enmi-conf.org: wp/wp-includes/capabilities.php@cf61fcea0001 (annotated)

0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	2	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	3	* Core User Role & Capabilities API
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	4	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	5	* @package WordPress
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	6	* @subpackage Users
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	7	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	8
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	9	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	10	* Map meta capabilities to primitive capabilities.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	11	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	12	* This does not actually compare whether the user ID has the actual capability,
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	13	* just what the capability or capabilities are. Meta capability list value can
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	14	* be 'delete_user', 'edit_user', 'remove_user', 'promote_user', 'delete_post',
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	15	* 'delete_page', 'edit_post', 'edit_page', 'read_post', or 'read_page'.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	16	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	17	* @since 2.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	18	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	19	* @global array $post_type_meta_caps Used to get post type meta capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	20	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	21	* @param string $cap Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	22	* @param int $user_id User ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	23	* @param int $object_id Optional. ID of the specific object to check against if `$cap` is a "meta" cap.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	24	* "Meta" capabilities, e.g. 'edit_post', 'edit_user', etc., are capabilities used
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	25	* by map_meta_cap() to map to other "primitive" capabilities, e.g. 'edit_posts',
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	26	* 'edit_others_posts', etc. The parameter is accessed via func_get_args().
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	27	* @return array Actual capabilities for meta capability.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	28	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	29	function map_meta_cap( $cap, $user_id ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	30	$args = array_slice( func_get_args(), 2 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	31	$caps = array();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	32
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	33	switch ( $cap ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	34	case 'remove_user':
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	35	// In multisite the user must be a super admin to remove themselves.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	36	if ( isset( $args[0] ) && $user_id == $args[0] && ! is_super_admin( $user_id ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	37	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	38	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	39	$caps[] = 'remove_users';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	40	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	41	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	42	case 'promote_user':
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	43	case 'add_users':
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	44	$caps[] = 'promote_users';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	45	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	46	case 'edit_user':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	47	case 'edit_users':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	48	// Allow user to edit itself
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	49	if ( 'edit_user' == $cap && isset( $args[0] ) && $user_id == $args[0] )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	50	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	51
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	52	// In multisite the user must have manage_network_users caps. If editing a super admin, the user must be a super admin.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	53	if ( is_multisite() && ( ( ! is_super_admin( $user_id ) && 'edit_user' === $cap && is_super_admin( $args[0] ) ) \|\| ! user_can( $user_id, 'manage_network_users' ) ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	54	$caps[] = 'do_not_allow';
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	55	} else {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	56	$caps[] = 'edit_users'; // edit_user maps to edit_users.
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	57	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	58	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	59	case 'delete_post':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	60	case 'delete_page':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	61	$post = get_post( $args[0] );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	62	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	63	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	64	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	65	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	66
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	67	if ( 'revision' == $post->post_type ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	68	$post = get_post( $post->post_parent );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	69	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	70	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	71	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	72	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	73	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	74
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	75	if ( ( get_option( 'page_for_posts' ) == $post->ID ) \|\| ( get_option( 'page_on_front' ) == $post->ID ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	76	$caps[] = 'manage_options';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	77	break;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	78	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	79
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	80	$post_type = get_post_type_object( $post->post_type );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	81	if ( ! $post_type ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	82	/* translators: 1: post type, 2: capability name */
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	83	_doing_it_wrong( __FUNCTION__, sprintf( __( 'The post type %1$s is not registered, so it may not be reliable to check the capability "%2$s" against a post of that type.' ), $post->post_type, $cap ), '4.4.0' );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	84	$caps[] = 'edit_others_posts';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	85	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	86	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	87
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	88	if ( ! $post_type->map_meta_cap ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	89	$caps[] = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	90	// Prior to 3.1 we would re-call map_meta_cap here.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	91	if ( 'delete_post' == $cap )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	92	$cap = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	93	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	94	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	95
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	96	// If the post author is set and the user is the author...
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	97	if ( $post->post_author && $user_id == $post->post_author ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	98	// If the post is published or scheduled...
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	99	if ( in_array( $post->post_status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	100	$caps[] = $post_type->cap->delete_published_posts;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	101	} elseif ( 'trash' == $post->post_status ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	102	$status = get_post_meta( $post->ID, '_wp_trash_meta_status', true );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	103	if ( in_array( $status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	104	$caps[] = $post_type->cap->delete_published_posts;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	105	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	106	$caps[] = $post_type->cap->delete_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	107	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	108	} else {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	109	// If the post is draft...
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	110	$caps[] = $post_type->cap->delete_posts;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	111	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	112	} else {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	113	// The user is trying to edit someone else's post.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	114	$caps[] = $post_type->cap->delete_others_posts;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	115	// The post is published or scheduled, extra cap required.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	116	if ( in_array( $post->post_status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	117	$caps[] = $post_type->cap->delete_published_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	118	} elseif ( 'private' == $post->post_status ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	119	$caps[] = $post_type->cap->delete_private_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	120	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	121	}
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	122
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	123	/*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	124	* Setting the privacy policy page requires `manage_privacy_options`,
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	125	* so deleting it should require that too.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	126	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	127	if ( (int) get_option( 'wp_page_for_privacy_policy' ) === $post->ID ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	128	$caps = array_merge( $caps, map_meta_cap( 'manage_privacy_options', $user_id ) );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	129	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	130
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	131	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	132	// edit_post breaks down to edit_posts, edit_published_posts, or
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	133	// edit_others_posts
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	134	case 'edit_post':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	135	case 'edit_page':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	136	$post = get_post( $args[0] );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	137	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	138	$caps[] = 'do_not_allow';
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	139	break;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	140	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	141
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	142	if ( 'revision' == $post->post_type ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	143	$post = get_post( $post->post_parent );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	144	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	145	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	146	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	147	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	148	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	149
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	150	$post_type = get_post_type_object( $post->post_type );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	151	if ( ! $post_type ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	152	/* translators: 1: post type, 2: capability name */
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	153	_doing_it_wrong( __FUNCTION__, sprintf( __( 'The post type %1$s is not registered, so it may not be reliable to check the capability "%2$s" against a post of that type.' ), $post->post_type, $cap ), '4.4.0' );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	154	$caps[] = 'edit_others_posts';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	155	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	156	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	157
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	158	if ( ! $post_type->map_meta_cap ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	159	$caps[] = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	160	// Prior to 3.1 we would re-call map_meta_cap here.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	161	if ( 'edit_post' == $cap )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	162	$cap = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	163	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	164	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	165
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	166	// If the post author is set and the user is the author...
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	167	if ( $post->post_author && $user_id == $post->post_author ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	168	// If the post is published or scheduled...
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	169	if ( in_array( $post->post_status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	170	$caps[] = $post_type->cap->edit_published_posts;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	171	} elseif ( 'trash' == $post->post_status ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	172	$status = get_post_meta( $post->ID, '_wp_trash_meta_status', true );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	173	if ( in_array( $status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	174	$caps[] = $post_type->cap->edit_published_posts;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	175	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	176	$caps[] = $post_type->cap->edit_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	177	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	178	} else {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	179	// If the post is draft...
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	180	$caps[] = $post_type->cap->edit_posts;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	181	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	182	} else {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	183	// The user is trying to edit someone else's post.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	184	$caps[] = $post_type->cap->edit_others_posts;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	185	// The post is published or scheduled, extra cap required.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	186	if ( in_array( $post->post_status, array( 'publish', 'future' ), true ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	187	$caps[] = $post_type->cap->edit_published_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	188	} elseif ( 'private' == $post->post_status ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	189	$caps[] = $post_type->cap->edit_private_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	190	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	191	}
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	192
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	193	/*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	194	* Setting the privacy policy page requires `manage_privacy_options`,
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	195	* so editing it should require that too.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	196	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	197	if ( (int) get_option( 'wp_page_for_privacy_policy' ) === $post->ID ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	198	$caps = array_merge( $caps, map_meta_cap( 'manage_privacy_options', $user_id ) );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	199	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	200
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	201	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	202	case 'read_post':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	203	case 'read_page':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	204	$post = get_post( $args[0] );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	205	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	206	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	207	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	208	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	209
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	210	if ( 'revision' == $post->post_type ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	211	$post = get_post( $post->post_parent );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	212	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	213	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	214	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	215	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	216	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	217
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	218	$post_type = get_post_type_object( $post->post_type );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	219	if ( ! $post_type ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	220	/* translators: 1: post type, 2: capability name */
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	221	_doing_it_wrong( __FUNCTION__, sprintf( __( 'The post type %1$s is not registered, so it may not be reliable to check the capability "%2$s" against a post of that type.' ), $post->post_type, $cap ), '4.4.0' );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	222	$caps[] = 'edit_others_posts';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	223	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	224	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	225
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	226	if ( ! $post_type->map_meta_cap ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	227	$caps[] = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	228	// Prior to 3.1 we would re-call map_meta_cap here.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	229	if ( 'read_post' == $cap )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	230	$cap = $post_type->cap->$cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	231	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	232	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	233
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	234	$status_obj = get_post_status_object( $post->post_status );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	235	if ( $status_obj->public ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	236	$caps[] = $post_type->cap->read;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	237	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	238	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	239
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	240	if ( $post->post_author && $user_id == $post->post_author ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	241	$caps[] = $post_type->cap->read;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	242	} elseif ( $status_obj->private ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	243	$caps[] = $post_type->cap->read_private_posts;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	244	} else {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	245	$caps = map_meta_cap( 'edit_post', $user_id, $post->ID );
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	246	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	247	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	248	case 'publish_post':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	249	$post = get_post( $args[0] );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	250	if ( ! $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	251	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	252	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	253	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	254
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	255	$post_type = get_post_type_object( $post->post_type );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	256	if ( ! $post_type ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	257	/* translators: 1: post type, 2: capability name */
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	258	_doing_it_wrong( __FUNCTION__, sprintf( __( 'The post type %1$s is not registered, so it may not be reliable to check the capability "%2$s" against a post of that type.' ), $post->post_type, $cap ), '4.4.0' );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	259	$caps[] = 'edit_others_posts';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	260	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	261	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	262
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	263	$caps[] = $post_type->cap->publish_posts;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	264	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	265	case 'edit_post_meta':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	266	case 'delete_post_meta':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	267	case 'add_post_meta':
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	268	case 'edit_comment_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	269	case 'delete_comment_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	270	case 'add_comment_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	271	case 'edit_term_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	272	case 'delete_term_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	273	case 'add_term_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	274	case 'edit_user_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	275	case 'delete_user_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	276	case 'add_user_meta':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	277	list( $_, $object_type, $_ ) = explode( '_', $cap );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	278	$object_id = (int) $args[0];
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	279	$object_subtype = get_object_subtype( $object_type, $object_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	280
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	281	if ( empty( $object_subtype ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	282	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	283	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	284	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	285
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	286	$caps = map_meta_cap( "edit_{$object_type}", $user_id, $object_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	287
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	288	$meta_key = isset( $args[1] ) ? $args[1] : false;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	289
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	290	if ( $meta_key ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	291	$allowed = ! is_protected_meta( $meta_key, $object_type );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	292
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	293	if ( ! empty( $object_subtype ) && has_filter( "auth_{$object_type}_meta_{$meta_key}_for_{$object_subtype}" ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	294
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	295	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	296	* Filters whether the user is allowed to edit a specific meta key of a specific object type and subtype.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	297	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	298	* The dynamic portions of the hook name, `$object_type`, `$meta_key`,
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	299	* and `$object_subtype`, refer to the metadata object type (comment, post, term or user),
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	300	* the meta key value, and the object subtype respectively.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	301	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	302	* @since 4.9.8
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	303	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	304	* @param bool $allowed Whether the user can add the object meta. Default false.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	305	* @param string $meta_key The meta key.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	306	* @param int $object_id Object ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	307	* @param int $user_id User ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	308	* @param string $cap Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	309	* @param string[] $caps Array of the user's capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	310	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	311	$allowed = apply_filters( "auth_{$object_type}_meta_{$meta_key}_for_{$object_subtype}", $allowed, $meta_key, $object_id, $user_id, $cap, $caps );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	312	} else {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	313
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	314	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	315	* Filters whether the user is allowed to edit a specific meta key of a specific object type.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	316	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	317	* Return true to have the mapped meta caps from `edit_{$object_type}` apply.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	318	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	319	* The dynamic portion of the hook name, `$object_type` refers to the object type being filtered.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	320	* The dynamic portion of the hook name, `$meta_key`, refers to the meta key passed to map_meta_cap().
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	321	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	322	* @since 3.3.0 As `auth_post_meta_{$meta_key}`.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	323	* @since 4.6.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	324	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	325	* @param bool $allowed Whether the user can add the object meta. Default false.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	326	* @param string $meta_key The meta key.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	327	* @param int $object_id Object ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	328	* @param int $user_id User ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	329	* @param string $cap Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	330	* @param string[] $caps Array of the user's capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	331	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	332	$allowed = apply_filters( "auth_{$object_type}_meta_{$meta_key}", $allowed, $meta_key, $object_id, $user_id, $cap, $caps );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	333	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	334
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	335	if ( ! empty( $object_subtype ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	336
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	337	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	338	* Filters whether the user is allowed to edit meta for specific object types/subtypes.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	339	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	340	* Return true to have the mapped meta caps from `edit_{$object_type}` apply.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	341	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	342	* The dynamic portion of the hook name, `$object_type` refers to the object type being filtered.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	343	* The dynamic portion of the hook name, `$object_subtype` refers to the object subtype being filtered.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	344	* The dynamic portion of the hook name, `$meta_key`, refers to the meta key passed to map_meta_cap().
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	345	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	346	* @since 4.6.0 As `auth_post_{$post_type}_meta_{$meta_key}`.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	347	* @since 4.7.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	348	* @deprecated 4.9.8 Use `auth_{$object_type}_meta_{$meta_key}_for_{$object_subtype}`
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	349	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	350	* @param bool $allowed Whether the user can add the object meta. Default false.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	351	* @param string $meta_key The meta key.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	352	* @param int $object_id Object ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	353	* @param int $user_id User ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	354	* @param string $cap Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	355	* @param string[] $caps Array of the user's capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	356	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	357	$allowed = apply_filters_deprecated( "auth_{$object_type}_{$object_subtype}_meta_{$meta_key}", array( $allowed, $meta_key, $object_id, $user_id, $cap, $caps ), '4.9.8', "auth_{$object_type}_meta_{$meta_key}_for_{$object_subtype}" );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	358	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	359
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	360	if ( ! $allowed ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	361	$caps[] = $cap;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	362	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	363	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	364	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	365	case 'edit_comment':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	366	$comment = get_comment( $args[0] );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	367	if ( ! $comment ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	368	$caps[] = 'do_not_allow';
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	369	break;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	370	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	371
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	372	$post = get_post( $comment->comment_post_ID );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	373
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	374	/*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	375	* If the post doesn't exist, we have an orphaned comment.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	376	* Fall back to the edit_posts capability, instead.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	377	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	378	if ( $post ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	379	$caps = map_meta_cap( 'edit_post', $user_id, $post->ID );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	380	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	381	$caps = map_meta_cap( 'edit_posts', $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	382	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	383	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	384	case 'unfiltered_upload':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	385	if ( defined('ALLOW_UNFILTERED_UPLOADS') && ALLOW_UNFILTERED_UPLOADS && ( !is_multisite() \|\| is_super_admin( $user_id ) ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	386	$caps[] = $cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	387	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	388	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	389	break;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	390	case 'edit_css' :
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	391	case 'unfiltered_html' :
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	392	// Disallow unfiltered_html for all users, even admins and super admins.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	393	if ( defined( 'DISALLOW_UNFILTERED_HTML' ) && DISALLOW_UNFILTERED_HTML )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	394	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	395	elseif ( is_multisite() && ! is_super_admin( $user_id ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	396	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	397	else
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	398	$caps[] = 'unfiltered_html';
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	399	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	400	case 'edit_files':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	401	case 'edit_plugins':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	402	case 'edit_themes':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	403	// Disallow the file editors.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	404	if ( defined( 'DISALLOW_FILE_EDIT' ) && DISALLOW_FILE_EDIT )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	405	$caps[] = 'do_not_allow';
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	406	elseif ( ! wp_is_file_mod_allowed( 'capability_edit_themes' ) )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	407	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	408	elseif ( is_multisite() && ! is_super_admin( $user_id ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	409	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	410	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	411	$caps[] = $cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	412	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	413	case 'update_plugins':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	414	case 'delete_plugins':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	415	case 'install_plugins':
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	416	case 'upload_plugins':
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	417	case 'update_themes':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	418	case 'delete_themes':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	419	case 'install_themes':
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	420	case 'upload_themes':
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	421	case 'update_core':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	422	// Disallow anything that creates, deletes, or updates core, plugin, or theme files.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	423	// Files in uploads are excepted.
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	424	if ( ! wp_is_file_mod_allowed( 'capability_update_core' ) ) {
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	425	$caps[] = 'do_not_allow';
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	426	} elseif ( is_multisite() && ! is_super_admin( $user_id ) ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	427	$caps[] = 'do_not_allow';
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	428	} elseif ( 'upload_themes' === $cap ) {
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	429	$caps[] = 'install_themes';
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	430	} elseif ( 'upload_plugins' === $cap ) {
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	431	$caps[] = 'install_plugins';
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	432	} else {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	433	$caps[] = $cap;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	434	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	435	break;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	436	case 'install_languages':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	437	case 'update_languages':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	438	if ( ! wp_is_file_mod_allowed( 'can_install_language_pack' ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	439	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	440	} elseif ( is_multisite() && ! is_super_admin( $user_id ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	441	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	442	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	443	$caps[] = 'install_languages';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	444	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	445	break;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	446	case 'activate_plugins':
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	447	case 'deactivate_plugins':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	448	case 'activate_plugin':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	449	case 'deactivate_plugin':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	450	$caps[] = 'activate_plugins';
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	451	if ( is_multisite() ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	452	// update_, install_, and delete_ are handled above with is_super_admin().
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	453	$menu_perms = get_site_option( 'menu_items', array() );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	454	if ( empty( $menu_perms['plugins'] ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	455	$caps[] = 'manage_network_plugins';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	456	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	457	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	458	case 'delete_user':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	459	case 'delete_users':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	460	// If multisite only super admins can delete users.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	461	if ( is_multisite() && ! is_super_admin( $user_id ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	462	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	463	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	464	$caps[] = 'delete_users'; // delete_user maps to delete_users.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	465	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	466	case 'create_users':
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	467	if ( !is_multisite() )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	468	$caps[] = $cap;
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	469	elseif ( is_super_admin( $user_id ) \|\| get_site_option( 'add_new_users' ) )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	470	$caps[] = $cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	471	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	472	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	473	break;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	474	case 'manage_links' :
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	475	if ( get_option( 'link_manager_enabled' ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	476	$caps[] = $cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	477	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	478	$caps[] = 'do_not_allow';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	479	break;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	480	case 'customize' :
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	481	$caps[] = 'edit_theme_options';
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	482	break;
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	483	case 'delete_site':
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	484	if ( is_multisite() ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	485	$caps[] = 'manage_options';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	486	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	487	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	488	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	489	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	490	case 'edit_term':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	491	case 'delete_term':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	492	case 'assign_term':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	493	$term_id = (int) $args[0];
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	494	$term = get_term( $term_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	495	if ( ! $term \|\| is_wp_error( $term ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	496	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	497	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	498	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	499
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	500	$tax = get_taxonomy( $term->taxonomy );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	501	if ( ! $tax ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	502	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	503	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	504	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	505
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	506	if ( 'delete_term' === $cap && ( $term->term_id == get_option( 'default_' . $term->taxonomy ) ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	507	$caps[] = 'do_not_allow';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	508	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	509	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	510
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	511	$taxo_cap = $cap . 's';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	512
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	513	$caps = map_meta_cap( $tax->cap->$taxo_cap, $user_id, $term_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	514
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	515	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	516	case 'manage_post_tags':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	517	case 'edit_categories':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	518	case 'edit_post_tags':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	519	case 'delete_categories':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	520	case 'delete_post_tags':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	521	$caps[] = 'manage_categories';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	522	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	523	case 'assign_categories':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	524	case 'assign_post_tags':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	525	$caps[] = 'edit_posts';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	526	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	527	case 'create_sites':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	528	case 'delete_sites':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	529	case 'manage_network':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	530	case 'manage_sites':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	531	case 'manage_network_users':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	532	case 'manage_network_plugins':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	533	case 'manage_network_themes':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	534	case 'manage_network_options':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	535	case 'upgrade_network':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	536	$caps[] = $cap;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	537	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	538	case 'setup_network':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	539	if ( is_multisite() ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	540	$caps[] = 'manage_network_options';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	541	} else {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	542	$caps[] = 'manage_options';
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	543	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	544	break;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	545	case 'export_others_personal_data':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	546	case 'erase_others_personal_data':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	547	case 'manage_privacy_options':
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	548	$caps[] = is_multisite() ? 'manage_network' : 'manage_options';
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	549	break;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	550	default:
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	551	// Handle meta capabilities for custom post types.
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	552	global $post_type_meta_caps;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	553	if ( isset( $post_type_meta_caps[ $cap ] ) ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	554	$args = array_merge( array( $post_type_meta_caps[ $cap ], $user_id ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	555	return call_user_func_array( 'map_meta_cap', $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	556	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	557
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	558	// If no meta caps match, return the original cap.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	559	$caps[] = $cap;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	560	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	561
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	562	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	563	* Filters a user's capabilities depending on specific context and/or privilege.
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	564	*
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	565	* @since 2.8.0
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	566	*
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	567	* @param array $caps Returns the user's actual capabilities.
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	568	* @param string $cap Capability name.
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	569	* @param int $user_id The user ID.
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	570	* @param array $args Adds the context to the cap. Typically the object ID.
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	571	*/
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	572	return apply_filters( 'map_meta_cap', $caps, $cap, $user_id, $args );
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	573	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	574
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	575	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	576	* Whether the current user has a specific capability.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	577	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	578	* While checking against particular roles in place of a capability is supported
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	579	* in part, this practice is discouraged as it may produce unreliable results.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	580	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	581	* Note: Will always return true if the current user is a super admin, unless specifically denied.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	582	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	583	* @since 2.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	584	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	585	* @see WP_User::has_cap()
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	586	* @see map_meta_cap()
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	587	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	588	* @param string $capability Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	589	* @param int $object_id Optional. ID of the specific object to check against if `$capability` is a "meta" cap.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	590	* "Meta" capabilities, e.g. 'edit_post', 'edit_user', etc., are capabilities used
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	591	* by map_meta_cap() to map to other "primitive" capabilities, e.g. 'edit_posts',
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	592	* 'edit_others_posts', etc. Accessed via func_get_args() and passed to WP_User::has_cap(),
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	593	* then map_meta_cap().
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	594	* @return bool Whether the current user has the given capability. If `$capability` is a meta cap and `$object_id` is
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	595	* passed, whether the current user has the given meta capability for the given object.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	596	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	597	function current_user_can( $capability ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	598	$current_user = wp_get_current_user();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	599
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	600	if ( empty( $current_user ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	601	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	602
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	603	$args = array_slice( func_get_args(), 1 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	604	$args = array_merge( array( $capability ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	605
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	606	return call_user_func_array( array( $current_user, 'has_cap' ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	607	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	608
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	609	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	610	* Whether the current user has a specific capability for a given site.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	611	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	612	* @since 3.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	613	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	614	* @param int $blog_id Site ID.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	615	* @param string $capability Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	616	* @return bool Whether the user has the given capability.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	617	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	618	function current_user_can_for_blog( $blog_id, $capability ) {
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	619	$switched = is_multisite() ? switch_to_blog( $blog_id ) : false;
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	620
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	621	$current_user = wp_get_current_user();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	622
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	623	if ( empty( $current_user ) ) {
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	624	if ( $switched ) {
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	625	restore_current_blog();
5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	626	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	627	return false;
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	628	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	629
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	630	$args = array_slice( func_get_args(), 2 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	631	$args = array_merge( array( $capability ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	632
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	633	$can = call_user_func_array( array( $current_user, 'has_cap' ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	634
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	635	if ( $switched ) {
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	636	restore_current_blog();
5 5e2f62d02dcd upgrade wordpress + plugins ymh <ymh.work@gmail.com> parents: 0 diff changeset	637	}
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	638
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	639	return $can;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	640	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	641
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	642	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	643	* Whether the author of the supplied post has a specific capability.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	644	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	645	* @since 2.9.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	646	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	647	* @param int\|WP_Post $post Post ID or post object.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	648	* @param string $capability Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	649	* @return bool Whether the post author has the given capability.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	650	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	651	function author_can( $post, $capability ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	652	if ( !$post = get_post($post) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	653	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	654
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	655	$author = get_userdata( $post->post_author );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	656
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	657	if ( ! $author )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	658	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	659
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	660	$args = array_slice( func_get_args(), 2 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	661	$args = array_merge( array( $capability ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	662
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	663	return call_user_func_array( array( $author, 'has_cap' ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	664	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	665
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	666	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	667	* Whether a particular user has a specific capability.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	668	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	669	* @since 3.1.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	670	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	671	* @param int\|WP_User $user User ID or object.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	672	* @param string $capability Capability name.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	673	* @return bool Whether the user has the given capability.
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	674	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	675	function user_can( $user, $capability ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	676	if ( ! is_object( $user ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	677	$user = get_userdata( $user );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	678
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	679	if ( ! $user \|\| ! $user->exists() )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	680	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	681
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	682	$args = array_slice( func_get_args(), 2 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	683	$args = array_merge( array( $capability ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	684
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	685	return call_user_func_array( array( $user, 'has_cap' ), $args );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	686	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	687
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	688	/**
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	689	* Retrieves the global WP_Roles instance and instantiates it if necessary.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	690	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	691	* @since 4.3.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	692	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	693	* @global WP_Roles $wp_roles WP_Roles global instance.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	694	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	695	* @return WP_Roles WP_Roles global instance if not already instantiated.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	696	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	697	function wp_roles() {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	698	global $wp_roles;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	699
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	700	if ( ! isset( $wp_roles ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	701	$wp_roles = new WP_Roles();
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	702	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	703	return $wp_roles;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	704	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	705
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	706	/**
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	707	* Retrieve role object.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	708	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	709	* @since 2.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	710	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	711	* @param string $role Role name.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	712	* @return WP_Role\|null WP_Role object if found, null if the role does not exist.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	713	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	714	function get_role( $role ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	715	return wp_roles()->get_role( $role );
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	716	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	717
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	718	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	719	* Add role, if it does not exist.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	720	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	721	* @since 2.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	722	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	723	* @param string $role Role name.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	724	* @param string $display_name Display name for role.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	725	* @param array $capabilities List of capabilities, e.g. array( 'edit_posts' => true, 'delete_posts' => false );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	726	* @return WP_Role\|null WP_Role object if role is added, null if already exists.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	727	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	728	function add_role( $role, $display_name, $capabilities = array() ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	729	if ( empty( $role ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	730	return;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	731	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	732	return wp_roles()->add_role( $role, $display_name, $capabilities );
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	733	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	734
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	735	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	736	* Remove role, if it exists.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	737	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	738	* @since 2.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	739	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	740	* @param string $role Role name.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	741	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	742	function remove_role( $role ) {
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	743	wp_roles()->remove_role( $role );
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	744	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	745
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	746	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	747	* Retrieve a list of super admins.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	748	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	749	* @since 3.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	750	*
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	751	* @global array $super_admins
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	752	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	753	* @return array List of super admin logins
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	754	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	755	function get_super_admins() {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	756	global $super_admins;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	757
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	758	if ( isset($super_admins) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	759	return $super_admins;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	760	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	761	return get_site_option( 'site_admins', array('admin') );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	762	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	763
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	764	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	765	* Determine if user is a site admin.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	766	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	767	* @since 3.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	768	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	769	* @param int $user_id (Optional) The ID of a user. Defaults to the current user.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	770	* @return bool True if the user is a site admin.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	771	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	772	function is_super_admin( $user_id = false ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	773	if ( ! $user_id \|\| $user_id == get_current_user_id() )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	774	$user = wp_get_current_user();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	775	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	776	$user = get_userdata( $user_id );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	777
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	778	if ( ! $user \|\| ! $user->exists() )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	779	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	780
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	781	if ( is_multisite() ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	782	$super_admins = get_super_admins();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	783	if ( is_array( $super_admins ) && in_array( $user->user_login, $super_admins ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	784	return true;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	785	} else {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	786	if ( $user->has_cap('delete_users') )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	787	return true;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	788	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	789
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	790	return false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	791	}
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	792
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	793	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	794	* Grants Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	795	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	796	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	797	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	798	* @global array $super_admins
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	799	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	800	* @param int $user_id ID of the user to be granted Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	801	* @return bool True on success, false on failure. This can fail when the user is
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	802	* already a super admin or when the `$super_admins` global is defined.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	803	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	804	function grant_super_admin( $user_id ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	805	// If global super_admins override is defined, there is nothing to do here.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	806	if ( isset( $GLOBALS['super_admins'] ) \|\| ! is_multisite() ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	807	return false;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	808	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	809
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	810	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	811	* Fires before the user is granted Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	812	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	813	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	814	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	815	* @param int $user_id ID of the user that is about to be granted Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	816	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	817	do_action( 'grant_super_admin', $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	818
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	819	// Directly fetch site_admins instead of using get_super_admins()
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	820	$super_admins = get_site_option( 'site_admins', array( 'admin' ) );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	821
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	822	$user = get_userdata( $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	823	if ( $user && ! in_array( $user->user_login, $super_admins ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	824	$super_admins[] = $user->user_login;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	825	update_site_option( 'site_admins' , $super_admins );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	826
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	827	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	828	* Fires after the user is granted Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	829	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	830	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	831	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	832	* @param int $user_id ID of the user that was granted Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	833	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	834	do_action( 'granted_super_admin', $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	835	return true;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	836	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	837	return false;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	838	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	839
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	840	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	841	* Revokes Super Admin privileges.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	842	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	843	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	844	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	845	* @global array $super_admins
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	846	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	847	* @param int $user_id ID of the user Super Admin privileges to be revoked from.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	848	* @return bool True on success, false on failure. This can fail when the user's email
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	849	* is the network admin email or when the `$super_admins` global is defined.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	850	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	851	function revoke_super_admin( $user_id ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	852	// If global super_admins override is defined, there is nothing to do here.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	853	if ( isset( $GLOBALS['super_admins'] ) \|\| ! is_multisite() ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	854	return false;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	855	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	856
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	857	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	858	* Fires before the user's Super Admin privileges are revoked.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	859	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	860	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	861	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	862	* @param int $user_id ID of the user Super Admin privileges are being revoked from.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	863	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	864	do_action( 'revoke_super_admin', $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	865
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	866	// Directly fetch site_admins instead of using get_super_admins()
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	867	$super_admins = get_site_option( 'site_admins', array( 'admin' ) );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	868
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	869	$user = get_userdata( $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	870	if ( $user && 0 !== strcasecmp( $user->user_email, get_site_option( 'admin_email' ) ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	871	if ( false !== ( $key = array_search( $user->user_login, $super_admins ) ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	872	unset( $super_admins[$key] );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	873	update_site_option( 'site_admins', $super_admins );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	874
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	875	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	876	* Fires after the user's Super Admin privileges are revoked.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	877	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	878	* @since 3.0.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	879	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	880	* @param int $user_id ID of the user Super Admin privileges were revoked from.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	881	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	882	do_action( 'revoked_super_admin', $user_id );
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	883	return true;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	884	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	885	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	886	return false;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	887	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	888
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	889	/**
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	890	* Filters the user capabilities to grant the 'install_languages' capability as necessary.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	891	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	892	* A user must have at least one out of the 'update_core', 'install_plugins', and
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	893	* 'install_themes' capabilities to qualify for 'install_languages'.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	894	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	895	* @since 4.9.0
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	896	*
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	897	* @param array $allcaps An array of all the user's capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	898	* @return array Filtered array of the user's capabilities.
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	899	*/
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	900	function wp_maybe_grant_install_languages_cap( $allcaps ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	901	if ( ! empty( $allcaps['update_core'] ) \|\| ! empty( $allcaps['install_plugins'] ) \|\| ! empty( $allcaps['install_themes'] ) ) {
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	902	$allcaps['install_languages'] = true;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	903	}
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	904
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	905	return $allcaps;
cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 5 diff changeset	906	}

author	ymh <ymh.work@gmail.com>
	Mon, 14 Oct 2019 17:39:30 +0200
changeset 7	cf61fcea0001
parent 5	5e2f62d02dcd
child 9	177826044cd9
permissions	-rw-r--r--