get_error_message() ); else return $result; } // Creates a new post from the "Write Post" form using $_POST information. function wp_write_post() { global $user_ID; if ( 'page' == $_POST['post_type'] ) { if ( !current_user_can('edit_pages') ) return new WP_Error('edit_pages', __('You are not allowed to create pages on this blog.')); } else { if ( !current_user_can('edit_posts') ) return new WP_Error('edit_posts', __('You are not allowed to create posts or drafts on this blog.')); } // Rename. $_POST['post_content'] = $_POST['content']; $_POST['post_excerpt'] = $_POST['excerpt']; $_POST['post_parent'] = $_POST['parent_id']; $_POST['to_ping'] = $_POST['trackback_url']; if (!empty ($_POST['post_author_override'])) { $_POST['post_author'] = (int) $_POST['post_author_override']; } else { if (!empty ($_POST['post_author'])) { $_POST['post_author'] = (int) $_POST['post_author']; } else { $_POST['post_author'] = (int) $_POST['user_ID']; } } if ($_POST['post_author'] != $_POST['user_ID']) { if ( 'page' == $_POST['post_type'] ) { if ( !current_user_can('edit_others_pages') ) return new WP_Error('edit_others_pages', __('You cannot create pages as this user.')); } else { if ( !current_user_can('edit_others_posts') ) return new WP_Error('edit_others_posts', __('You cannot post as this user.')); } } // What to do based on which button they pressed if ('' != $_POST['saveasdraft']) $_POST['post_status'] = 'draft'; if ('' != $_POST['saveasprivate']) $_POST['post_status'] = 'private'; if ('' != $_POST['publish']) $_POST['post_status'] = 'publish'; if ('' != $_POST['advanced']) $_POST['post_status'] = 'draft'; if ( 'page' == $_POST['post_type'] ) { if ('publish' == $_POST['post_status'] && !current_user_can('publish_pages')) $_POST['post_status'] = 'draft'; } else { if ('publish' == $_POST['post_status'] && !current_user_can('publish_posts')) $_POST['post_status'] = 'draft'; } if (!isset ($_POST['comment_status'])) $_POST['comment_status'] = 'closed'; if (!isset ($_POST['ping_status'])) $_POST['ping_status'] = 'closed'; if (!empty ($_POST['edit_date'])) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh -24 : $hh; $mn = ($mn > 59) ? $mn -60 : $mn; $ss = ($ss > 59) ? $ss -60 : $ss; $_POST['post_date'] = sprintf("%04d-%02d-%02d %02d:%02d:%02d", $aa, $mm, $jj, $hh, $mn, $ss); $_POST['post_date_gmt'] = get_gmt_from_date($_POST['post_date']); } // Create the post. $post_ID = wp_insert_post($_POST); add_meta($post_ID); // Reunite any orphaned attachments with their parent if ( $_POST['temp_ID'] ) relocate_children($_POST['temp_ID'], $post_ID); // Now that we have an ID we can fix any attachment anchor hrefs fix_attachment_links($post_ID); return $post_ID; } // Move child posts to a new parent function relocate_children($old_ID, $new_ID) { global $wpdb; $old_ID = (int) $old_ID; $new_ID = (int) $new_ID; return $wpdb->query("UPDATE $wpdb->posts SET post_parent = $new_ID WHERE post_parent = $old_ID"); } // Replace hrefs of attachment anchors with up-to-date permalinks. function fix_attachment_links($post_ID) { global $wp_rewrite; $post = & get_post($post_ID, ARRAY_A); $search = "#]+rel=('|\")[^'\"]*attachment[^>]*>#ie"; // See if we have any rel="attachment" links if ( 0 == preg_match_all($search, $post['post_content'], $anchor_matches, PREG_PATTERN_ORDER) ) return; $i = 0; $search = "#[\s]+rel=(\"|')(.*?)wp-att-(\d+)\\1#i"; foreach ( $anchor_matches[0] as $anchor ) { if ( 0 == preg_match($search, $anchor, $id_matches) ) continue; $id = $id_matches[3]; // While we have the attachment ID, let's adopt any orphans. $attachment = & get_post($id, ARRAY_A); if ( ! empty($attachment) && ! is_object(get_post($attachment['post_parent'])) ) { $attachment['post_parent'] = $post_ID; // Escape data pulled from DB. $attachment = add_magic_quotes($attachment); wp_update_post($attachment); } $post_search[$i] = $anchor; $post_replace[$i] = preg_replace("#href=(\"|')[^'\"]*\\1#e", "stripslashes('href=\\1').get_attachment_link($id).stripslashes('\\1')", $anchor); ++$i; } $post['post_content'] = str_replace($post_search, $post_replace, $post['post_content']); // Escape data pulled from DB. $post = add_magic_quotes($post); return wp_update_post($post); } // Update an existing post with values provided in $_POST. function edit_post() { global $user_ID; $post_ID = (int) $_POST['post_ID']; if ( 'page' == $_POST['post_type'] ) { if ( !current_user_can('edit_page', $post_ID) ) wp_die(__('You are not allowed to edit this page.')); } else { if ( !current_user_can('edit_post', $post_ID) ) wp_die(__('You are not allowed to edit this post.')); } // Rename. $_POST['ID'] = (int) $_POST['post_ID']; $_POST['post_content'] = $_POST['content']; $_POST['post_excerpt'] = $_POST['excerpt']; $_POST['post_parent'] = $_POST['parent_id']; $_POST['to_ping'] = $_POST['trackback_url']; if (!empty ($_POST['post_author_override'])) { $_POST['post_author'] = (int) $_POST['post_author_override']; } else if (!empty ($_POST['post_author'])) { $_POST['post_author'] = (int) $_POST['post_author']; } else { $_POST['post_author'] = (int) $_POST['user_ID']; } if ($_POST['post_author'] != $_POST['user_ID']) { if ( 'page' == $_POST['post_type'] ) { if ( !current_user_can('edit_others_pages') ) wp_die(__('You cannot edit pages as this user.')); } else { if ( !current_user_can('edit_others_posts') ) wp_die(__('You cannot edit posts as this user.')); } } // What to do based on which button they pressed if ('' != $_POST['saveasdraft']) $_POST['post_status'] = 'draft'; if ('' != $_POST['saveasprivate']) $_POST['post_status'] = 'private'; if ('' != $_POST['publish']) $_POST['post_status'] = 'publish'; if ('' != $_POST['advanced']) $_POST['post_status'] = 'draft'; if ( 'page' == $_POST['post_type'] ) { if ('publish' == $_POST['post_status'] && !current_user_can('edit_published_pages')) $_POST['post_status'] = 'draft'; } else { if ('publish' == $_POST['post_status'] && !current_user_can('edit_published_posts')) $_POST['post_status'] = 'draft'; } if (!isset ($_POST['comment_status'])) $_POST['comment_status'] = 'closed'; if (!isset ($_POST['ping_status'])) $_POST['ping_status'] = 'closed'; if (!empty ($_POST['edit_date'])) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh -24 : $hh; $mn = ($mn > 59) ? $mn -60 : $mn; $ss = ($ss > 59) ? $ss -60 : $ss; $_POST['post_date'] = "$aa-$mm-$jj $hh:$mn:$ss"; $_POST['post_date_gmt'] = get_gmt_from_date("$aa-$mm-$jj $hh:$mn:$ss"); } // Meta Stuff if ($_POST['meta']) { foreach ($_POST['meta'] as $key => $value) update_meta($key, $value['key'], $value['value']); } if ($_POST['deletemeta']) { foreach ($_POST['deletemeta'] as $key => $value) delete_meta($key); } add_meta($post_ID); wp_update_post($_POST); // Now that we have an ID we can fix any attachment anchor hrefs fix_attachment_links($post_ID); return $post_ID; } function edit_comment() { global $user_ID; $comment_ID = (int) $_POST['comment_ID']; $comment_post_ID = (int) $_POST['comment_post_ID']; if (!current_user_can('edit_post', $comment_post_ID)) wp_die(__('You are not allowed to edit comments on this post, so you cannot edit this comment.')); $_POST['comment_author'] = $_POST['newcomment_author']; $_POST['comment_author_email'] = $_POST['newcomment_author_email']; $_POST['comment_author_url'] = $_POST['newcomment_author_url']; $_POST['comment_approved'] = $_POST['comment_status']; $_POST['comment_content'] = $_POST['content']; $_POST['comment_ID'] = (int) $_POST['comment_ID']; if (!empty ($_POST['edit_date'])) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh -24 : $hh; $mn = ($mn > 59) ? $mn -60 : $mn; $ss = ($ss > 59) ? $ss -60 : $ss; $_POST['comment_date'] = "$aa-$mm-$jj $hh:$mn:$ss"; } wp_update_comment($_POST); } // Get an existing post and format it for editing. function get_post_to_edit($id) { $post = get_post($id); $post->post_content = format_to_edit($post->post_content, user_can_richedit()); $post->post_content = apply_filters('content_edit_pre', $post->post_content); $post->post_excerpt = format_to_edit($post->post_excerpt); $post->post_excerpt = apply_filters('excerpt_edit_pre', $post->post_excerpt); $post->post_title = format_to_edit($post->post_title); $post->post_title = apply_filters('title_edit_pre', $post->post_title); $post->post_password = format_to_edit($post->post_password); if ($post->post_type == 'page') $post->page_template = get_post_meta($id, '_wp_page_template', true); return $post; } // Default post information to use when populating the "Write Post" form. function get_default_post_to_edit() { if ( !empty($_REQUEST['post_title']) ) $post_title = wp_specialchars(stripslashes($_REQUEST['post_title'])); else if ( !empty($_REQUEST['popuptitle']) ) { $post_title = wp_specialchars(stripslashes($_REQUEST['popuptitle'])); $post_title = funky_javascript_fix($post_title); } else { $post_title = ''; } if ( !empty($_REQUEST['content']) ) $post_content = wp_specialchars(stripslashes($_REQUEST['content'])); else if ( !empty($post_title) ) { $text = wp_specialchars(stripslashes(urldecode($_REQUEST['text']))); $text = funky_javascript_fix($text); $popupurl = wp_specialchars($_REQUEST['popupurl']); $post_content = ''.$post_title.''."\n$text"; } if ( !empty($_REQUEST['excerpt']) ) $post_excerpt = wp_specialchars(stripslashes($_REQUEST['excerpt'])); else $post_excerpt = ''; $post->post_status = 'draft'; $post->comment_status = get_option('default_comment_status'); $post->ping_status = get_option('default_ping_status'); $post->post_pingback = get_option('default_pingback_flag'); $post->post_category = get_option('default_category'); $post->post_content = apply_filters('default_content', $post_content); $post->post_title = apply_filters('default_title', $post_title); $post->post_excerpt = apply_filters('default_excerpt', $post_excerpt); $post->page_template = 'default'; $post->post_parent = 0; $post->menu_order = 0; return $post; } function get_comment_to_edit($id) { $comment = get_comment($id); $comment->comment_content = format_to_edit($comment->comment_content, user_can_richedit()); $comment->comment_content = apply_filters('comment_edit_pre', $comment->comment_content); $comment->comment_author = format_to_edit($comment->comment_author); $comment->comment_author_email = format_to_edit($comment->comment_author_email); $comment->comment_author_url = format_to_edit($comment->comment_author_url); return $comment; } function get_category_to_edit($id) { $category = get_category($id); return $category; } function wp_dropdown_roles( $default = false ) { global $wp_roles; $r = ''; foreach($wp_roles->role_names as $role => $name) if ( $default == $role ) // Make default first in list $p = "\n\t"; else $r .= "\n\t"; echo $p . $r; } function get_user_to_edit($user_id) { $user = new WP_User($user_id); $user->user_login = wp_specialchars($user->user_login, 1); $user->user_email = wp_specialchars($user->user_email, 1); $user->user_url = wp_specialchars($user->user_url, 1); $user->first_name = wp_specialchars($user->first_name, 1); $user->last_name = wp_specialchars($user->last_name, 1); $user->display_name = wp_specialchars($user->display_name, 1); $user->nickname = wp_specialchars($user->nickname, 1); $user->aim = wp_specialchars($user->aim, 1); $user->yim = wp_specialchars($user->yim, 1); $user->jabber = wp_specialchars($user->jabber, 1); $user->description = wp_specialchars($user->description); return $user; } // Creates a new user from the "Users" form using $_POST information. function add_user() { if ( func_num_args() ) { // The hackiest hack that ever did hack global $current_user, $wp_roles; $user_id = func_get_arg(0); if (isset ($_POST['role'])) { if($user_id != $current_user->id || $wp_roles->role_objects[$_POST['role']]->has_cap('edit_users')) { $user = new WP_User($user_id); $user->set_role($_POST['role']); } } } else { add_action('user_register', 'add_user'); // See above return edit_user(); } } function edit_user($user_id = 0) { global $current_user, $wp_roles, $wpdb; if ($user_id != 0) { $update = true; $user->ID = $user_id; $userdata = get_userdata($user_id); $user->user_login = $wpdb->escape($userdata->user_login); } else { $update = false; $user = ''; } if (isset ($_POST['user_login'])) $user->user_login = wp_specialchars(trim($_POST['user_login'])); $pass1 = $pass2 = ''; if (isset ($_POST['pass1'])) $pass1 = $_POST['pass1']; if (isset ($_POST['pass2'])) $pass2 = $_POST['pass2']; if (isset ($_POST['role']) && current_user_can('edit_users')) { if($user_id != $current_user->id || $wp_roles->role_objects[$_POST['role']]->has_cap('edit_users')) $user->role = $_POST['role']; } if (isset ($_POST['email'])) $user->user_email = wp_specialchars(trim($_POST['email'])); if (isset ($_POST['url'])) { $user->user_url = wp_specialchars(trim($_POST['url'])); $user->user_url = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $user->user_url) ? $user->user_url : 'http://'.$user->user_url; } if (isset ($_POST['first_name'])) $user->first_name = wp_specialchars(trim($_POST['first_name'])); if (isset ($_POST['last_name'])) $user->last_name = wp_specialchars(trim($_POST['last_name'])); if (isset ($_POST['nickname'])) $user->nickname = wp_specialchars(trim($_POST['nickname'])); if (isset ($_POST['display_name'])) $user->display_name = wp_specialchars(trim($_POST['display_name'])); if (isset ($_POST['description'])) $user->description = trim($_POST['description']); if (isset ($_POST['jabber'])) $user->jabber = wp_specialchars(trim($_POST['jabber'])); if (isset ($_POST['aim'])) $user->aim = wp_specialchars(trim($_POST['aim'])); if (isset ($_POST['yim'])) $user->yim = wp_specialchars(trim($_POST['yim'])); $errors = new WP_Error(); /* checking that username has been typed */ if ($user->user_login == '') $errors->add('user_login', __('ERROR: Please enter a username.')); /* checking the password has been typed twice */ do_action_ref_array('check_passwords', array ($user->user_login, & $pass1, & $pass2)); if (!$update) { if ($pass1 == '' || $pass2 == '') $errors->add('pass', __('ERROR: Please enter your password twice.')); } else { if ((empty ($pass1) && !empty ($pass2)) || (empty ($pass2) && !empty ($pass1))) $errors->add('pass', __("ERROR: you typed your new password only once.")); } /* Check for "\" in password */ if( strpos( " ".$pass1, "\\" ) ) $errors->add('pass', __('ERROR: Passwords may not contain the character "\\".')); /* checking the password has been typed twice the same */ if ($pass1 != $pass2) $errors->add('pass', __('ERROR: Please type the same password in the two password fields.')); if (!empty ($pass1)) $user->user_pass = $pass1; if ( !validate_username($user->user_login) ) $errors->add('user_login', __('ERROR: This username is invalid. Please enter a valid username.')); if (!$update && username_exists($user->user_login)) $errors->add('user_login', __('ERROR: This username is already registered, please choose another one.')); /* checking e-mail address */ if (empty ($user->user_email)) { $errors->add('user_email', __("ERROR: please type an e-mail address")); } else if (!is_email($user->user_email)) { $errors->add('user_email', __("ERROR: the email address isn't correct")); } if ( $errors->get_error_codes() ) return $errors; if ($update) { $user_id = wp_update_user(get_object_vars($user)); } else { $user_id = wp_insert_user(get_object_vars($user)); wp_new_user_notification($user_id); } return $user_id; } function get_link_to_edit($link_id) { $link = get_link($link_id); $link->link_url = wp_specialchars($link->link_url, 1); $link->link_name = wp_specialchars($link->link_name, 1); $link->link_image = wp_specialchars($link->link_image, 1); $link->link_description = wp_specialchars($link->link_description, 1); $link->link_notes = wp_specialchars($link->link_notes); $link->link_rss = wp_specialchars($link->link_rss, 1); $link->link_rel = wp_specialchars($link->link_rel, 1); $link->post_category = $link->link_category; return $link; } function get_default_link_to_edit() { if ( isset($_GET['linkurl']) ) $link->link_url = wp_specialchars($_GET['linkurl'], 1); else $link->link_url = ''; if ( isset($_GET['name']) ) $link->link_name = wp_specialchars($_GET['name'], 1); else $link->link_name = ''; $link->link_visible = 'Y'; return $link; } function add_link() { return edit_link(); } function edit_link($link_id = '') { if (!current_user_can('manage_links')) wp_die(__("Cheatin' uh ?")); $_POST['link_url'] = wp_specialchars($_POST['link_url']); $_POST['link_url'] = preg_match('/^(https?|ftps?|mailto|news|gopher):/is', $_POST['link_url']) ? $_POST['link_url'] : 'http://' . $_POST['link_url']; $_POST['link_name'] = wp_specialchars($_POST['link_name']); $_POST['link_image'] = wp_specialchars($_POST['link_image']); $_POST['link_rss'] = wp_specialchars($_POST['link_rss']); $_POST['link_category'] = $_POST['post_category']; if ( !empty($link_id) ) { $_POST['link_id'] = $link_id; return wp_update_link($_POST); } else { return wp_insert_link($_POST); } } function url_shorten($url) { $short_url = str_replace('http://', '', stripslashes($url)); $short_url = str_replace('www.', '', $short_url); if ('/' == substr($short_url, -1)) $short_url = substr($short_url, 0, -1); if (strlen($short_url) > 35) $short_url = substr($short_url, 0, 32).'...'; return $short_url; } function selected($selected, $current) { if ($selected == $current) echo ' selected="selected"'; } function checked($checked, $current) { if ($checked == $current) echo ' checked="checked"'; } function return_categories_list($parent = 0) { global $wpdb; return $wpdb->get_col("SELECT cat_ID FROM $wpdb->categories WHERE category_parent = $parent ORDER BY category_count DESC"); } function sort_cats($cat1, $cat2) { return strcasecmp($cat1['cat_name'], $cat2['cat_name']); } function get_nested_categories($default = 0, $parent = 0) { global $post_ID, $link_id, $mode, $wpdb; if ($post_ID) { $checked_categories = $wpdb->get_col(" SELECT category_id FROM $wpdb->categories, $wpdb->post2cat WHERE $wpdb->post2cat.category_id = cat_ID AND $wpdb->post2cat.post_id = '$post_ID' "); if (count($checked_categories) == 0) { // No selected categories, strange $checked_categories[] = $default; } } else if ($link_id) { $checked_categories = $wpdb->get_col(" SELECT category_id FROM $wpdb->categories, $wpdb->link2cat WHERE $wpdb->link2cat.category_id = cat_ID AND $wpdb->link2cat.link_id = '$link_id' "); if (count($checked_categories) == 0) { // No selected categories, strange $checked_categories[] = $default; } } else { $checked_categories[] = $default; } $cats = return_categories_list($parent); $result = array (); if (is_array($cats)) { foreach ($cats as $cat) { $result[$cat]['children'] = get_nested_categories($default, $cat); $result[$cat]['cat_ID'] = $cat; $result[$cat]['checked'] = in_array($cat, $checked_categories); $result[$cat]['cat_name'] = get_the_category_by_ID($cat); } } usort($result, 'sort_cats'); return $result; } function write_nested_categories($categories) { foreach ($categories as $category) { echo '
\n"; if ( $category['children'] ) { echo ""; print_r($_wp_menu_nopriv); print_r($_wp_submenu_nopriv); echo "";*/ if ( isset($_wp_submenu_nopriv[$parent][$pagenow]) ) return false; if ( isset($plugin_page) && isset($_wp_submenu_nopriv[$parent][$plugin_page]) ) return false; if ( empty($parent) ) { if ( isset($_wp_menu_nopriv[$pagenow]) ) return false; if ( isset($_wp_submenu_nopriv[$pagenow][$pagenow]) ) return false; if ( isset($plugin_page) && isset($_wp_submenu_nopriv[$pagenow][$plugin_page]) ) return false; foreach (array_keys($_wp_submenu_nopriv) as $key) { if ( isset($_wp_submenu_nopriv[$key][$pagenow]) ) return false; if ( isset($plugin_page) && isset($_wp_submenu_nopriv[$key][$plugin_page]) ) return false; } return true; } if (isset ($submenu[$parent])) { foreach ($submenu[$parent] as $submenu_array) { if ($submenu_array[2] == $pagenow) { if (current_user_can($submenu_array[1])) return true; else return false; } } } foreach ($menu as $menu_array) { if ($menu_array[2] == $parent) { if (current_user_can($menu_array[1])) return true; else return false; } } return true; } function get_admin_page_title() { global $title; global $menu; global $submenu; global $pagenow; global $plugin_page; if (isset ($title) && !empty ($title)) { return $title; } $hook = get_plugin_page_hook($plugin_page, $pagenow); $parent = $parent1 = get_admin_page_parent(); if (empty ($parent)) { foreach ($menu as $menu_array) { if (isset ($menu_array[3])) { if ($menu_array[2] == $pagenow) { $title = $menu_array[3]; return $menu_array[3]; } else if (isset ($plugin_page) && ($plugin_page == $menu_array[2]) && ($hook == $menu_array[3])) { $title = $menu_array[3]; return $menu_array[3]; } } } } else { foreach (array_keys($submenu) as $parent) { foreach ($submenu[$parent] as $submenu_array) { if (isset ($submenu_array[3])) { if ($submenu_array[2] == $pagenow) { $title = $submenu_array[3]; return $submenu_array[3]; } else if (isset ($plugin_page) && ($plugin_page == $submenu_array[2]) && (($parent == $pagenow) || ($parent == $plugin_page) || ($plugin_page == $hook) || (($pagenow == 'admin.php') && ($parent1 != $submenu_array[2])))) { $title = $submenu_array[3]; return $submenu_array[3]; } } } } } return ''; } function get_admin_page_parent() { global $parent_file; global $menu; global $submenu; global $pagenow; global $plugin_page; global $_wp_real_parent_file; global $_wp_menu_nopriv; global $_wp_submenu_nopriv; if ( !empty ($parent_file) ) { if ( isset($_wp_real_parent_file[$parent_file]) ) $parent_file = $_wp_real_parent_file[$parent_file]; return $parent_file; } if ($pagenow == 'admin.php' && isset ($plugin_page)) { foreach ($menu as $parent_menu) { if ($parent_menu[2] == $plugin_page) { $parent_file = $plugin_page; if ( isset($_wp_real_parent_file[$parent_file]) ) $parent_file = $_wp_real_parent_file[$parent_file]; return $parent_file; } } if ( isset($_wp_menu_nopriv[$plugin_page]) ) { $parent_file = $plugin_page; if ( isset($_wp_real_parent_file[$parent_file]) ) $parent_file = $_wp_real_parent_file[$parent_file]; return $parent_file; } } if ( isset($plugin_page) && isset($_wp_submenu_nopriv[$pagenow][$plugin_page]) ) { $parent_file = $pagenow; if ( isset($_wp_real_parent_file[$parent_file]) ) $parent_file = $_wp_real_parent_file[$parent_file]; return $parent_file; } foreach (array_keys($submenu) as $parent) { foreach ($submenu[$parent] as $submenu_array) { if ( isset($_wp_real_parent_file[$parent]) ) $parent = $_wp_real_parent_file[$parent]; if ($submenu_array[2] == $pagenow) { $parent_file = $parent; return $parent; } else if (isset ($plugin_page) && ($plugin_page == $submenu_array[2])) { $parent_file = $parent; return $parent; } } } $parent_file = ''; return ''; } function add_menu_page($page_title, $menu_title, $access_level, $file, $function = '') { global $menu, $admin_page_hooks; $file = plugin_basename($file); $menu[] = array ($menu_title, $access_level, $file, $page_title); $admin_page_hooks[$file] = sanitize_title($menu_title); $hookname = get_plugin_page_hookname($file, ''); if (!empty ($function) && !empty ($hookname)) add_action($hookname, $function); return $hookname; } function add_submenu_page($parent, $page_title, $menu_title, $access_level, $file, $function = '') { global $submenu; global $menu; global $_wp_real_parent_file; global $_wp_submenu_nopriv; global $_wp_menu_nopriv; $file = plugin_basename($file); $parent = plugin_basename($parent); if ( isset($_wp_real_parent_file[$parent]) ) $parent = $_wp_real_parent_file[$parent]; if ( !current_user_can($access_level) ) { $_wp_submenu_nopriv[$parent][$file] = true; return false; } // If the parent doesn't already have a submenu, add a link to the parent // as the first item in the submenu. If the submenu file is the same as the // parent file someone is trying to link back to the parent manually. In // this case, don't automatically add a link back to avoid duplication. if (!isset ($submenu[$parent]) && $file != $parent ) { foreach ($menu as $parent_menu) { if ( $parent_menu[2] == $parent && current_user_can($parent_menu[1]) ) { $submenu[$parent][] = $parent_menu; } } } $submenu[$parent][] = array ($menu_title, $access_level, $file, $page_title); $hookname = get_plugin_page_hookname($file, $parent); if (!empty ($function) && !empty ($hookname)) add_action($hookname, $function); return $hookname; } function add_options_page($page_title, $menu_title, $access_level, $file, $function = '') { return add_submenu_page('options-general.php', $page_title, $menu_title, $access_level, $file, $function); } function add_management_page($page_title, $menu_title, $access_level, $file, $function = '') { return add_submenu_page('edit.php', $page_title, $menu_title, $access_level, $file, $function); } function add_theme_page($page_title, $menu_title, $access_level, $file, $function = '') { return add_submenu_page('themes.php', $page_title, $menu_title, $access_level, $file, $function); } function validate_file($file, $allowed_files = '') { if (false !== strpos($file, './')) return 1; if (':' == substr($file, 1, 1)) return 2; if (!empty ($allowed_files) && (!in_array($file, $allowed_files))) return 3; return 0; } function validate_file_to_edit($file, $allowed_files = '') { $file = stripslashes($file); $code = validate_file($file, $allowed_files); if (!$code) return $file; switch ($code) { case 1 : wp_die(__('Sorry, can’t edit files with ".." in the name. If you are trying to edit a file in your WordPress home directory, you can just type the name of the file in.')); case 2 : wp_die(__('Sorry, can’t call files with their real path.')); case 3 : wp_die(__('Sorry, that file cannot be edited.')); } } function get_home_path() { $home = get_option('home'); if ($home != '' && $home != get_option('siteurl')) { $home_path = parse_url($home); $home_path = $home_path['path']; $root = str_replace($_SERVER["PHP_SELF"], '', $_SERVER["SCRIPT_FILENAME"]); $home_path = trailingslashit($root.$home_path); } else { $home_path = ABSPATH; } return $home_path; } function get_real_file_to_edit($file) { if ('index.php' == $file || '.htaccess' == $file) { $real_file = get_home_path().$file; } else { $real_file = ABSPATH.$file; } return $real_file; } $wp_file_descriptions = array ('index.php' => __('Main Index Template'), 'style.css' => __('Stylesheet'), 'comments.php' => __('Comments'), 'comments-popup.php' => __('Popup Comments'), 'footer.php' => __('Footer'), 'header.php' => __('Header'), 'sidebar.php' => __('Sidebar'), 'archive.php' => __('Archives'), 'category.php' => __('Category Template'), 'page.php' => __('Page Template'), 'search.php' => __('Search Results'), 'single.php' => __('Single Post'), '404.php' => __('404 Template'), 'my-hacks.php' => __('my-hacks.php (legacy hacks support)'), '.htaccess' => __('.htaccess (for rewrite rules)'), // Deprecated files 'wp-layout.css' => __('Stylesheet'), 'wp-comments.php' => __('Comments Template'), 'wp-comments-popup.php' => __('Popup Comments Template')); function get_file_description($file) { global $wp_file_descriptions; if (isset ($wp_file_descriptions[basename($file)])) { return $wp_file_descriptions[basename($file)]; } elseif ( file_exists( ABSPATH . $file ) && is_file( ABSPATH . $file ) ) { $template_data = implode('', file( ABSPATH . $file )); if (preg_match("|Template Name:(.*)|i", $template_data, $name)) return $name[1]; } return basename($file); } function update_recently_edited($file) { $oldfiles = (array) get_option('recently_edited'); if ($oldfiles) { $oldfiles = array_reverse($oldfiles); $oldfiles[] = $file; $oldfiles = array_reverse($oldfiles); $oldfiles = array_unique($oldfiles); if (5 < count($oldfiles)) array_pop($oldfiles); } else { $oldfiles[] = $file; } update_option('recently_edited', $oldfiles); } function get_plugin_data($plugin_file) { $plugin_data = implode('', file($plugin_file)); preg_match("|Plugin Name:(.*)|i", $plugin_data, $plugin_name); preg_match("|Plugin URI:(.*)|i", $plugin_data, $plugin_uri); preg_match("|Description:(.*)|i", $plugin_data, $description); preg_match("|Author:(.*)|i", $plugin_data, $author_name); preg_match("|Author URI:(.*)|i", $plugin_data, $author_uri); if (preg_match("|Version:(.*)|i", $plugin_data, $version)) $version = trim($version[1]); else $version = ''; $description = wptexturize(trim($description[1])); $name = $plugin_name[1]; $name = trim($name); $plugin = $name; if ('' != $plugin_uri[1] && '' != $name) { $plugin = ''.$plugin.''; } if ('' == $author_uri[1]) { $author = trim($author_name[1]); } else { $author = '' . trim($author_name[1]) . ''; } return array ('Name' => $name, 'Title' => $plugin, 'Description' => $description, 'Author' => $author, 'Version' => $version, 'Template' => $template[1]); } function get_plugins() { global $wp_plugins; if (isset ($wp_plugins)) { return $wp_plugins; } $wp_plugins = array (); $plugin_root = ABSPATH . PLUGINDIR; // Files in wp-content/plugins directory $plugins_dir = @ dir($plugin_root); if ($plugins_dir) { while (($file = $plugins_dir->read()) !== false) { if (preg_match('|^\.+$|', $file)) continue; if (is_dir($plugin_root.'/'.$file)) { $plugins_subdir = @ dir($plugin_root.'/'.$file); if ($plugins_subdir) { while (($subfile = $plugins_subdir->read()) !== false) { if (preg_match('|^\.+$|', $subfile)) continue; if (preg_match('|\.php$|', $subfile)) $plugin_files[] = "$file/$subfile"; } } } else { if (preg_match('|\.php$|', $file)) $plugin_files[] = $file; } } } if ( !$plugins_dir || !$plugin_files ) return $wp_plugins; foreach ( $plugin_files as $plugin_file ) { if ( !is_readable("$plugin_root/$plugin_file") ) continue; $plugin_data = get_plugin_data("$plugin_root/$plugin_file"); if ( empty ($plugin_data['Name']) ) continue; $wp_plugins[plugin_basename($plugin_file)] = $plugin_data; } uasort($wp_plugins, create_function('$a, $b', 'return strnatcasecmp($a["Name"], $b["Name"]);')); return $wp_plugins; } function get_plugin_page_hookname($plugin_page, $parent_page) { global $admin_page_hooks; $parent = get_admin_page_parent(); if (empty ($parent_page) || 'admin.php' == $parent_page) { if (isset ($admin_page_hooks[$plugin_page])) $page_type = 'toplevel'; else if (isset ($admin_page_hooks[$parent])) $page_type = $admin_page_hooks[$parent]; } else if (isset ($admin_page_hooks[$parent_page])) { $page_type = $admin_page_hooks[$parent_page]; } else { $page_type = 'admin'; } $plugin_name = preg_replace('!\.php!', '', $plugin_page); return $page_type.'_page_'.$plugin_name; } function get_plugin_page_hook($plugin_page, $parent_page) { global $wp_filter; $hook = get_plugin_page_hookname($plugin_page, $parent_page); if (isset ($wp_filter[$hook])) return $hook; else return ''; } function browse_happy() { $getit = __('WordPress recommends a better browser'); echo ' '; } if (strstr($_SERVER['HTTP_USER_AGENT'], 'MSIE')) add_action('admin_footer', 'browse_happy'); function documentation_link($for) { return; } function register_importer($id, $name, $description, $callback) { global $wp_importers; $wp_importers[$id] = array ($name, $description, $callback); } function get_importers() { global $wp_importers; return $wp_importers; } function current_theme_info() { $themes = get_themes(); $current_theme = get_current_theme(); $ct->name = $current_theme; $ct->title = $themes[$current_theme]['Title']; $ct->version = $themes[$current_theme]['Version']; $ct->parent_theme = $themes[$current_theme]['Parent Theme']; $ct->template_dir = $themes[$current_theme]['Template Dir']; $ct->stylesheet_dir = $themes[$current_theme]['Stylesheet Dir']; $ct->template = $themes[$current_theme]['Template']; $ct->stylesheet = $themes[$current_theme]['Stylesheet']; $ct->screenshot = $themes[$current_theme]['Screenshot']; $ct->description = $themes[$current_theme]['Description']; $ct->author = $themes[$current_theme]['Author']; return $ct; } // array wp_handle_upload ( array &file [, array overrides] ) // file: reference to a single element of $_FILES. Call the function once for each uploaded file. // overrides: an associative array of names=>values to override default variables with extract($overrides, EXTR_OVERWRITE). // On success, returns an associative array of file attributes. // On failure, returns $overrides['upload_error_handler'](&$file, $message) or array('error'=>$message). function wp_handle_upload(&$file, $overrides = false) { // The default error handler. if (! function_exists('wp_handle_upload_error') ) { function wp_handle_upload_error(&$file, $message) { return array('error'=>$message); } } // You may define your own function and pass the name in $overrides['upload_error_handler'] $upload_error_handler = 'wp_handle_upload_error'; // $_POST['action'] must be set and its value must equal $overrides['action'] or this: $action = 'wp_handle_upload'; // Courtesy of php.net, the strings that describe the error indicated in $_FILES[{form field}]['error']. $upload_error_strings = array(false, __("The uploaded file exceeds the
upload_max_filesize
directive in php.ini
."),
__("The uploaded file exceeds the MAX_FILE_SIZE directive that was specified in the HTML form."),
__("The uploaded file was only partially uploaded."),
__("No file was uploaded."),
__("Missing a temporary folder."),
__("Failed to write file to disk."));
// All tests are on by default. Most can be turned off by $override[{test_name}] = false;
$test_form = true;
$test_size = true;
// If you override this, you must provide $ext and $type!!!!
$test_type = true;
// Install user overrides. Did we mention that this voids your warranty?
if ( is_array($overrides) )
extract($overrides, EXTR_OVERWRITE);
// A correct form post will pass this test.
if ( $test_form && (!isset($_POST['action']) || ($_POST['action'] != $action)) )
return $upload_error_handler($file, __('Invalid form submission.'));
// A successful upload will pass this test. It makes no sense to override this one.
if ( $file['error'] > 0 )
return $upload_error_handler($file, $upload_error_strings[$file['error']]);
// A non-empty file will pass this test.
if ( $test_size && !($file['size'] > 0) )
return $upload_error_handler($file, __('File is empty. Please upload something more substantial.'));
// A properly uploaded file will pass this test. There should be no reason to override this one.
if (! @ is_uploaded_file($file['tmp_name']) )
return $upload_error_handler($file, __('Specified file failed upload test.'));
// A correct MIME type will pass this test. Override $mimes or use the upload_mimes filter.
if ( $test_type ) {
$wp_filetype = wp_check_filetype($file['name'], $mimes);
extract($wp_filetype);
if ( !$type || !$ext )
return $upload_error_handler($file, __('File type does not meet security guidelines. Try another.'));
}
// A writable uploads dir will pass this test. Again, there's no point overriding this one.
if ( ! ( ( $uploads = wp_upload_dir() ) && false === $uploads['error'] ) )
return $upload_error_handler($file, $uploads['error']);
// Increment the file number until we have a unique file to save in $dir. Use $override['unique_filename_callback'] if supplied.
if ( isset($unique_filename_callback) && function_exists($unique_filename_callback) ) {
$filename = $unique_filename_callback($uploads['path'], $file['name']);
} else {
$number = '';
$filename = str_replace('#', '_', $file['name']);
$filename = str_replace(array('\\', "'"), '', $filename);
if ( empty($ext) )
$ext = '';
else
$ext = ".$ext";
while ( file_exists($uploads['path'] . "/$filename") ) {
if ( '' == "$number$ext" )
$filename = $filename . ++$number . $ext;
else
$filename = str_replace("$number$ext", ++$number . $ext, $filename);
}
$filename = str_replace($ext, '', $filename);
$filename = sanitize_title_with_dashes($filename) . $ext;
}
// Move the file to the uploads dir
$new_file = $uploads['path'] . "/$filename";
if ( false === @ move_uploaded_file($file['tmp_name'], $new_file) )
wp_die(printf(__('The uploaded file could not be moved to %s.'), $uploads['path']));
// Set correct file permissions
$stat = stat(dirname($new_file));
$perms = $stat['mode'] & 0000666;
@ chmod($new_file, $perms);
// Compute the URL
$url = $uploads['url'] . "/$filename";
$return = apply_filters( 'wp_handle_upload', array('file' => $new_file, 'url' => $url, 'type' => $type) );
return $return;
}
function wp_shrink_dimensions($width, $height, $wmax = 128, $hmax = 96) {
if ( $height <= $hmax && $width <= $wmax )
return array($width, $height);
elseif ( $width / $height > $wmax / $hmax )
return array($wmax, (int) ($height / $width * $wmax));
else
return array((int) ($width / $height * $hmax), $hmax);
}
function wp_import_cleanup($id) {
wp_delete_attachment($id);
}
function wp_import_upload_form($action) {
$size = strtolower( ini_get('upload_max_filesize') );
$bytes = 0;
if ( strstr( $size, 'k' ) )
$bytes = $size * 1024;
if ( strstr( $size, 'm' ) )
$bytes = $size * 1024 * 1024;
if ( strstr( $size, 'g' ) )
$bytes = $size * 1024 * 1024 * 1024;
?>
false, 'test_type' => false);
$file = wp_handle_upload($_FILES['import'], $overrides);
if ( isset($file['error']) )
return $file;
$url = $file['url'];
$file = addslashes( $file['file'] );
$filename = basename($file);
// Construct the object array
$object = array(
'post_title' => $filename,
'post_content' => $url,
'post_mime_type' => 'import',
'guid' => $url
);
// Save the data
$id = wp_insert_attachment($object, $file);
return array('file' => $file, 'id' => $id);
}
function the_attachment_links($id = false) {
$id = (int) $id;
$post = & get_post($id);
if ( $post->post_type != 'attachment' )
return false;
$icon = get_attachment_icon($post->ID);
$attachment_data = get_post_meta( $id, '_wp_attachment_metadata', true );
$thumb = isset($attachment_data['thumb']);
?>
4 / 3 )
return array(128, (int) ($height / $width * 128));
else
return array((int) ($width / $height * 96), 96);
}
function wp_reset_vars($vars) {
for ($i=0; $i