Commit Graph

486 Commits

Author SHA1 Message Date
Andrew Nacin 52320dc5b3 It is 'Alternative Text', not 'Alternate Text'. props alecrust, RyanJKoehler. fixes #21176.
git-svn-id: http://core.svn.wordpress.org/trunk@21917 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-09-19 16:55:43 +00:00
Andrew Nacin 8886eef8d9 Add nonce_user_logged_out filters to wp_create_nonce() and wp_verify_nonce() for when there is no user ID. Provides plugins the ability to tie a nonce to some other characteristic of the session. props sc0ttkclark, fixes #21111.
git-svn-id: http://core.svn.wordpress.org/trunk@21837 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-09-13 17:17:47 +00:00
Peter Westwood fb917e5d95 Make sure that we always generate random numbers correctly even if the PHP build is slightly broken and truncates large integers.
Fixes #19571 props mdawaffe.


git-svn-id: http://core.svn.wordpress.org/trunk@21685 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-08-31 09:45:50 +00:00
Ryan Boren c55cf716da Use set_url_scheme(). Props johnbillion, MarcusPope. see #19037 #20759
git-svn-id: http://core.svn.wordpress.org/trunk@21664 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-08-30 13:33:00 +00:00
Andrew Nacin 46eb6f0c26 Move the optimization done to get_user_by() in [21376] higher up the stack, into map_meta_cap() and is_super_admin().
This provides nearly the same benefits without possibly receiving a stale object from get_userdata(),
which could affect authentication, and introduce side effects for plugins.

see #21120.



git-svn-id: http://core.svn.wordpress.org/trunk@21563 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-08-20 21:58:34 +00:00
nacin 7127ed1197 Move most instances of new WP_User to get_userdata(). see #21120.
git-svn-id: http://core.svn.wordpress.org/trunk@21413 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-08-03 01:06:05 +00:00
nacin 174dad02bc Optimize get_user_by( 'id', $id ) to return wp_get_current_user() when the current user ID is requested.
Provides for a major performance improvement by preventing repeated instantiations of WP_User in the capabilities API.

see #21120.



git-svn-id: http://core.svn.wordpress.org/trunk@21376 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-07-31 17:45:38 +00:00
nacin 725e0cc1df Remove $wp_secret_key_default.
With the duplicate key checks, this is isn't necessary. It could also cause problems when you
temporarily update to an English translation of a new version before going back to the locale.

see #19599.



git-svn-id: http://core.svn.wordpress.org/trunk@20691 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-05-02 19:29:39 +00:00
duck_ 0915eb5d43 Add missing "?" to gravatar_default URL in get_avatar() to set size parameter correctly. Fixes #20512.
git-svn-id: http://svn.automattic.com/wordpress/trunk@20563 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-22 11:45:31 +00:00
duck_ b0a975512a Don't override the $current_user global in get_currentuserinfo() on an XML-RPC request
if it's non-empty. Fixes capabilities checks for XML-RPC requests. See #20372.


git-svn-id: http://svn.automattic.com/wordpress/trunk@20424 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-10 16:19:53 +00:00
ryan a831898020 When fetching the user in get_currentuserinfo(), make sure it is a valid WP_User object. If it is stdClass, upgrade it to WP_User. If it is WP_Error, an int, or anything else, set the current user to ID 0.
In wp_set_current_user(), return the current user global only if it is a WP_User object. If it is not, fall through and go about setting it up properly.

Formatting cleanups for both functions.

see #20372


git-svn-id: http://svn.automattic.com/wordpress/trunk@20410 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-09 22:01:07 +00:00
nacin 2410e392b9 wp_set_current_user(0) for XMLRPC_REQUEST in get_currentuserinfo(). Ensures that wp_get_current_user() always returns a WP_User object. see #20372.
git-svn-id: http://svn.automattic.com/wordpress/trunk@20402 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-08 01:06:44 +00:00
ryan de41bc288b Introduce WP_User::exists(). see #20372
git-svn-id: http://svn.automattic.com/wordpress/trunk@20378 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-06 19:18:45 +00:00
nacin 20f416f286 Internally cache return values of wp_salt(). Always run the filter. Big performance gains on a pageload that generates hundreds of nonces. see #19599.
git-svn-id: http://svn.automattic.com/wordpress/trunk@20135 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-03-07 03:41:56 +00:00
ryan 6aedd9d0f0 Split the main WP_Query posts query into two queries to avoid temp tables. Leverage cache to avoid second query in persistent cache environments. Props scribu, cheald, prettyboymp. see #18536
git-svn-id: http://svn.automattic.com/wordpress/trunk@19918 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-02-14 15:09:35 +00:00
nacin acd0f7c375 Re-purpose wp_die() for ajax responses.
* Allows unit testing of core ajax actions.
 * wp_die() now has separate filters to choose a handler depending on the context (ajax, XML-RPC, else).
 * wp_die) in ajax context does not need to be called with a string. Conversion takes place before die().
props kurtpayne, see #15327.



git-svn-id: http://svn.automattic.com/wordpress/trunk@19801 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-31 22:12:58 +00:00
nacin 017f5e4aeb Provide a DB fallback for keys in wp_salt(). Fall back when any secret is used more than once. Change how we detect a localized 'put your unique phrase here' -- eliminate $wp_default_secret_key and introduce $wp_secret_key_default to be added during the localized build process, not by translators. fixes #19599.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19771 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-27 18:52:20 +00:00
duck_ 81a7ad2c81 split was deprecated in PHP 5.3.0, so use explode instead. Props garyc40. Fixes #16325.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19726 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-09 21:20:51 +00:00
ryan 81283c0561 Update wp_salt() phpdoc. fixes #18696
git-svn-id: http://svn.automattic.com/wordpress/trunk@19725 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-09 20:52:08 +00:00
ryan 83b131f8e3 User lowercase true, false, null instead of uppercase. Props c3mdigital, mfields. fixes #16302
git-svn-id: http://svn.automattic.com/wordpress/trunk@19687 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-05 20:50:54 +00:00
nacin d56fe066da s/is/if/. props ocean90.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19616 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-12-20 22:06:34 +00:00
nacin 2454f5b0d9 Gravatar emails should be trimmed before being lowered and hashed. props evansolomon. fixes #19614.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19614 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-12-20 22:00:44 +00:00
ryan 07ff8b216b Use one space, not two, after trailing punctuation. fixes #19537
git-svn-id: http://svn.automattic.com/wordpress/trunk@19593 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-12-13 23:45:31 +00:00
duck_ 424cd58652 Correct @param text ordering to put "Optional." in description, see r19019 and #18958. Also remove empty docblock tag.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19030 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-10-20 15:53:57 +00:00
westi 5eef6313ef Improve the parsing of email addresses in wp_mail to re-support RFC2822 nameless "<address@tld.com>" style. Fixes #18463 props kitchin and SergeyBiryukov.
git-svn-id: http://svn.automattic.com/wordpress/trunk@18717 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-09-19 14:30:50 +00:00
duck_ 2f51b9be0d Fix typos in documentation (wp-includes/[i-z]). See #18560.
git-svn-id: http://svn.automattic.com/wordpress/trunk@18639 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-09-05 19:08:15 +00:00
ryan 0f06334e11 Introduce metadata_exists(), WP_User::get_data_by(), WP_User::get(), WP_User::has_prop(). Don't fill user objects with meta. Eliminate data duplication in cache and memory. Props scribu. see #15458
git-svn-id: http://svn.automattic.com/wordpress/trunk@18597 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-24 19:32:59 +00:00
dd32 6fa755e68e Harden up is_user_logged_in() against empty $current_user instances to prevent PHP Notices on XML-RPC requests. Fixes #18458
git-svn-id: http://svn.automattic.com/wordpress/trunk@18558 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-17 08:51:36 +00:00
ryan ec4ccf2900 Deprecate get_userdatabylogin() and get_user_by_email(). Props scribu. fixes #18333
git-svn-id: http://svn.automattic.com/wordpress/trunk@18513 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-05 16:57:31 +00:00
ryan 6c81d023bb Add magic get/set/isset methods to WP_User to avoid data duplication. Standardize on WP_User::ID. Props scribu. see #15458
git-svn-id: http://svn.automattic.com/wordpress/trunk@18504 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-04 03:09:27 +00:00
markjaquith f030e87cdc Throw _doing_it_wrong() when nonce action not passed to check_admin_referer(). props duck_. see #16449
git-svn-id: http://svn.automattic.com/wordpress/trunk@18195 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-06-08 16:56:26 +00:00
westi 5e908c7190 Update wp_mail to correctly call the Address adding functions on PHPMailer for To, CC, BCC in a way which preserves our support for full RFC2822 address specifications.
Older versions of PHPMailer were not too careful about validating what we passed in to them as a plain email address - the new version expects we pass in the Name and Email address seperately.
Fixes #17305 based on a patch from dllh.

git-svn-id: http://svn.automattic.com/wordpress/trunk@18006 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-05-23 11:14:05 +00:00
ryan 7f9f067e60 Use exceptions with phpmailer to avoid headers already sent errors. fixes #17228
git-svn-id: http://svn.automattic.com/wordpress/trunk@17753 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-04-28 18:16:01 +00:00
ryan c5b47b029c Remove setcookie() back compat. Props hakre. see#16920
git-svn-id: http://svn.automattic.com/wordpress/trunk@17612 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-04-06 17:07:59 +00:00
markjaquith b9487742e0 Improvement to check_admin_referer() when called without first argument (PLUGIN AUTHORS: STOP DOING THAT). props indie-ulf. fixes #16449 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@17385 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-02-03 20:42:00 +00:00
ryan 8066547be3 Add some cookie filters to allow plugins more control over SSL cookie delivery. see #15330
git-svn-id: http://svn.automattic.com/wordpress/trunk@17227 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-01-06 04:08:23 +00:00
dd32 9c4b151ba2 Restore pre-3.1 "Status:" header handling for IIS in wp_redirect. Revist in 3.2 to see if it's still required. Fixes #10187
git-svn-id: http://svn.automattic.com/wordpress/trunk@16907 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-14 10:15:31 +00:00
nacin 09e076b152 Remove unnecessary space. props demetris, JohnPBloch. fixes #12797.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16760 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-06 22:56:47 +00:00
nacin de65e1f2f3 Fix arin whois link. props ozh. @todo consider its removal. see #15281.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16411 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-17 00:54:22 +00:00
nacin 81a8f2d3ce Use square brackets instead of braces for string access. props hakre, fixes #13900.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16340 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-13 09:53:55 +00:00
nacin d974a35fb0 Don't notify the author when they posted or moderated the comment. fixes #12774.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16304 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-11 16:28:49 +00:00
ryan 0a0d648660 Send moderation emails to post author. see #6286
git-svn-id: http://svn.automattic.com/wordpress/trunk@16223 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-06 15:20:50 +00:00
ryan 98c65bd2f7 Don't fire wp_notify_postauthor() when the author moderated the comment. Props mrmist. fixes #12774
git-svn-id: http://svn.automattic.com/wordpress/trunk@16208 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-05 15:36:04 +00:00
ryan 9c31fd7c70 First pass of user admin. Network admin and screen cleanups. see #14696
git-svn-id: http://svn.automattic.com/wordpress/trunk@15746 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-07 19:34:18 +00:00
dd32 9ce6d04ffb Retire IIS 3,4,5 Set-Cookie redirection workaround. See [2436] for original implementation. See #10187
git-svn-id: http://svn.automattic.com/wordpress/trunk@15682 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-02 04:02:24 +00:00
ryan b482fe4499 Link directly to comment in email notification. Props lancewillett. fixes #12797
git-svn-id: http://svn.automattic.com/wordpress/trunk@15553 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-08-31 18:24:41 +00:00
ryan 977102dbb1 Typo fix. Props pedger, mattsains. fixes #13740
git-svn-id: http://svn.automattic.com/wordpress/trunk@15149 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-06-06 14:44:48 +00:00
ryan 1a552dd029 Strip trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@14924 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-26 02:42:15 +00:00
ryan 2a99808ad2 Email messages should be plain text. Props arena. see #13488
git-svn-id: http://svn.automattic.com/wordpress/trunk@14803 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-22 13:48:38 +00:00
nacin e85693b8a9 False alarm, something else is going on here. Revert [14780], restore [14695]. see #13317.
git-svn-id: http://svn.automattic.com/wordpress/trunk@14781 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-21 15:08:07 +00:00
nacin 39af37992a Revert [14695]. We need to be a bit less strict. see #13317.
git-svn-id: http://svn.automattic.com/wordpress/trunk@14780 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-21 15:03:54 +00:00
westi 6881380fc0 Don't return data for user 1 when passed in junk like an array. See #13317.
git-svn-id: http://svn.automattic.com/wordpress/trunk@14695 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-16 20:34:02 +00:00
nacin 0961da9244 Whitespace and standards in get_userdata. fixes #13317.
git-svn-id: http://svn.automattic.com/wordpress/trunk@14579 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-12 18:59:03 +00:00
ryan 5c48b8b015 Force reauth when auth_redirect() redirects to login. see #12142
git-svn-id: http://svn.automattic.com/wordpress/trunk@14556 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-11 13:44:40 +00:00
wpmuguru 7c47fba666 use same salts/keys across network, see #12142
git-svn-id: http://svn.automattic.com/wordpress/trunk@14458 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-05-04 22:08:53 +00:00
nacin e64a657575 s/blog/site/ in even more places. props PeteMall, see #11644.
git-svn-id: http://svn.automattic.com/wordpress/trunk@14315 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-04-30 03:17:49 +00:00
nacin b18ac8fcdb Deprecate set_current_user() in favor of wp_set_current_user().
git-svn-id: http://svn.automattic.com/wordpress/trunk@14090 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-04-14 22:06:03 +00:00
dd32 442d41291a Tweak new strings for better typography. Props demetris. Fixes #12962
git-svn-id: http://svn.automattic.com/wordpress/trunk@14070 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-04-11 10:41:54 +00:00
ryan 11dc8e15c9 Check for urls that have a scheme but no host in wp_validate_redirect().
git-svn-id: http://svn.automattic.com/wordpress/trunk@13878 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-29 16:47:17 +00:00
nacin 8c8bf5039f Remove unnecessary ternary operators such as (expr) ? true : false.
git-svn-id: http://svn.automattic.com/wordpress/trunk@13769 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-19 21:15:00 +00:00
ryan e25a65b36a Trim trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@13733 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-17 16:27:25 +00:00
ryan 2486cc70f7 Restrict schemes allowed in wp_validate_redirect()
git-svn-id: http://svn.automattic.com/wordpress/trunk@13657 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-11 14:54:11 +00:00
ryan 086ad7d933 Improve user listing performance. Props miqrogroove. see #11914
git-svn-id: http://svn.automattic.com/wordpress/trunk@13576 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-03 19:08:30 +00:00
matt 73a11f4d4e Better subdomains for faster Gravatar loading. An update to [13385].
git-svn-id: http://svn.automattic.com/wordpress/trunk@13560 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-03-02 21:59:15 +00:00
nacin 1cade6654c Allow multiple To: recipients in wp_mail(). Improve handling of \r\n in headers and multiple CC/BCC headers. fixes #10420
git-svn-id: http://svn.automattic.com/wordpress/trunk@13456 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-27 16:10:45 +00:00
nacin f1f86f16e3 Remove explicit references to the post ID from moderation and comment e-mails. Fixes #12388
git-svn-id: http://svn.automattic.com/wordpress/trunk@13432 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-26 17:18:59 +00:00
ryan a312eea3a7 Hash to static gravatar domains. Props apokalyptik.
git-svn-id: http://svn.automattic.com/wordpress/trunk@13385 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-24 20:50:40 +00:00
nacin 8bcc5969dc Spelling and grammar fun. Fixes #11875 props cnorris23
git-svn-id: http://svn.automattic.com/wordpress/trunk@13382 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-24 20:13:23 +00:00
nacin 2dcfc0913b Remove unused 'secret' option. Fixes #12221
git-svn-id: http://svn.automattic.com/wordpress/trunk@13309 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-22 20:27:02 +00:00
dd32 679250491d Variable Cleanup, Unused variables, Typo'd variables, unused code blocks. Fixes #12299
git-svn-id: http://svn.automattic.com/wordpress/trunk@13242 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-20 02:01:46 +00:00
nacin 8d39376b5a Add filter to get_avatar() to allow avatars for custom comment types. Props usermrpapa. Fixes #11880
git-svn-id: http://svn.automattic.com/wordpress/trunk@13231 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-19 20:27:56 +00:00
nacin 91e0c6a98c Allow more special characters in wp_generate_password() second pass. props sivel, see #12159
git-svn-id: http://svn.automattic.com/wordpress/trunk@13206 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-19 00:03:36 +00:00
nacin 54c4ac3c8f Move deprecated pluggable functions to a new file to lower their profile. Also throw deprecated warnings if a plugin defines a deprecated pluggable function. See #11388
git-svn-id: http://svn.automattic.com/wordpress/trunk@13204 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-18 23:17:06 +00:00
nacin db0e494344 Use an expanded special character set when generating auth keys and salts via wp_generate_password(). Props sivel, see #12159
git-svn-id: http://svn.automattic.com/wordpress/trunk@13137 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-14 04:06:30 +00:00
nacin 5871a56009 Fall back to wp_generate_password() in setup-config.php if HTTPS request for secret keys fails. Also use pretty link to secret-key API, see #12159
git-svn-id: http://svn.automattic.com/wordpress/trunk@13133 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-14 02:47:45 +00:00
nacin fd5f785cce Move deprecated functions to deprecated.php. Deprecate get_the_attachment_link() for wp_get_attachment_link(), get_attachment_icon_src() for wp_get_attachment_image_src(),
get_attachment_icon() and get_attachment_innerHTML() for wp_get_attachment_image(), get_link() for get_bookmark(). Add missing deprecated version numbers. Add inline documentation to pluggable functions that are deprecated. See #11388

git-svn-id: http://svn.automattic.com/wordpress/trunk@13093 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-13 06:39:51 +00:00
nacin 833f6172f7 Optimize wp_rand(), only check transient when needed. Fixes #12144.
git-svn-id: http://svn.automattic.com/wordpress/trunk@13080 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-13 03:33:33 +00:00
westi 6289876414 Ensure we ignore the _SALT defines if they are set to the "default" unconfigured values or empty. See #12159.
git-svn-id: http://svn.automattic.com/wordpress/trunk@13058 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-02-11 22:51:51 +00:00
ryan 9fc2bef3d1 Move blog deletion to ms-delete-site.php. see #11644
git-svn-id: http://svn.automattic.com/wordpress/trunk@12828 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-01-25 22:46:41 +00:00
ryan 6da55f7792 Trailing whitespace cleanup
git-svn-id: http://svn.automattic.com/wordpress/trunk@12733 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-01-15 22:11:12 +00:00
westi 904b89dc9f Run the old WPMU random_password filter in wp_generate_password(). Fixes #11746 props uglyrobot.
git-svn-id: http://svn.automattic.com/wordpress/trunk@12653 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-01-07 20:49:04 +00:00
ryan ec8e347792 Introduce home_url(). Props Denis-de-Bernardy, hakre. see #9008
git-svn-id: http://svn.automattic.com/wordpress/trunk@12598 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-01-04 17:23:29 +00:00
ryan 6ae74dfd09 Don't fall back to logged in cookie if in the admin.
git-svn-id: http://svn.automattic.com/wordpress/trunk@12408 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-12-15 19:57:20 +00:00
azaozz acf271551d Add 'trash' in comment moderation emails, props nacin, fixes #11426
git-svn-id: http://svn.automattic.com/wordpress/trunk@12402 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-12-15 10:55:55 +00:00
westi 2c4aadf49f Fix some more html encoding in email subject issues. Fixes #9913.
git-svn-id: http://svn.automattic.com/wordpress/trunk@12398 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-12-14 22:09:54 +00:00
westi 5d087be7e9 Don't html encode quotes in the blogname in email subjects as this is a plain text output. Fixes #9913 props tenpura.
git-svn-id: http://svn.automattic.com/wordpress/trunk@12388 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-12-13 11:38:45 +00:00
markjaquith 305f103c4f Use http_response_code for wp_redirect(), so that fastcgi hosts always get 301 redirect love. props error. fixes #6779
git-svn-id: http://svn.automattic.com/wordpress/trunk@12358 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-12-10 08:33:17 +00:00
azaozz efa493655e Show the login form in a popup when autosave hits the login grace period, fixes #10704
git-svn-id: http://svn.automattic.com/wordpress/trunk@12021 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-10-11 11:26:59 +00:00
westi 6784dc62c6 Fix notice when adding tag from the Post Tags page. Fixes #10808 props prettyboymp.
git-svn-id: http://svn.automattic.com/wordpress/trunk@11951 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-09-18 21:06:23 +00:00
ryan 8e3808bce2 Remove trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@11930 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-09-14 14:03:32 +00:00
ryan c6debbd596 Filter the cookie scheme in auth_redirect(). Props nbachiyski. fixes #10740
git-svn-id: http://svn.automattic.com/wordpress/trunk@11905 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-09-08 15:25:29 +00:00
azaozz 2040971211 "Trash" status for comments updates, props caesarsgrunt, see #4529
git-svn-id: http://svn.automattic.com/wordpress/trunk@11741 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-07-24 07:23:11 +00:00
azaozz d2fec31c0e "Trash" status for comments, first run, props caesarsgrunt, see #4529
git-svn-id: http://svn.automattic.com/wordpress/trunk@11731 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-07-21 03:11:12 +00:00
westi 0dba5eddcf Introduce _deep_replace() and use it to improve the stripping of percent encoded values from urls. Fixes #10226 for trunk.
git-svn-id: http://svn.automattic.com/wordpress/trunk@11615 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-06-20 17:42:24 +00:00
markjaquith 6283b5aaf1 Create wp_validate_redirect(), have the upgrade done link use it. props Westi. fixes #10193 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@11610 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-06-19 19:30:17 +00:00
azaozz 7182b0dbb4 Add more translator comments for placeholders, props nbachiyski, fixes #10002
git-svn-id: http://svn.automattic.com/wordpress/trunk@11506 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-06-02 07:21:42 +00:00
ryan c652a8f9e3 Add comment_moderation_headers filter. Props mtdewvirus. fixes #9969
git-svn-id: http://svn.automattic.com/wordpress/trunk@11489 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-05-29 20:00:06 +00:00
ryan 2df887bd07 Trim tailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@11450 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-05-24 23:47:49 +00:00
ryan 7f6ecdd706 Don't notify post author of own comments. PrProps josephscott. fixes #8695
git-svn-id: http://svn.automattic.com/wordpress/trunk@11387 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-05-18 18:36:04 +00:00
markjaquith 6c2ffddf31 _a(), _ea(), _xa(), attr() are now esc_attr__(), esc_attr_e(), esc_attr_x(), esc_attr() -- still short, but less cryptic. see #9650
git-svn-id: http://svn.automattic.com/wordpress/trunk@11204 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-05-05 19:43:53 +00:00
markjaquith 42ae25cb48 Exclamation mark is a valid and safe character in a URI. props hakre. fixes #8904
git-svn-id: http://svn.automattic.com/wordpress/trunk@11147 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-30 23:52:32 +00:00
westi b4743048ab Fix wp_mails handling of custom boundaries. Fixes #5204 props filosofo.
git-svn-id: http://svn.automattic.com/wordpress/trunk@11136 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-30 07:25:47 +00:00
ryan 2d489767bb s/attribute_escape/attr/. see #9650
git-svn-id: http://svn.automattic.com/wordpress/trunk@11109 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-28 05:58:45 +00:00
ryan 6db7e7fbc5 Don't notify post author of own comments. Props Denis-de-Bernardy. fixes #8695
git-svn-id: http://svn.automattic.com/wordpress/trunk@11057 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-22 20:55:04 +00:00
ryan 35e6b4c698 Wrap get_user_by() in function_exists check. Props alexrabe. fixes #9617
git-svn-id: http://svn.automattic.com/wordpress/trunk@11033 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-21 20:27:22 +00:00
ryan 4956e5d453 Cache user lookups made by nicename. Add get_user_by(). fixes #4170
git-svn-id: http://svn.automattic.com/wordpress/trunk@10992 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-17 21:25:11 +00:00
ryan 1a0ce2d2b3 Fix headers array processing for wp_mail(). Props gortsleigh. fixes #9284
git-svn-id: http://svn.automattic.com/wordpress/trunk@10967 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-17 00:06:18 +00:00
ryan fe648c9e20 Updates to wp_login_url() and wp_logout_url(). Use them in more places. Props wnorris. fixes #9536
git-svn-id: http://svn.automattic.com/wordpress/trunk@10931 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-04-14 18:31:49 +00:00
ryan 693fd1774e Make random_seed a transient
git-svn-id: http://svn.automattic.com/wordpress/trunk@10838 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-25 20:03:57 +00:00
ryan e8b6fe7347 Trim trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@10810 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-18 02:43:45 +00:00
ryan d43bd8177c Use wpdb::insert() and update(). Props DD32. see #6836
git-svn-id: http://svn.automattic.com/wordpress/trunk@10730 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-06 04:27:51 +00:00
ryan cf07babee1 Add auth_cookie_expiration filter
git-svn-id: http://svn.automattic.com/wordpress/trunk@10691 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-03 22:51:55 +00:00
ryan 5d3a29dacd Add auth_redirect action
git-svn-id: http://svn.automattic.com/wordpress/trunk@10685 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-02 23:42:28 +00:00
azaozz 00b6ce601c Fix typo, props sambauers
git-svn-id: http://svn.automattic.com/wordpress/trunk@10678 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-03-02 00:28:52 +00:00
ryan 3f22da5123 Don't trigger wp_login_failed action for empty usernames or passwords.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10638 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-23 17:33:02 +00:00
ryan fc660a45a3 Use _n(). Props nbachiyski. fixes #9111
git-svn-id: http://svn.automattic.com/wordpress/trunk@10606 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-20 19:35:16 +00:00
westi f1098f3644 If we have to generate people salts then make them 64 chars long. Fixes #8647 props sivel.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10577 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-15 16:21:28 +00:00
westi ea903eba7e Add documentation to detail reasoning for default from address. See #5007 props pishmishy
git-svn-id: http://svn.automattic.com/wordpress/trunk@10575 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-15 13:31:43 +00:00
ryan b3b3e7f2ce If no angle brackets, assume email address. Props donncha. fixes #9086 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@10541 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-10 23:51:51 +00:00
ryan 002f1ebce3 Seed cookie hash key with a fragment from the password hash
git-svn-id: http://svn.automattic.com/wordpress/trunk@10486 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-02-03 05:03:16 +00:00
ryan 07489f05e8 Pluggables phpdoc updates. Props filosofo. fixes #9001
git-svn-id: http://svn.automattic.com/wordpress/trunk@10469 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-30 18:08:28 +00:00
westi 8855daf707 Much better handling of wp-login.php page load. See #8938 props wnorris.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10463 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-29 21:30:16 +00:00
ryan aea6896bf8 Use secure.gravatar.com for SSL avatar requests. fixes #8988 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@10461 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-29 17:58:16 +00:00
westi f02590c921 Don't show the error on normal login page loads. See #8938.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10455 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-28 22:11:49 +00:00
westi a98d30864f Make authentication more pluggable than ever before. See #8938 props wnorris.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10437 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-24 22:38:19 +00:00
ryan 1761cba906 Remove update_user_cache(). Long dead.
git-svn-id: http://svn.automattic.com/wordpress/trunk@10395 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2009-01-21 19:21:51 +00:00
ryan 13dec849de phpdoc updates for wp_generate_password(). Props sivel. fixes #8688 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@10271 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-12-30 19:47:59 +00:00
ryan 5dd1a876b8 Update secret-key url. Props sivel. fixes #8687 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@10241 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-12-22 23:00:13 +00:00
ryan e89192b1a8 Strip trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@10150 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-12-09 18:03:31 +00:00
ryan 0f927649f8 Introduce NONCE_SALT and NONCE_KEY
git-svn-id: http://svn.automattic.com/wordpress/trunk@10120 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-12-07 21:31:13 +00:00
markjaquith 0435f3d294 Do not redirect to options.php on login if user was POSTing to options.php from another page. props fitztrev. fixes #8133
git-svn-id: http://svn.automattic.com/wordpress/trunk@9775 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-11-19 05:07:24 +00:00
markjaquith e3c5f05f3c A couple more hCard CSS classes for comments from wnorris. fixes #8264
git-svn-id: http://svn.automattic.com/wordpress/trunk@9764 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-11-18 22:06:51 +00:00
azaozz 469170c44c Fix default Gravatar URLs, props DD32, fixes #8232
git-svn-id: http://svn.automattic.com/wordpress/trunk@9728 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-11-15 23:30:33 +00:00
ryan 40c754df1d Unused var fixes. Props DD32. see #8220
git-svn-id: http://svn.automattic.com/wordpress/trunk@9716 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-11-15 18:10:35 +00:00
ryan ce1cc49825 Provide fallback salt to accommodate custom schemes. Props tellyworth. fixes #8212
git-svn-id: http://svn.automattic.com/wordpress/trunk@9680 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-11-14 16:35:14 +00:00
ryan 9d05b9595a Remove debug
git-svn-id: http://svn.automattic.com/wordpress/trunk@9374 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-28 03:43:52 +00:00
ryan 33f8a5e080 Introduce normalize_whitespace(). Use it instead of wp_text_diff() when checking for identical autosave revisions. Props tellyworth. fixes #7691
git-svn-id: http://svn.automattic.com/wordpress/trunk@9302 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-23 20:03:16 +00:00
ryan 3fc6097a5a phpdoc corrections from jacobsantos. see #7918
git-svn-id: http://svn.automattic.com/wordpress/trunk@9243 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-18 20:46:30 +00:00
westi 8453f12963 Add attachment support to wp_mail. Fixes #7787 props AaronCampbell.
git-svn-id: http://svn.automattic.com/wordpress/trunk@9213 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-16 20:57:49 +00:00
ryan c43a7cf1eb get_avatar() phpdoc update from Speedboxer. fixes #7536
git-svn-id: http://svn.automattic.com/wordpress/trunk@9200 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-16 18:37:05 +00:00
westi 869cd2ffa1 Default to an empty alt attribute on Avatars. Fixes #7536.
git-svn-id: http://svn.automattic.com/wordpress/trunk@9127 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-12 18:03:54 +00:00
ryan 3f5753f4b1 get_comment_type() sets comment_type to 'comment'. Allow for that in get_avatar().
git-svn-id: http://svn.automattic.com/wordpress/trunk@9084 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-05 04:48:17 +00:00
ryan f03180a5e1 Avatar alt fixes from nbachiyski. fixes #7536
git-svn-id: http://svn.automattic.com/wordpress/trunk@9076 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-03 03:20:54 +00:00
ryan f286979c28 Don't show avatar for pingbacks or trackbacks
git-svn-id: http://svn.automattic.com/wordpress/trunk@9075 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-10-03 03:12:42 +00:00
westi 42aaa50b6f Fix notice in check_admin_referrer.
git-svn-id: http://svn.automattic.com/wordpress/trunk@9026 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-09-28 21:08:25 +00:00
ryan d3abd242b0 Don't append HTTPOnly if cookie domain is empty. see #7677
git-svn-id: http://svn.automattic.com/wordpress/trunk@8811 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-09-05 05:35:58 +00:00
ryan 49fe9a77a4 No HTTPOnly for Safari
git-svn-id: http://svn.automattic.com/wordpress/trunk@8810 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-09-05 00:10:34 +00:00
ryan b4de7baf2a HttpOnly for PHP < 5.2. Props _ck_. see #7677
git-svn-id: http://svn.automattic.com/wordpress/trunk@8808 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-09-04 19:55:30 +00:00
ryan c38f460aa6 Try out httponly for auth cookies. see #7677
git-svn-id: http://svn.automattic.com/wordpress/trunk@8798 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-09-03 18:24:28 +00:00
ryan 37d88adaff Don't ignore scheme when cookie value is empty. Props bendalton. fixes #7521
git-svn-id: http://svn.automattic.com/wordpress/trunk@8731 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-25 21:09:26 +00:00
ryan 8dfd6d050f Do secure redirect only for admin destinations. see #7561
git-svn-id: http://svn.automattic.com/wordpress/trunk@8730 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-25 20:40:34 +00:00
ryan dccf7edf8e wp_rand() - more randy rands
git-svn-id: http://svn.automattic.com/wordpress/trunk@8728 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-25 17:52:28 +00:00
ryan 203086a4de Option to force SSL. see #7561
git-svn-id: http://svn.automattic.com/wordpress/trunk@8701 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-21 17:40:38 +00:00
ryan 01e3a5ec79 Some cookie validation hooks. fixes #7440
git-svn-id: http://svn.automattic.com/wordpress/trunk@8696 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-21 00:08:25 +00:00
westi bfa931c5d1 alt attibutes for get_avatar(). Fixes #7523 props Speedboxer.
git-svn-id: http://svn.automattic.com/wordpress/trunk@8661 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-17 11:23:49 +00:00
ryan 35b18e5034 Trailing whitespace cleanup
git-svn-id: http://svn.automattic.com/wordpress/trunk@8600 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-09 05:36:14 +00:00
ryan 642c8d9b54 Fix Text/Diff includes. Props codestyling. fixes #7391 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@8581 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-07 21:02:07 +00:00
markjaquith 74c46749cb Cast to array when using foreach(). Props santosj (and thanks for your perseverance!). fixes #2784
git-svn-id: http://svn.automattic.com/wordpress/trunk@8572 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-06 20:31:54 +00:00
azaozz dc9f3139a1 Revert 8562
git-svn-id: http://svn.automattic.com/wordpress/trunk@8564 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-06 00:44:40 +00:00
azaozz 0c6394a0b9 Stop fatal error in post revisions when setting the include path is disabled. Props santosj, for 2.7
git-svn-id: http://svn.automattic.com/wordpress/trunk@8562 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-05 23:56:52 +00:00
westi f69ddab179 Make lost password admin notification pluggable. Fixes #7430 props error.
git-svn-id: http://svn.automattic.com/wordpress/trunk@8489 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-07-29 20:21:34 +00:00
ryan 8750ed2ea1 Workaround PHP parse_url() bug. Props azaozz. fixes #7288
git-svn-id: http://svn.automattic.com/wordpress/trunk@8324 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-07-13 05:16:54 +00:00
ryan 775ea980f3 Set auth cookie for plugins directory to support direct load plugin files that call auth_redirect(). see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@8209 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-27 22:54:21 +00:00
ryan 63b5bd26fe Only use SSL for login POST links if SSL logins are forced. Clear old cookies. see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@8197 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-26 16:40:04 +00:00
ryan 636c562256 SSL fixes. see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@8190 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-24 22:19:27 +00:00
ryan 683acd8245 phpdoc updates from jacobsantos. see #7038
git-svn-id: http://svn.automattic.com/wordpress/trunk@8164 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-22 20:23:23 +00:00
ryan f5e12d887b Handle cc and bcc. Props MattyRob. fixes #6899
git-svn-id: http://svn.automattic.com/wordpress/trunk@8098 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-16 20:02:10 +00:00
ryan 6adcab8b27 Introduce logged_in cookie. Deliver auth cookies only to wp-admin. see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@8069 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-11 17:25:55 +00:00
ryan c790febe36 More use of site_url(), admin_url(), and site_url(). Force login and admin links to be https if FORCE_SSL_LOGIN. see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@8058 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-06-06 07:39:11 +00:00
ryan 9771ec5110 First cut and better admin SSL support. see #7001
git-svn-id: http://svn.automattic.com/wordpress/trunk@7998 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-05-27 17:46:01 +00:00
ryan c85f779dbb gettext fix from thenlich. fixes #6993 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@7996 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-05-27 11:42:32 +00:00
ryan 129d030c20 Move autosave to post revisions. Props mdawaffe. see #6775
git-svn-id: http://svn.automattic.com/wordpress/trunk@7907 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-05-08 17:25:07 +00:00
ryan 76dfbdfb11 Add blank to default avatars. Rename default to Mystery Man. see #6802
git-svn-id: http://svn.automattic.com/wordpress/trunk@7886 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-05-04 18:05:20 +00:00
ryan fbcbedc4f0 Default avatar selector. Props Viper007Bond. see #6802
git-svn-id: http://svn.automattic.com/wordpress/trunk@7879 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-05-03 00:56:16 +00:00
ryan 87b1154989 Add arg to make special chars optional when generating passwords. fixes #6842 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@7836 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-25 17:12:25 +00:00
ryan 76a87862bf Add some sanity checks
git-svn-id: http://svn.automattic.com/wordpress/trunk@7821 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-25 06:20:18 +00:00
ryan 0101f8809d strlen - 1. Props mdawaffe. see #6146
git-svn-id: http://svn.automattic.com/wordpress/trunk@7802 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-24 01:13:35 +00:00
ryan eb9c8420db hash_hmac is always available. Drop function_exists check
git-svn-id: http://svn.automattic.com/wordpress/trunk@7797 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-24 00:30:49 +00:00
ryan 4680f8f084 Add length arg to wp_generate_password() and lengthen secret. Props tellyworth. fixes #6146 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@7796 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-24 00:19:09 +00:00
ryan 35086b850f Post revisions from mdawaffe. see #6775
git-svn-id: http://svn.automattic.com/wordpress/trunk@7747 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-18 23:38:21 +00:00
ryan 36c9588f08 phpdoc typo fix from filosofo. fixes #6712 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@7642 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-04-14 15:53:09 +00:00
ryan 77d5b58105 Rehash old md5 hashes inside of wp_check_password() to make hashing more pluggable.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7555 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-27 22:44:47 +00:00
ryan 8dcc9e02fa Close img tag. Props Otto42. fixes #6339
git-svn-id: http://svn.automattic.com/wordpress/trunk@7461 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-21 21:39:28 +00:00
markjaquith 15b17df867 moderation.php is no more. All hail edit-comments.php?comment_status=moderated
git-svn-id: http://svn.automattic.com/wordpress/trunk@7391 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-18 23:24:04 +00:00
ryan cd4894370a More nonce renewals from andy. fixes #6266
git-svn-id: http://svn.automattic.com/wordpress/trunk@7376 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-18 04:59:54 +00:00
ryan 34d67f9907 Renew autosave nonce. Props andy. fixes #6266
git-svn-id: http://svn.automattic.com/wordpress/trunk@7375 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-18 02:43:20 +00:00
westi ef53fc4b54 Give the default avatar some class.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7333 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-16 16:55:31 +00:00
westi b871aff737 Allow plugins to filter the redirect status as well as the location. See #4790.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7319 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-15 20:50:49 +00:00
westi 6c14cad3c9 Change the default size avatar back to 96 now we are using the new gravatar.com api which supports bigger sizes.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7308 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-15 08:27:28 +00:00
markjaquith df240cb60c Use newer Gravatar URL style. props link2caro. fixes #6229
git-svn-id: http://svn.automattic.com/wordpress/trunk@7306 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-15 02:23:27 +00:00
ryan 5ca43fe40b Update get_avatar() phpdoc
git-svn-id: http://svn.automattic.com/wordpress/trunk@7158 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-04 22:52:36 +00:00
ryan bf8f7b0f28 Make sure avatar size is numeric. Props Martin2006. fixes #6069
git-svn-id: http://svn.automattic.com/wordpress/trunk@7132 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-02 21:41:35 +00:00
ryan 04c9051a7d Remove trailing whites.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7130 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-03-02 20:17:30 +00:00
ryan 259bc26542 urlencode only when needed. Props spikeyslam. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@7096 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-28 22:01:56 +00:00
westi cf7e0adf8b Use a default size that gravatar supports rather than one it doesn't. Fixes #6033 props josephscott.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7091 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-28 21:11:47 +00:00
westi 717b7316bf Ensure email address is lower case in get_avatar(). Fixes #6028 props josephscott.
git-svn-id: http://svn.automattic.com/wordpress/trunk@7087 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-28 16:34:59 +00:00
ryan 54f091eebf Allow overriding the default secret key. Proy. Props nbachiyski. fixes #5960
git-svn-id: http://svn.automattic.com/wordpress/trunk@6982 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-22 17:36:09 +00:00
ryan 726b030412 Allow comment object to be passed to get_avatar() for convenience. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6946 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-20 20:58:58 +00:00
ryan 3355f0c2af Allow comment object to be passed to get_avatar() for convenience. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6945 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-20 20:57:21 +00:00
ryan 2533bac2df Lose caching of user DB misses. Wasn't working out that well.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6929 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-20 05:34:51 +00:00
ryan bd8069aba7 Typo fix from rnt. fixes #5894
git-svn-id: http://svn.automattic.com/wordpress/trunk@6895 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-18 17:13:21 +00:00
westi 86c55d6d67 More specific moderation emails for {ping|track}backs. Fixes #4986 props Otto42.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6873 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-16 17:03:05 +00:00
ryan 1edf014a54 s/2.4/2.5/. Props ffemtcj. fixes #5810
git-svn-id: http://svn.automattic.com/wordpress/trunk@6777 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-10 07:59:34 +00:00
ryan 4a662f1776 Precompute the hash of the unknown avatar user to save an md5 call. Props Viper007Bond. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6756 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-08 07:09:01 +00:00
ryan 596f6b0583 Gonna serve default avatars from gravatar. see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6749 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-07 06:58:38 +00:00
ryan 36a651ef92 get_avatar(). see #5775
git-svn-id: http://svn.automattic.com/wordpress/trunk@6748 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-07 06:07:12 +00:00
ryan 7b946b9007 Remove cookie checking from check_ajax_referer(). Check nonces instead. Props mdawaffe. fixes #5782
git-svn-id: http://svn.automattic.com/wordpress/trunk@6739 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-06 21:19:47 +00:00
ryan d88983793b Trailing whitespace cleanup
git-svn-id: http://svn.automattic.com/wordpress/trunk@6726 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-05 06:47:27 +00:00
ryan 8263948a96 Some notice fixes from Nazgul. fixes #3155
git-svn-id: http://svn.automattic.com/wordpress/trunk@6711 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-02-02 18:42:09 +00:00
ryan 19de78b638 Add wp_authenticate_user filter
git-svn-id: http://svn.automattic.com/wordpress/trunk@6685 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-29 20:17:11 +00:00
westi 520d17d7f0 Switch from abs(intval()) to absint(). See #4762.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6682 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-29 18:48:38 +00:00
ryan 35bd1677a1 check_ajax_referer() should look for *only* the auth_cookie, not others that look like they match. Autosave should know that an ajax response of -1 or 0 is a failure. Props mdawaffe
git-svn-id: http://svn.automattic.com/wordpress/trunk@6649 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 21:19:42 +00:00
ryan f21535a6b1 Add check_password filter
git-svn-id: http://svn.automattic.com/wordpress/trunk@6648 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 18:36:45 +00:00
ryan a99e7c0cee Add wp_login_failed action
git-svn-id: http://svn.automattic.com/wordpress/trunk@6647 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-24 18:32:21 +00:00
ryan 6afab28342 Refactor login. see #5405
git-svn-id: http://svn.automattic.com/wordpress/trunk@6643 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-22 19:35:19 +00:00
ryan c12cc74bae phpdoc for pluggable.php from darkdragon. fixes #5509
git-svn-id: http://svn.automattic.com/wordpress/trunk@6637 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-20 06:53:42 +00:00
ryan 106df879c6 phpdoc for pluggable from darkdragon. fixes #5509
git-svn-id: http://svn.automattic.com/wordpress/trunk@6600 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-11 20:51:39 +00:00
westi 8c45b3a029 Revert #5007 as it causes more trouble than it solves. Fixes #5273 for trunk.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6599 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-11 18:44:44 +00:00
ryan a4f050e486 Concat secret key with salt. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6583 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-09 16:37:43 +00:00
ryan 1ae1811dd0 Unused var cleanup. Props DD32. see #5418
git-svn-id: http://svn.automattic.com/wordpress/trunk@6551 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-01-04 19:36:34 +00:00
ryan 6aafd77e36 Remove unneeded get_userdata call. Props DD32. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6531 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-31 23:39:02 +00:00
ryan bed1da2844 Separate cookie generation from cookie set. Introduce wp_generate_auth_cookie(). see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6529 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-31 17:50:32 +00:00
ryan 63790db707 set_auth_cookie action. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6486 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-24 08:01:55 +00:00
ryan 42d83376c9 Allow DB salt to be overridden by SECRET_SALT. Add a filter to wp_salt(). see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6478 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-24 06:34:12 +00:00
ryan 03a9269b11 Don't fallback to DB info for secret key. Allow expiration grace period for AJAX requests. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6471 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-23 00:58:06 +00:00
ryan 7f722d1f90 Use __ngettext() for plurals. Props darkdragon. see #4865
git-svn-id: http://svn.automattic.com/wordpress/trunk@6430 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-20 17:05:06 +00:00
ryan 8a556e5e48 Fix AJAX cookie validation. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6400 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-17 21:12:28 +00:00
ryan 9572687394 wp_set_password(). see #2394
git-svn-id: http://svn.automattic.com/wordpress/trunk@6396 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-17 06:02:45 +00:00
ryan 29ef8b6f5f New secure cookie protocol. see #5367
git-svn-id: http://svn.automattic.com/wordpress/trunk@6387 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-16 17:41:59 +00:00
ryan 7b16e3616c Pluggable random password generator from pishmishy. fixes #5401
git-svn-id: http://svn.automattic.com/wordpress/trunk@6385 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-15 05:31:16 +00:00
ryan 028a159440 Remove unused vars. Props DD32. see #5418
git-svn-id: http://svn.automattic.com/wordpress/trunk@6364 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-06 19:49:33 +00:00
ryan 07e337adcf Hash passwords with phpass. Add wp_check_pasword() and wp_hash_password() functions. Props pishmishy. see #2394
git-svn-id: http://svn.automattic.com/wordpress/trunk@6350 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-12-02 05:14:11 +00:00
ryan 43b7cd700f get_user_by_email() and some user caching cleanups. fixes #5392
git-svn-id: http://svn.automattic.com/wordpress/trunk@6346 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-11-27 22:14:53 +00:00
ryan df08604882 Remove unused variable. Props epper. fixes #5339
git-svn-id: http://svn.automattic.com/wordpress/trunk@6330 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-11-12 19:31:49 +00:00
westi 9ef11d81bd Set the Sender on emails as well as from. Fixes #5007 for trunk props mattyrob
git-svn-id: http://svn.automattic.com/wordpress/trunk@6265 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-17 20:17:01 +00:00
markjaquith dec5db7586 check for a match against a lowercase host in wp_safe_redirect(). props BoltClock. fixes #5114 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@6219 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-10 19:25:23 +00:00
ryan f8afc0b75d jquery for list manipulation. Round one, fight. Props mdawaffe. fixes #4805
git-svn-id: http://svn.automattic.com/wordpress/trunk@6213 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-09 22:49:42 +00:00
markjaquith 21c25b5566 prepare() for wp-includes/ link-template.php, post.php, general-template.php, pluggable.php, functions.php. see #4553
git-svn-id: http://svn.automattic.com/wordpress/trunk@6180 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-10-02 18:45:47 +00:00
markjaquith 5177c0e5c7 Pass the attempted redirect host as a second parameter in the allowed_redirect_hosts filter. props mdawaffe.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6145 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-20 21:53:42 +00:00
ryan 9eb6351d24 Extra protection in check_ajax_referer from mdawaffe. fixes #4939
git-svn-id: http://svn.automattic.com/wordpress/trunk@6138 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 19:32:34 +00:00
markjaquith f25f33c4ba Put a filter in wp_safe_redirect() so people can whitelist other domains. see #4606
git-svn-id: http://svn.automattic.com/wordpress/trunk@6136 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 04:14:53 +00:00
markjaquith 3c89a5c5d7 More robust wp_safe_redirect(). Introducing wp_sanitize_redirect() for use in wp_redirect() and wp_safe_redirect(). fixes #4606
git-svn-id: http://svn.automattic.com/wordpress/trunk@6134 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-19 03:47:37 +00:00
markjaquith dbd3d07274 Introducing wp_safe_redirect(). fixes #4606 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@6131 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-18 22:23:16 +00:00
westi 2f44508e9b Consolidate shared code in get_userdata and get_userdatabylogin. Fixes #2134 props johnjosephbachir
git-svn-id: http://svn.automattic.com/wordpress/trunk@6094 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-12 17:15:17 +00:00
westi ca4ddf50f8 Allow the wp_mail filter to change the passed data. Fixes #4511 props ryan.
git-svn-id: http://svn.automattic.com/wordpress/trunk@6084 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-11 20:49:28 +00:00
ryan 321c310717 Remove trailing whitespace
git-svn-id: http://svn.automattic.com/wordpress/trunk@6026 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-09-03 23:32:58 +00:00
markjaquith bacbca924f Roll back [5986], [5988], [5989]. We are in a char class, so no escaping needed. Props mdawaffe. see #4873
git-svn-id: http://svn.automattic.com/wordpress/trunk@5993 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 18:13:48 +00:00
markjaquith f0b39c1b5c Better %0d/%0a sanitization for wp_redirect() from hakre. fixes #4819 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@5990 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 17:46:09 +00:00
ryan 5a997f588b Escape special chars in regex. Props eightize and Otto42. fixes #4873
git-svn-id: http://svn.automattic.com/wordpress/trunk@5986 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-08-30 15:42:26 +00:00
markjaquith 64ef1ed841 Correctly grab Content-Type from old-school headers, skip blank headers. fixes #4296
git-svn-id: http://svn.automattic.com/wordpress/trunk@5764 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-06-26 20:18:56 +00:00