<?php require_once('admin.php'); $title = __('Edit Comments'); $parent_file = 'edit.php'; require_once('admin-header.php'); if (empty($_GET['mode'])) $mode = 'view'; else $mode = wp_specialchars($_GET['mode'], 1); ?> <script type="text/javascript"> <!-- function checkAll(form) { for (i = 0, n = form.elements.length; i < n; i++) { if(form.elements[i].type == "checkbox") { if(form.elements[i].checked == true) form.elements[i].checked = false; else form.elements[i].checked = true; } } } //--> </script> <div class="wrap"> <h2><?php _e('Comments'); ?></h2> <form name="searchform" action="" method="get"> <fieldset> <legend><?php _e('Show Comments That Contain...') ?></legend> <input type="text" name="s" value="<?php if (isset($_GET['s'])) echo wp_specialchars($_GET['s'], 1); ?>" size="17" /> <input type="submit" name="submit" value="<?php _e('Search') ?>" /> <input type="hidden" name="mode" value="<?php echo $mode; ?>" /> <?php _e('(Searches within comment text, e-mail, URI, and IP address.)') ?> </fieldset> </form> <p><a href="?mode=view"><?php _e('View Mode') ?></a> | <a href="?mode=edit"><?php _e('Mass Edit Mode') ?></a></p> <?php if ( !empty( $_POST['delete_comments'] ) ) : $i = 0; foreach ($_POST['delete_comments'] as $comment) : // Check the permissions on each $comment = (int) $comment; $post_id = $wpdb->get_var("SELECT comment_post_ID FROM $wpdb->comments WHERE comment_ID = $comment"); $authordata = get_userdata( $wpdb->get_var("SELECT post_author FROM $wpdb->posts WHERE ID = $post_id") ); if ( user_can_delete_post_comments($user_ID, $post_id) ) : $wpdb->query("DELETE FROM $wpdb->comments WHERE comment_ID = $comment"); ++$i; endif; endforeach; echo "<div class='wrap'><p>" . sprintf(__('%s comments deleted.'), $i) . "</p></div>"; endif; if (isset($_GET['s'])) { $s = $wpdb->escape($_GET['s']); $comments = $wpdb->get_results("SELECT * FROM $wpdb->comments WHERE (comment_author LIKE '%$s%' OR comment_author_email LIKE '%$s%' OR comment_author_url LIKE ('%$s%') OR comment_author_IP LIKE ('%$s%') OR comment_content LIKE ('%$s%') ) AND comment_approved != 'spam' ORDER BY comment_date DESC"); } else { if ( isset($_GET['offset']) ) $offset = (int) $_GET['offset'] * 20; else $offset = 0; $comments = $wpdb->get_results("SELECT * FROM $wpdb->comments WHERE comment_approved = '0' OR comment_approved = '1' ORDER BY comment_date DESC LIMIT $offset,20"); } if ('view' == $mode) { if ($comments) { if ($offset) $start = " start='$offset'"; else $start = ''; echo "<ol class='commentlist' $start>"; $i = 0; foreach ($comments as $comment) { ++$i; $class = ''; $authordata = get_userdata($wpdb->get_var("SELECT post_author FROM $wpdb->posts WHERE ID = $comment->comment_post_ID")); $comment_status = wp_get_comment_status($comment->comment_ID); if ('unapproved' == $comment_status) $class .= ' unapproved'; if ($i % 2) $class .= ' alternate'; echo "<li class='$class'>"; ?> <p><strong><?php _e('Name:') ?></strong> <?php comment_author() ?> <?php if ($comment->comment_author_email) { ?>| <strong><?php _e('E-mail:') ?></strong> <?php comment_author_email_link() ?> <?php } if ($comment->comment_author_url) { ?> | <strong><?php _e('URI:') ?></strong> <?php comment_author_url_link() ?> <?php } ?>| <strong><?php _e('IP:') ?></strong> <a href="http://ws.arin.net/cgi-bin/whois.pl?queryinput=<?php comment_author_IP() ?>"><?php comment_author_IP() ?></a></p> <?php comment_text() ?> <p><?php _e('Posted'); echo ' '; comment_date('M j, g:i A'); if ( user_can_edit_post_comments($user_ID, $comment->comment_post_ID) ) { echo " | <a href=\"post.php?action=editcomment&comment=".$comment->comment_ID."\">" . __('Edit Comment') . "</a>"; } if ( user_can_delete_post_comments($user_ID, $comment->comment_post_ID) ) { echo " | <a href=\"post.php?action=deletecomment&p=".$comment->comment_post_ID."&comment=".$comment->comment_ID."\" onclick=\"return confirm('" . sprintf(__("You are about to delete this comment by \'%s\'\\n \'Cancel\' to stop, \'OK\' to delete."), $comment->comment_author) . "')\">" . __('Delete Comment') . "</a> — "; } // end if any comments to show // Get post title if ( user_can_edit_post($user_ID, $comment->comment_post_ID) ) { $post_title = $wpdb->get_var("SELECT post_title FROM $wpdb->posts WHERE ID = $comment->comment_post_ID"); $post_title = ('' == $post_title) ? "# $comment->comment_post_ID" : $post_title; ?> <a href="post.php?action=edit&post=<?php echo $comment->comment_post_ID; ?>"><?php printf(__('Edit Post “%s”'), stripslashes($post_title)); ?></a> <?php } ?> | <a href="<?php echo get_permalink($comment->comment_post_ID); ?>"><?php _e('View Post') ?></a></p> </li> <?php } // end foreach ?> </ol> <form action="" method="get"> <p class="submit"> <input type="hidden" name="offset" value="<?php echo $_GET['offset'] + 1; ?>" /> <input type="submit" name="submit" value="<?php _e('View Next 20 Comments »');?>" /> </p> </form> <?php } else { ?> <p> <strong><?php _e('No comments found.') ?></strong></p> <?php } // end if ($comments) } elseif ('edit' == $mode) { if ($comments) { echo '<form name="deletecomments" id="deletecomments" action="" method="post"> <table width="100%" cellpadding="3" cellspacing="3"> <tr> <th scope="col">*</th> <th scope="col">' . __('Name') . '</th> <th scope="col">' . __('E-mail') . '</th> <th scope="col">' . __('IP') . '</th> <th scope="col">' . __('Comment Excerpt') . '</th> <th scope="col" colspan="3">' . __('Actions') . '</th> </tr>'; foreach ($comments as $comment) { $authordata = get_userdata($wpdb->get_var("SELECT post_author FROM $wpdb->posts WHERE ID = $comment->comment_post_ID")); $class = ('alternate' == $class) ? '' : 'alternate'; ?> <tr class='<?php echo $class; ?>'> <td><?php if (user_can_delete_post_comments($user_ID, $comment->comment_post_ID) ) { ?><input type="checkbox" name="delete_comments[]" value="<?php echo $comment->comment_ID; ?>" /><?php } ?></td> <td><?php comment_author_link() ?></td> <td><?php comment_author_email_link() ?></td> <td><a href="http://ws.arin.net/cgi-bin/whois.pl?queryinput=<?php comment_author_IP() ?>"><?php comment_author_IP() ?></a></td> <td><?php comment_excerpt(); ?></td> <td><a href="<?php echo get_permalink($comment->comment_post_ID); ?>#comment-<?php comment_ID() ?>" class="edit"><?php _e('View') ?></a></td> <td><?php if ( user_can_edit_post_comments($user_ID, $comment->comment_post_ID) ) { echo "<a href='post.php?action=editcomment&comment=$comment->comment_ID' class='edit'>" . __('Edit') . "</a>"; } ?></td> <td><?php if ( user_can_delete_post_comments($user_ID, $comment->comment_post_ID) ) { echo "<a href=\"post.php?action=deletecomment&p=".$comment->comment_post_ID."&comment=".$comment->comment_ID."\" onclick=\"return confirm('" . sprintf(__("You are about to delete this comment by \'%s\'\\n \'Cancel\' to stop, \'OK\' to delete."), $comment->comment_author) . "')\" class='delete'>" . __('Delete') . "</a>"; } ?></td> </tr> <?php } // end foreach ?></table> <p><a href="javascript:;" onclick="checkAll(document.getElementById('deletecomments')); return false; "><?php _e('Invert Checkbox Selection') ?></a></p> <p class="submit"><input type="submit" name="Submit" value="<?php _e('Delete Checked Comments') ?> »" onclick="return confirm('<?php _e("You are about to delete these comments permanently \\n \'Cancel\' to stop, \'OK\' to delete.") ?>')" /> </p> </form> <?php } else { ?> <p> <strong><?php _e('No results found.') ?></strong> </p> <?php } // end if ($comments) } ?> </div> <?php include('admin-footer.php'); ?>