165 lines
3.8 KiB
PHP
165 lines
3.8 KiB
PHP
<?php
|
|
/**
|
|
* WP_oEmbed_Controller class, used to provide an oEmbed endpoint.
|
|
*
|
|
* @package WordPress
|
|
* @subpackage Embeds
|
|
* @since 4.4.0
|
|
*/
|
|
|
|
/**
|
|
* oEmbed API endpoint controller.
|
|
*
|
|
* Parses the oEmbed API requests and delivers
|
|
* XML and JSON responses.
|
|
*
|
|
* @since 4.4.0
|
|
*/
|
|
final class WP_oEmbed_Controller {
|
|
/**
|
|
* Hook into the query parsing to detect oEmbed requests.
|
|
*
|
|
* If an oEmbed request is made, trigger the output.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param WP_Query $wp_query The WP_Query instance (passed by reference).
|
|
*/
|
|
public function parse_query( $wp_query ) {
|
|
if ( false === $wp_query->get( 'oembed', false ) ) {
|
|
return;
|
|
}
|
|
|
|
if ( false === $wp_query->get( 'url', false ) ) {
|
|
status_header( 400 );
|
|
return get_status_header_desc( 400 );
|
|
exit;
|
|
}
|
|
|
|
$url = esc_url_raw( get_query_var( 'url' ) );
|
|
|
|
$format = wp_oembed_ensure_format( get_query_var( 'format' ) );
|
|
|
|
/**
|
|
* Filter the maxwidth oEmbed parameter.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param int $maxwidth Maximum allowed width. Default 600.
|
|
*/
|
|
$maxwidth = apply_filters( 'oembed_default_width', 600 );
|
|
$maxwidth = absint( get_query_var( 'maxwidth', $maxwidth ) );
|
|
|
|
$callback = get_query_var( '_jsonp', false );
|
|
|
|
$request = array(
|
|
'url' => $url,
|
|
'format' => $format,
|
|
'maxwidth' => $maxwidth,
|
|
'callback' => $callback,
|
|
);
|
|
|
|
echo $this->dispatch( $request );
|
|
exit;
|
|
}
|
|
|
|
/**
|
|
* Handle the whole request and print the response.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param array $request The request arguments.
|
|
* @return string The oEmbed API response.
|
|
*/
|
|
public function dispatch( $request ) {
|
|
$post_id = url_to_postid( $request['url'] );
|
|
|
|
/**
|
|
* Filter the determined post id.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param int $post_id The post ID.
|
|
* @param string $url The requestd URL.
|
|
*/
|
|
$post_id = apply_filters( 'oembed_request_post_id', $post_id, $request['url'] );
|
|
|
|
$data = get_oembed_response_data( $post_id, $request['maxwidth'] );
|
|
|
|
if ( false === $data ) {
|
|
status_header( 404 );
|
|
return get_status_header_desc( 404 );
|
|
}
|
|
|
|
if ( 'json' === $request['format'] ) {
|
|
return $this->json_response( $data, $request );
|
|
}
|
|
|
|
return $this->xml_response( $data );
|
|
}
|
|
|
|
/**
|
|
* Print the oEmbed JSON response.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param array $data The oEmbed response data.
|
|
* @param array $request The request arguments.
|
|
* @return string The JSON response data.
|
|
*/
|
|
public function json_response( $data, $request ) {
|
|
if ( ! is_string( $request['callback'] ) || preg_match( '/[^\w\.]/', $request['callback'] ) ) {
|
|
$request['callback'] = false;
|
|
}
|
|
|
|
$result = wp_json_encode( $data );
|
|
|
|
// Bail if the result couldn't be JSON encoded.
|
|
if ( ! $result || ! is_array( $data ) || empty( $data ) ) {
|
|
status_header( 501 );
|
|
return get_status_header_desc( 501 );
|
|
}
|
|
|
|
if ( ! headers_sent() ) {
|
|
$content_type = $request['callback'] ? 'application/javascript' : 'application/json';
|
|
header( 'Content-Type: ' . $content_type . '; charset=' . get_option( 'blog_charset' ) );
|
|
header( 'X-Content-Type-Options: nosniff' );
|
|
}
|
|
|
|
if ( $request['callback'] ) {
|
|
return '/**/' . $request['callback'] . '(' . $result . ')';
|
|
}
|
|
|
|
return $result;
|
|
}
|
|
|
|
/**
|
|
* Print the oEmbed XML response.
|
|
*
|
|
* @since 4.4.0
|
|
*
|
|
* @param array $data The oEmbed response data.
|
|
* @return string The XML response data.
|
|
*/
|
|
public function xml_response( $data ) {
|
|
if ( ! class_exists( 'SimpleXMLElement' ) ) {
|
|
status_header( 501 );
|
|
return get_status_header_desc( 501 );
|
|
}
|
|
|
|
$result = _oembed_create_xml( $data );
|
|
|
|
// Bail if there's no XML.
|
|
if ( ! $result ) {
|
|
status_header( 501 );
|
|
return get_status_header_desc( 501 );
|
|
}
|
|
|
|
if ( ! headers_sent() ) {
|
|
header( 'Content-Type: text/xml; charset=' . get_option( 'blog_charset' ) );
|
|
}
|
|
|
|
return $result;
|
|
}
|
|
}
|