0d28b7c10758 First commit ymh parents: diff changeset	1132	edit_post();
0d28b7c10758 First commit ymh parents: diff changeset	1133
0d28b7c10758 First commit ymh parents: diff changeset	1134	$post = array();
0d28b7c10758 First commit ymh parents: diff changeset	1135	if ( 'page' == $_POST['post_type'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1136	$post[] = get_post($_POST['post_ID']);
0d28b7c10758 First commit ymh parents: diff changeset	1137	page_rows($post);
0d28b7c10758 First commit ymh parents: diff changeset	1138	} elseif ( 'post' == $_POST['post_type'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1139	$mode = $_POST['post_view'];
0d28b7c10758 First commit ymh parents: diff changeset	1140	$post[] = get_post($_POST['post_ID']);
0d28b7c10758 First commit ymh parents: diff changeset	1141	post_rows($post);
0d28b7c10758 First commit ymh parents: diff changeset	1142	}
0d28b7c10758 First commit ymh parents: diff changeset	1143
0d28b7c10758 First commit ymh parents: diff changeset	1144	exit;
0d28b7c10758 First commit ymh parents: diff changeset	1145	break;
0d28b7c10758 First commit ymh parents: diff changeset	1146	case 'inline-save-tax':
0d28b7c10758 First commit ymh parents: diff changeset	1147	check_ajax_referer( 'taxinlineeditnonce', '_inline_edit' );
0d28b7c10758 First commit ymh parents: diff changeset	1148
0d28b7c10758 First commit ymh parents: diff changeset	1149	if ( ! current_user_can('manage_categories') )
0d28b7c10758 First commit ymh parents: diff changeset	1150	die( __('Cheatin’ uh?') );
0d28b7c10758 First commit ymh parents: diff changeset	1151
0d28b7c10758 First commit ymh parents: diff changeset	1152	if ( ! isset($_POST['tax_ID']) \|\| ! ( $id = (int) $_POST['tax_ID'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	1153	die(-1);
0d28b7c10758 First commit ymh parents: diff changeset	1154
0d28b7c10758 First commit ymh parents: diff changeset	1155	switch ($_POST['tax_type']) {
0d28b7c10758 First commit ymh parents: diff changeset	1156	case 'cat' :
0d28b7c10758 First commit ymh parents: diff changeset	1157	$data = array();
0d28b7c10758 First commit ymh parents: diff changeset	1158	$data['cat_ID'] = $id;
0d28b7c10758 First commit ymh parents: diff changeset	1159	$data['cat_name'] = $_POST['name'];
0d28b7c10758 First commit ymh parents: diff changeset	1160	$data['category_nicename'] = $_POST['slug'];
0d28b7c10758 First commit ymh parents: diff changeset	1161	if ( isset($_POST['parent']) && (int) $_POST['parent'] > 0 )
0d28b7c10758 First commit ymh parents: diff changeset	1162	$data['category_parent'] = $_POST['parent'];
0d28b7c10758 First commit ymh parents: diff changeset	1163
0d28b7c10758 First commit ymh parents: diff changeset	1164	$cat = get_category($id, ARRAY_A);
0d28b7c10758 First commit ymh parents: diff changeset	1165	$data['category_description'] = $cat['category_description'];
0d28b7c10758 First commit ymh parents: diff changeset	1166
0d28b7c10758 First commit ymh parents: diff changeset	1167	$updated = wp_update_category($data);
0d28b7c10758 First commit ymh parents: diff changeset	1168
0d28b7c10758 First commit ymh parents: diff changeset	1169	if ( $updated && !is_wp_error($updated) )
0d28b7c10758 First commit ymh parents: diff changeset	1170	echo _cat_row( $updated, 0 );
0d28b7c10758 First commit ymh parents: diff changeset	1171	else
0d28b7c10758 First commit ymh parents: diff changeset	1172	die( __('Category not updated.') );
0d28b7c10758 First commit ymh parents: diff changeset	1173
0d28b7c10758 First commit ymh parents: diff changeset	1174	break;
0d28b7c10758 First commit ymh parents: diff changeset	1175	case 'link-cat' :
0d28b7c10758 First commit ymh parents: diff changeset	1176	$updated = wp_update_term($id, 'link_category', $_POST);
0d28b7c10758 First commit ymh parents: diff changeset	1177
0d28b7c10758 First commit ymh parents: diff changeset	1178	if ( $updated && !is_wp_error($updated) )
0d28b7c10758 First commit ymh parents: diff changeset	1179	echo link_cat_row($updated['term_id']);
0d28b7c10758 First commit ymh parents: diff changeset	1180	else
0d28b7c10758 First commit ymh parents: diff changeset	1181	die( __('Category not updated.') );
0d28b7c10758 First commit ymh parents: diff changeset	1182
0d28b7c10758 First commit ymh parents: diff changeset	1183	break;
0d28b7c10758 First commit ymh parents: diff changeset	1184	case 'tag' :
0d28b7c10758 First commit ymh parents: diff changeset	1185	$taxonomy = !empty($_POST['taxonomy']) ? $_POST['taxonomy'] : 'post_tag';
0d28b7c10758 First commit ymh parents: diff changeset	1186
0d28b7c10758 First commit ymh parents: diff changeset	1187	$tag = get_term( $id, $taxonomy );
0d28b7c10758 First commit ymh parents: diff changeset	1188	$_POST['description'] = $tag->description;
0d28b7c10758 First commit ymh parents: diff changeset	1189
0d28b7c10758 First commit ymh parents: diff changeset	1190	$updated = wp_update_term($id, $taxonomy, $_POST);
0d28b7c10758 First commit ymh parents: diff changeset	1191	if ( $updated && !is_wp_error($updated) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1192	$tag = get_term( $updated['term_id'], $taxonomy );
0d28b7c10758 First commit ymh parents: diff changeset	1193	if ( !$tag \|\| is_wp_error( $tag ) )
0d28b7c10758 First commit ymh parents: diff changeset	1194	die( __('Tag not updated.') );
0d28b7c10758 First commit ymh parents: diff changeset	1195
0d28b7c10758 First commit ymh parents: diff changeset	1196	echo _tag_row($tag, '', $taxonomy);
0d28b7c10758 First commit ymh parents: diff changeset	1197	} else {
0d28b7c10758 First commit ymh parents: diff changeset	1198	die( __('Tag not updated.') );
0d28b7c10758 First commit ymh parents: diff changeset	1199	}
0d28b7c10758 First commit ymh parents: diff changeset	1200
0d28b7c10758 First commit ymh parents: diff changeset	1201	break;
0d28b7c10758 First commit ymh parents: diff changeset	1202	}
0d28b7c10758 First commit ymh parents: diff changeset	1203
0d28b7c10758 First commit ymh parents: diff changeset	1204	exit;
0d28b7c10758 First commit ymh parents: diff changeset	1205	break;
0d28b7c10758 First commit ymh parents: diff changeset	1206	case 'find_posts':
0d28b7c10758 First commit ymh parents: diff changeset	1207	check_ajax_referer( 'find-posts' );
0d28b7c10758 First commit ymh parents: diff changeset	1208
0d28b7c10758 First commit ymh parents: diff changeset	1209	if ( empty($_POST['ps']) )
0d28b7c10758 First commit ymh parents: diff changeset	1210	exit;
0d28b7c10758 First commit ymh parents: diff changeset	1211
0d28b7c10758 First commit ymh parents: diff changeset	1212	$what = isset($_POST['pages']) ? 'page' : 'post';
0d28b7c10758 First commit ymh parents: diff changeset	1213	$s = stripslashes($_POST['ps']);
0d28b7c10758 First commit ymh parents: diff changeset	1214	preg_match_all('/".*?("\|$)\|((?<=[\\s",+])\|^)[^\\s",+]+/', $s, $matches);
0d28b7c10758 First commit ymh parents: diff changeset	1215	$search_terms = array_map('_search_terms_tidy', $matches[0]);
0d28b7c10758 First commit ymh parents: diff changeset	1216
0d28b7c10758 First commit ymh parents: diff changeset	1217	$searchand = $search = '';
0d28b7c10758 First commit ymh parents: diff changeset	1218	foreach ( (array) $search_terms as $term ) {
0d28b7c10758 First commit ymh parents: diff changeset	1219	$term = addslashes_gpc($term);
0d28b7c10758 First commit ymh parents: diff changeset	1220	$search .= "{$searchand}(($wpdb->posts.post_title LIKE '%{$term}%') OR ($wpdb->posts.post_content LIKE '%{$term}%'))";
0d28b7c10758 First commit ymh parents: diff changeset	1221	$searchand = ' AND ';
0d28b7c10758 First commit ymh parents: diff changeset	1222	}
0d28b7c10758 First commit ymh parents: diff changeset	1223	$term = $wpdb->escape($s);
0d28b7c10758 First commit ymh parents: diff changeset	1224	if ( count($search_terms) > 1 && $search_terms[0] != $s )
0d28b7c10758 First commit ymh parents: diff changeset	1225	$search .= " OR ($wpdb->posts.post_title LIKE '%{$term}%') OR ($wpdb->posts.post_content LIKE '%{$term}%')";
0d28b7c10758 First commit ymh parents: diff changeset	1226
0d28b7c10758 First commit ymh parents: diff changeset	1227	$posts = $wpdb->get_results( "SELECT ID, post_title, post_status, post_date FROM $wpdb->posts WHERE post_type = '$what' AND post_status IN ('draft', 'publish') AND ($search) ORDER BY post_date_gmt DESC LIMIT 50" );
0d28b7c10758 First commit ymh parents: diff changeset	1228
0d28b7c10758 First commit ymh parents: diff changeset	1229	if ( ! $posts )
0d28b7c10758 First commit ymh parents: diff changeset	1230	exit( __('No posts found.') );
0d28b7c10758 First commit ymh parents: diff changeset	1231
0d28b7c10758 First commit ymh parents: diff changeset	1232	$html = '<table class="widefat" cellspacing="0"><thead><tr><th class="found-radio"><br /></th><th>'.__('Title').'</th><th>'.__('Date').'</th><th>'.__('Status').'</th></tr></thead><tbody>';
0d28b7c10758 First commit ymh parents: diff changeset	1233	foreach ( $posts as $post ) {
0d28b7c10758 First commit ymh parents: diff changeset	1234
0d28b7c10758 First commit ymh parents: diff changeset	1235	switch ( $post->post_status ) {
0d28b7c10758 First commit ymh parents: diff changeset	1236	case 'publish' :
0d28b7c10758 First commit ymh parents: diff changeset	1237	case 'private' :
0d28b7c10758 First commit ymh parents: diff changeset	1238	$stat = __('Published');
0d28b7c10758 First commit ymh parents: diff changeset	1239	break;
0d28b7c10758 First commit ymh parents: diff changeset	1240	case 'future' :
0d28b7c10758 First commit ymh parents: diff changeset	1241	$stat = __('Scheduled');
0d28b7c10758 First commit ymh parents: diff changeset	1242	break;
0d28b7c10758 First commit ymh parents: diff changeset	1243	case 'pending' :
0d28b7c10758 First commit ymh parents: diff changeset	1244	$stat = __('Pending Review');
0d28b7c10758 First commit ymh parents: diff changeset	1245	break;
0d28b7c10758 First commit ymh parents: diff changeset	1246	case 'draft' :
0d28b7c10758 First commit ymh parents: diff changeset	1247	$stat = __('Draft');
0d28b7c10758 First commit ymh parents: diff changeset	1248	break;
0d28b7c10758 First commit ymh parents: diff changeset	1249	}
0d28b7c10758 First commit ymh parents: diff changeset	1250
0d28b7c10758 First commit ymh parents: diff changeset	1251	if ( '0000-00-00 00:00:00' == $post->post_date ) {
0d28b7c10758 First commit ymh parents: diff changeset	1252	$time = '';
0d28b7c10758 First commit ymh parents: diff changeset	1253	} else {
0d28b7c10758 First commit ymh parents: diff changeset	1254	/* translators: date format in table columns, see http://php.net/date */
0d28b7c10758 First commit ymh parents: diff changeset	1255	$time = mysql2date(__('Y/m/d'), $post->post_date);
0d28b7c10758 First commit ymh parents: diff changeset	1256	}
0d28b7c10758 First commit ymh parents: diff changeset	1257
0d28b7c10758 First commit ymh parents: diff changeset	1258	$html .= '<tr class="found-posts"><td class="found-radio"><input type="radio" id="found-'.$post->ID.'" name="found_post_id" value="' . esc_attr($post->ID) . '"></td>';
0d28b7c10758 First commit ymh parents: diff changeset	1259	$html .= '<td><label for="found-'.$post->ID.'">'.esc_html( $post->post_title ).'</label></td><td>'.esc_html( $time ).'</td><td>'.esc_html( $stat ).'</td></tr>'."\n\n";
0d28b7c10758 First commit ymh parents: diff changeset	1260	}
0d28b7c10758 First commit ymh parents: diff changeset	1261	$html .= '</tbody></table>';
0d28b7c10758 First commit ymh parents: diff changeset	1262
0d28b7c10758 First commit ymh parents: diff changeset	1263	$x = new WP_Ajax_Response();
0d28b7c10758 First commit ymh parents: diff changeset	1264	$x->add( array(
0d28b7c10758 First commit ymh parents: diff changeset	1265	'what' => $what,
0d28b7c10758 First commit ymh parents: diff changeset	1266	'data' => $html
0d28b7c10758 First commit ymh parents: diff changeset	1267	));
0d28b7c10758 First commit ymh parents: diff changeset	1268	$x->send();
0d28b7c10758 First commit ymh parents: diff changeset	1269
0d28b7c10758 First commit ymh parents: diff changeset	1270	break;
0d28b7c10758 First commit ymh parents: diff changeset	1271	case 'lj-importer' :
0d28b7c10758 First commit ymh parents: diff changeset	1272	check_ajax_referer( 'lj-api-import' );
0d28b7c10758 First commit ymh parents: diff changeset	1273	if ( !current_user_can( 'publish_posts' ) )
0d28b7c10758 First commit ymh parents: diff changeset	1274	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1275	if ( empty( $_POST['step'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	1276	die( '-1' );
0d28b7c10758 First commit ymh parents: diff changeset	1277	define('WP_IMPORTING', true);
0d28b7c10758 First commit ymh parents: diff changeset	1278	include( ABSPATH . 'wp-admin/import/livejournal.php' );
0d28b7c10758 First commit ymh parents: diff changeset	1279	$result = $lj_api_import->{ 'step' . ( (int) $_POST['step'] ) }();
0d28b7c10758 First commit ymh parents: diff changeset	1280	if ( is_wp_error( $result ) )
0d28b7c10758 First commit ymh parents: diff changeset	1281	echo $result->get_error_message();
0d28b7c10758 First commit ymh parents: diff changeset	1282	die;
0d28b7c10758 First commit ymh parents: diff changeset	1283	break;
0d28b7c10758 First commit ymh parents: diff changeset	1284	case 'widgets-order' :
0d28b7c10758 First commit ymh parents: diff changeset	1285	check_ajax_referer( 'save-sidebar-widgets', 'savewidgets' );
0d28b7c10758 First commit ymh parents: diff changeset	1286
0d28b7c10758 First commit ymh parents: diff changeset	1287	if ( !current_user_can('switch_themes') )
0d28b7c10758 First commit ymh parents: diff changeset	1288	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1289
0d28b7c10758 First commit ymh parents: diff changeset	1290	unset( $_POST['savewidgets'], $_POST['action'] );
0d28b7c10758 First commit ymh parents: diff changeset	1291
0d28b7c10758 First commit ymh parents: diff changeset	1292	// save widgets order for all sidebars
0d28b7c10758 First commit ymh parents: diff changeset	1293	if ( is_array($_POST['sidebars']) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1294	$sidebars = array();
0d28b7c10758 First commit ymh parents: diff changeset	1295	foreach ( $_POST['sidebars'] as $key => $val ) {
0d28b7c10758 First commit ymh parents: diff changeset	1296	$sb = array();
0d28b7c10758 First commit ymh parents: diff changeset	1297	if ( !empty($val) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1298	$val = explode(',', $val);
0d28b7c10758 First commit ymh parents: diff changeset	1299	foreach ( $val as $k => $v ) {
0d28b7c10758 First commit ymh parents: diff changeset	1300	if ( strpos($v, 'widget-') === false )
0d28b7c10758 First commit ymh parents: diff changeset	1301	continue;
0d28b7c10758 First commit ymh parents: diff changeset	1302
0d28b7c10758 First commit ymh parents: diff changeset	1303	$sb[$k] = substr($v, strpos($v, '_') + 1);
0d28b7c10758 First commit ymh parents: diff changeset	1304	}
0d28b7c10758 First commit ymh parents: diff changeset	1305	}
0d28b7c10758 First commit ymh parents: diff changeset	1306	$sidebars[$key] = $sb;
0d28b7c10758 First commit ymh parents: diff changeset	1307	}
0d28b7c10758 First commit ymh parents: diff changeset	1308	wp_set_sidebars_widgets($sidebars);
0d28b7c10758 First commit ymh parents: diff changeset	1309	die('1');
0d28b7c10758 First commit ymh parents: diff changeset	1310	}
0d28b7c10758 First commit ymh parents: diff changeset	1311
0d28b7c10758 First commit ymh parents: diff changeset	1312	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1313	break;
0d28b7c10758 First commit ymh parents: diff changeset	1314	case 'save-widget' :
0d28b7c10758 First commit ymh parents: diff changeset	1315	check_ajax_referer( 'save-sidebar-widgets', 'savewidgets' );
0d28b7c10758 First commit ymh parents: diff changeset	1316
0d28b7c10758 First commit ymh parents: diff changeset	1317	if ( !current_user_can('switch_themes') \|\| !isset($_POST['id_base']) )
0d28b7c10758 First commit ymh parents: diff changeset	1318	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1319
0d28b7c10758 First commit ymh parents: diff changeset	1320	unset( $_POST['savewidgets'], $_POST['action'] );
0d28b7c10758 First commit ymh parents: diff changeset	1321
0d28b7c10758 First commit ymh parents: diff changeset	1322	do_action('load-widgets.php');
0d28b7c10758 First commit ymh parents: diff changeset	1323	do_action('widgets.php');
0d28b7c10758 First commit ymh parents: diff changeset	1324	do_action('sidebar_admin_setup');
0d28b7c10758 First commit ymh parents: diff changeset	1325
0d28b7c10758 First commit ymh parents: diff changeset	1326	$id_base = $_POST['id_base'];
0d28b7c10758 First commit ymh parents: diff changeset	1327	$widget_id = $_POST['widget-id'];
0d28b7c10758 First commit ymh parents: diff changeset	1328	$sidebar_id = $_POST['sidebar'];
0d28b7c10758 First commit ymh parents: diff changeset	1329	$multi_number = !empty($_POST['multi_number']) ? (int) $_POST['multi_number'] : 0;
0d28b7c10758 First commit ymh parents: diff changeset	1330	$settings = isset($_POST['widget-' . $id_base]) && is_array($_POST['widget-' . $id_base]) ? $_POST['widget-' . $id_base] : false;
0d28b7c10758 First commit ymh parents: diff changeset	1331	$error = '<p>' . __('An error has occured. Please reload the page and try again.') . '</p>';
0d28b7c10758 First commit ymh parents: diff changeset	1332
0d28b7c10758 First commit ymh parents: diff changeset	1333	$sidebars = wp_get_sidebars_widgets();
0d28b7c10758 First commit ymh parents: diff changeset	1334	$sidebar = isset($sidebars[$sidebar_id]) ? $sidebars[$sidebar_id] : array();
0d28b7c10758 First commit ymh parents: diff changeset	1335
0d28b7c10758 First commit ymh parents: diff changeset	1336	// delete
0d28b7c10758 First commit ymh parents: diff changeset	1337	if ( isset($_POST['delete_widget']) && $_POST['delete_widget'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1338
0d28b7c10758 First commit ymh parents: diff changeset	1339	if ( !isset($wp_registered_widgets[$widget_id]) )
0d28b7c10758 First commit ymh parents: diff changeset	1340	die($error);
0d28b7c10758 First commit ymh parents: diff changeset	1341
0d28b7c10758 First commit ymh parents: diff changeset	1342	$sidebar = array_diff( $sidebar, array($widget_id) );
0d28b7c10758 First commit ymh parents: diff changeset	1343	$_POST = array('sidebar' => $sidebar_id, 'widget-' . $id_base => array(), 'the-widget-id' => $widget_id, 'delete_widget' => '1');
0d28b7c10758 First commit ymh parents: diff changeset	1344	} elseif ( $settings && preg_match( '/__i__\|%i%/', key($settings) ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1345	if ( !$multi_number )
0d28b7c10758 First commit ymh parents: diff changeset	1346	die($error);
0d28b7c10758 First commit ymh parents: diff changeset	1347
0d28b7c10758 First commit ymh parents: diff changeset	1348	$_POST['widget-' . $id_base] = array( $multi_number => array_shift($settings) );
0d28b7c10758 First commit ymh parents: diff changeset	1349	$widget_id = $id_base . '-' . $multi_number;
0d28b7c10758 First commit ymh parents: diff changeset	1350	$sidebar[] = $widget_id;
0d28b7c10758 First commit ymh parents: diff changeset	1351	}
0d28b7c10758 First commit ymh parents: diff changeset	1352	$_POST['widget-id'] = $sidebar;
0d28b7c10758 First commit ymh parents: diff changeset	1353
0d28b7c10758 First commit ymh parents: diff changeset	1354	foreach ( (array) $wp_registered_widget_updates as $name => $control ) {
0d28b7c10758 First commit ymh parents: diff changeset	1355
0d28b7c10758 First commit ymh parents: diff changeset	1356	if ( $name == $id_base ) {
0d28b7c10758 First commit ymh parents: diff changeset	1357	if ( !is_callable( $control['callback'] ) )
0d28b7c10758 First commit ymh parents: diff changeset	1358	continue;
0d28b7c10758 First commit ymh parents: diff changeset	1359
0d28b7c10758 First commit ymh parents: diff changeset	1360	ob_start();
0d28b7c10758 First commit ymh parents: diff changeset	1361	call_user_func_array( $control['callback'], $control['params'] );
0d28b7c10758 First commit ymh parents: diff changeset	1362	ob_end_clean();
0d28b7c10758 First commit ymh parents: diff changeset	1363	break;
0d28b7c10758 First commit ymh parents: diff changeset	1364	}
0d28b7c10758 First commit ymh parents: diff changeset	1365	}
0d28b7c10758 First commit ymh parents: diff changeset	1366
0d28b7c10758 First commit ymh parents: diff changeset	1367	if ( isset($_POST['delete_widget']) && $_POST['delete_widget'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1368	$sidebars[$sidebar_id] = $sidebar;
0d28b7c10758 First commit ymh parents: diff changeset	1369	wp_set_sidebars_widgets($sidebars);
0d28b7c10758 First commit ymh parents: diff changeset	1370	echo "deleted:$widget_id";
0d28b7c10758 First commit ymh parents: diff changeset	1371	die();
0d28b7c10758 First commit ymh parents: diff changeset	1372	}
0d28b7c10758 First commit ymh parents: diff changeset	1373
0d28b7c10758 First commit ymh parents: diff changeset	1374	if ( !empty($_POST['add_new']) )
0d28b7c10758 First commit ymh parents: diff changeset	1375	die();
0d28b7c10758 First commit ymh parents: diff changeset	1376
0d28b7c10758 First commit ymh parents: diff changeset	1377	if ( $form = $wp_registered_widget_controls[$widget_id] )
0d28b7c10758 First commit ymh parents: diff changeset	1378	call_user_func_array( $form['callback'], $form['params'] );
0d28b7c10758 First commit ymh parents: diff changeset	1379
0d28b7c10758 First commit ymh parents: diff changeset	1380	die();
0d28b7c10758 First commit ymh parents: diff changeset	1381	break;
0d28b7c10758 First commit ymh parents: diff changeset	1382	case 'image-editor':
0d28b7c10758 First commit ymh parents: diff changeset	1383	$attachment_id = intval($_POST['postid']);
0d28b7c10758 First commit ymh parents: diff changeset	1384	if ( empty($attachment_id) \|\| !current_user_can('edit_post', $attachment_id) )
0d28b7c10758 First commit ymh parents: diff changeset	1385	die('-1');
0d28b7c10758 First commit ymh parents: diff changeset	1386
0d28b7c10758 First commit ymh parents: diff changeset	1387	check_ajax_referer( "image_editor-$attachment_id" );
0d28b7c10758 First commit ymh parents: diff changeset	1388	include_once( ABSPATH . 'wp-admin/includes/image-edit.php' );
0d28b7c10758 First commit ymh parents: diff changeset	1389
0d28b7c10758 First commit ymh parents: diff changeset	1390	$msg = false;
0d28b7c10758 First commit ymh parents: diff changeset	1391	switch ( $_POST['do'] ) {
0d28b7c10758 First commit ymh parents: diff changeset	1392	case 'save' :
0d28b7c10758 First commit ymh parents: diff changeset	1393	$msg = wp_save_image($attachment_id);
0d28b7c10758 First commit ymh parents: diff changeset	1394	$msg = json_encode($msg);
0d28b7c10758 First commit ymh parents: diff changeset	1395	die($msg);
0d28b7c10758 First commit ymh parents: diff changeset	1396	break;
0d28b7c10758 First commit ymh parents: diff changeset	1397	case 'scale' :
0d28b7c10758 First commit ymh parents: diff changeset	1398	$msg = wp_save_image($attachment_id);
0d28b7c10758 First commit ymh parents: diff changeset	1399	break;
0d28b7c10758 First commit ymh parents: diff changeset	1400	case 'restore' :
0d28b7c10758 First commit ymh parents: diff changeset	1401	$msg = wp_restore_image($attachment_id);
0d28b7c10758 First commit ymh parents: diff changeset	1402	break;
0d28b7c10758 First commit ymh parents: diff changeset	1403	}
0d28b7c10758 First commit ymh parents: diff changeset	1404
0d28b7c10758 First commit ymh parents: diff changeset	1405	wp_image_editor($attachment_id, $msg);
0d28b7c10758 First commit ymh parents: diff changeset	1406	die();
0d28b7c10758 First commit ymh parents: diff changeset	1407	break;
0d28b7c10758 First commit ymh parents: diff changeset	1408	case 'set-post-thumbnail':
0d28b7c10758 First commit ymh parents: diff changeset	1409	$post_id = intval( $_POST['post_id'] );
0d28b7c10758 First commit ymh parents: diff changeset	1410	if ( !current_user_can( 'edit_post', $post_id ) )
0d28b7c10758 First commit ymh parents: diff changeset	1411	die( '-1' );
0d28b7c10758 First commit ymh parents: diff changeset	1412	$thumbnail_id = intval( $_POST['thumbnail_id'] );
0d28b7c10758 First commit ymh parents: diff changeset	1413
0d28b7c10758 First commit ymh parents: diff changeset	1414	if ( $thumbnail_id == '-1' ) {
0d28b7c10758 First commit ymh parents: diff changeset	1415	delete_post_meta( $post_id, '_thumbnail_id' );
0d28b7c10758 First commit ymh parents: diff changeset	1416	die( _wp_post_thumbnail_html() );
0d28b7c10758 First commit ymh parents: diff changeset	1417	}
0d28b7c10758 First commit ymh parents: diff changeset	1418
0d28b7c10758 First commit ymh parents: diff changeset	1419	if ( $thumbnail_id && get_post( $thumbnail_id ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1420	$thumbnail_html = wp_get_attachment_image( $thumbnail_id, 'thumbnail' );
0d28b7c10758 First commit ymh parents: diff changeset	1421	if ( !empty( $thumbnail_html ) ) {
0d28b7c10758 First commit ymh parents: diff changeset	1422	update_post_meta( $post_id, '_thumbnail_id', $thumbnail_id );
0d28b7c10758 First commit ymh parents: diff changeset	1423	die( _wp_post_thumbnail_html( $thumbnail_id ) );
0d28b7c10758 First commit ymh parents: diff changeset	1424	}
0d28b7c10758 First commit ymh parents: diff changeset	1425	}
0d28b7c10758 First commit ymh parents: diff changeset	1426	die( '0' );
0d28b7c10758 First commit ymh parents: diff changeset	1427	default :
0d28b7c10758 First commit ymh parents: diff changeset	1428	do_action( 'wp_ajax_' . $_POST['action'] );
0d28b7c10758 First commit ymh parents: diff changeset	1429	die('0');
0d28b7c10758 First commit ymh parents: diff changeset	1430	break;
0d28b7c10758 First commit ymh parents: diff changeset	1431	endswitch;
0d28b7c10758 First commit ymh parents: diff changeset	1432	?>

author	ymh
	Fri, 12 Mar 2010 13:29:04 +0000
changeset 1	0d28b7c10758
permissions	-rw-r--r--