check_ajax_referer() should look for *only* the auth_cookie, not others that look like they match. Autosave should know that an ajax response of -1 or 0 is a failure. Props mdawaffe
git-svn-id: http://svn.automattic.com/wordpress/trunk@6649 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
f21535a6b1
commit
35bd1677a1
|
@ -28,7 +28,7 @@ function autosave_update_post_ID(response) {
|
||||||
|
|
||||||
if(isNaN(res)) {
|
if(isNaN(res)) {
|
||||||
message = autosaveL10n.errorText.replace(/%response%/g, response);
|
message = autosaveL10n.errorText.replace(/%response%/g, response);
|
||||||
} else {
|
} else if( res > 0 ) {
|
||||||
message = autosaveL10n.saveText.replace(/%time%/g, autosave_cur_time());
|
message = autosaveL10n.saveText.replace(/%time%/g, autosave_cur_time());
|
||||||
jQuery('#post_ID').attr({name: "post_ID"});
|
jQuery('#post_ID').attr({name: "post_ID"});
|
||||||
jQuery('#post_ID').val(res);
|
jQuery('#post_ID').val(res);
|
||||||
|
@ -42,6 +42,8 @@ function autosave_update_post_ID(response) {
|
||||||
jQuery('#_wpnonce').val(html);
|
jQuery('#_wpnonce').val(html);
|
||||||
});
|
});
|
||||||
jQuery('#hiddenaction').val('editpost');
|
jQuery('#hiddenaction').val('editpost');
|
||||||
|
} else {
|
||||||
|
message = autosaveL10n.failText;
|
||||||
}
|
}
|
||||||
jQuery('#autosave').html(message);
|
jQuery('#autosave').html(message);
|
||||||
autosave_enable_buttons();
|
autosave_enable_buttons();
|
||||||
|
|
|
@ -661,8 +661,10 @@ function check_ajax_referer( $action = -1 ) {
|
||||||
$auth_cookie = '';
|
$auth_cookie = '';
|
||||||
$cookie = explode('; ', urldecode(empty($_POST['cookie']) ? $_GET['cookie'] : $_POST['cookie'])); // AJAX scripts must pass cookie=document.cookie
|
$cookie = explode('; ', urldecode(empty($_POST['cookie']) ? $_GET['cookie'] : $_POST['cookie'])); // AJAX scripts must pass cookie=document.cookie
|
||||||
foreach ( $cookie as $tasty ) {
|
foreach ( $cookie as $tasty ) {
|
||||||
if ( false !== strpos($tasty, AUTH_COOKIE) )
|
if ( false !== strpos($tasty, AUTH_COOKIE . '=') ) {
|
||||||
$auth_cookie = substr(strstr($tasty, '='), 1);
|
$auth_cookie = substr(strstr($tasty, '='), 1);
|
||||||
|
break;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if ( empty($auth_cookie) )
|
if ( empty($auth_cookie) )
|
||||||
|
|
|
@ -37,10 +37,11 @@ class WP_Scripts {
|
||||||
|
|
||||||
$this->add( 'prototype', '/wp-includes/js/prototype.js', false, '1.6');
|
$this->add( 'prototype', '/wp-includes/js/prototype.js', false, '1.6');
|
||||||
|
|
||||||
$this->add( 'autosave', '/wp-includes/js/autosave.js', array('jquery', 'schedule'), '20080104');
|
$this->add( 'autosave', '/wp-includes/js/autosave.js', array('prototype', 'sack'), '20080124');
|
||||||
$this->localize( 'autosave', 'autosaveL10n', array(
|
$this->localize( 'autosave', 'autosaveL10n', array(
|
||||||
'autosaveInterval' => apply_filters('autosave_interval', '120'),
|
'autosaveInterval' => apply_filters('autosave_interval', '120'),
|
||||||
'errorText' => __('Error: %response%'),
|
'errorText' => __('Error: %response%'),
|
||||||
|
'failText' => __('Error: Autosave Failed.'),
|
||||||
'saveText' => __('Saved at %time%.'),
|
'saveText' => __('Saved at %time%.'),
|
||||||
'requestFile' => get_option( 'siteurl' ) . '/wp-admin/admin-ajax.php',
|
'requestFile' => get_option( 'siteurl' ) . '/wp-admin/admin-ajax.php',
|
||||||
'savingText' => __('Saving Draft...')
|
'savingText' => __('Saving Draft...')
|
||||||
|
|
Loading…
Reference in New Issue