8 require( ABSPATH . WPINC . '/option.php' );
11 * Converts given date string into a different format.
13 * $format should be either a PHP date format string, e.g. 'U' for a Unix
14 * timestamp, or 'G' for a Unix timestamp assuming that $date is GMT.
16 * If $translate is true then the given date and format string will
17 * be passed to date_i18n() for translation.
21 * @param string $format Format of the date to return.
22 * @param string $date Date string to convert.
23 * @param bool $translate Whether the return date should be translated. Default is true.
24 * @return string|int Formatted date string, or Unix timestamp.
26 function mysql2date( $format, $date, $translate = true ) {
31 return strtotime( $date . ' +0000' );
33 $i = strtotime( $date );
39 return date_i18n( $format, $i );
41 return date( $format, $i );
45 * Retrieve the current time based on specified type.
47 * The 'mysql' type will return the time in the format for MySQL DATETIME field.
48 * The 'timestamp' type will return the current timestamp.
50 * If $gmt is set to either '1' or 'true', then both types will use GMT time.
51 * if $gmt is false, the output is adjusted with the GMT offset in the WordPress option.
55 * @param string $type Either 'mysql' or 'timestamp'.
56 * @param int|bool $gmt Optional. Whether to use GMT timezone. Default is false.
57 * @return int|string String if $type is 'gmt', int if $type is 'timestamp'.
59 function current_time( $type, $gmt = 0 ) {
62 return ( $gmt ) ? gmdate( 'Y-m-d H:i:s' ) : gmdate( 'Y-m-d H:i:s', ( time() + ( get_option( 'gmt_offset' ) * HOUR_IN_SECONDS ) ) );
65 return ( $gmt ) ? time() : time() + ( get_option( 'gmt_offset' ) * HOUR_IN_SECONDS );
71 * Retrieve the date in localized format, based on timestamp.
73 * If the locale specifies the locale month and weekday, then the locale will
74 * take over the format for the date. If it isn't, then the date format string
75 * will be used instead.
79 * @param string $dateformatstring Format to display the date.
80 * @param int $unixtimestamp Optional. Unix timestamp.
81 * @param bool $gmt Optional, default is false. Whether to convert to GMT for time.
82 * @return string The date, translated if locale specifies it.
84 function date_i18n( $dateformatstring, $unixtimestamp = false, $gmt = false ) {
90 $i = current_time( 'timestamp' );
93 // we should not let date() interfere with our
94 // specially computed timestamp
98 // store original value for language with untypical grammars
99 // see http://core.trac.wordpress.org/ticket/9396
100 $req_format = $dateformatstring;
102 $datefunc = $gmt? 'gmdate' : 'date';
104 if ( ( !empty( $wp_locale->month ) ) && ( !empty( $wp_locale->weekday ) ) ) {
105 $datemonth = $wp_locale->get_month( $datefunc( 'm', $i ) );
106 $datemonth_abbrev = $wp_locale->get_month_abbrev( $datemonth );
107 $dateweekday = $wp_locale->get_weekday( $datefunc( 'w', $i ) );
108 $dateweekday_abbrev = $wp_locale->get_weekday_abbrev( $dateweekday );
109 $datemeridiem = $wp_locale->get_meridiem( $datefunc( 'a', $i ) );
110 $datemeridiem_capital = $wp_locale->get_meridiem( $datefunc( 'A', $i ) );
111 $dateformatstring = ' '.$dateformatstring;
112 $dateformatstring = preg_replace( "/([^\\\])D/", "\\1" . backslashit( $dateweekday_abbrev ), $dateformatstring );
113 $dateformatstring = preg_replace( "/([^\\\])F/", "\\1" . backslashit( $datemonth ), $dateformatstring );
114 $dateformatstring = preg_replace( "/([^\\\])l/", "\\1" . backslashit( $dateweekday ), $dateformatstring );
115 $dateformatstring = preg_replace( "/([^\\\])M/", "\\1" . backslashit( $datemonth_abbrev ), $dateformatstring );
116 $dateformatstring = preg_replace( "/([^\\\])a/", "\\1" . backslashit( $datemeridiem ), $dateformatstring );
117 $dateformatstring = preg_replace( "/([^\\\])A/", "\\1" . backslashit( $datemeridiem_capital ), $dateformatstring );
119 $dateformatstring = substr( $dateformatstring, 1, strlen( $dateformatstring ) -1 );
121 $timezone_formats = array( 'P', 'I', 'O', 'T', 'Z', 'e' );
122 $timezone_formats_re = implode( '|', $timezone_formats );
123 if ( preg_match( "/$timezone_formats_re/", $dateformatstring ) ) {
124 $timezone_string = get_option( 'timezone_string' );
125 if ( $timezone_string ) {
126 $timezone_object = timezone_open( $timezone_string );
127 $date_object = date_create( null, $timezone_object );
128 foreach( $timezone_formats as $timezone_format ) {
129 if ( false !== strpos( $dateformatstring, $timezone_format ) ) {
130 $formatted = date_format( $date_object, $timezone_format );
131 $dateformatstring = ' '.$dateformatstring;
132 $dateformatstring = preg_replace( "/([^\\\])$timezone_format/", "\\1" . backslashit( $formatted ), $dateformatstring );
133 $dateformatstring = substr( $dateformatstring, 1, strlen( $dateformatstring ) -1 );
138 $j = @$datefunc( $dateformatstring, $i );
139 // allow plugins to redo this entirely for languages with untypical grammars
140 $j = apply_filters('date_i18n', $j, $req_format, $i, $gmt);
145 * Convert integer number to format based on the locale.
149 * @param int $number The number to convert based on locale.
150 * @param int $decimals Precision of the number of decimal places.
151 * @return string Converted number in string format.
153 function number_format_i18n( $number, $decimals = 0 ) {
155 $formatted = number_format( $number, absint( $decimals ), $wp_locale->number_format['decimal_point'], $wp_locale->number_format['thousands_sep'] );
156 return apply_filters( 'number_format_i18n', $formatted );
160 * Convert number of bytes largest unit bytes will fit into.
162 * It is easier to read 1kB than 1024 bytes and 1MB than 1048576 bytes. Converts
163 * number of bytes to human readable number by taking the number of that unit
164 * that the bytes will go into it. Supports TB value.
166 * Please note that integers in PHP are limited to 32 bits, unless they are on
167 * 64 bit architecture, then they have 64 bit size. If you need to place the
168 * larger size then what PHP integer type will hold, then use a string. It will
169 * be converted to a double, which should always have 64 bit length.
171 * Technically the correct unit names for powers of 1024 are KiB, MiB etc.
172 * @link http://en.wikipedia.org/wiki/Byte
176 * @param int|string $bytes Number of bytes. Note max integer size for integers.
177 * @param int $decimals Precision of number of decimal places. Deprecated.
178 * @return bool|string False on failure. Number string on success.
180 function size_format( $bytes, $decimals = 0 ) {
182 // ========================= Origin ====
183 'TB' => 1099511627776, // pow( 1024, 4)
184 'GB' => 1073741824, // pow( 1024, 3)
185 'MB' => 1048576, // pow( 1024, 2)
186 'kB' => 1024, // pow( 1024, 1)
187 'B ' => 1, // pow( 1024, 0)
189 foreach ( $quant as $unit => $mag )
190 if ( doubleval($bytes) >= $mag )
191 return number_format_i18n( $bytes / $mag, $decimals ) . ' ' . $unit;
197 * Get the week start and end from the datetime or date string from mysql.
201 * @param string $mysqlstring Date or datetime field type from mysql.
202 * @param int $start_of_week Optional. Start of the week as an integer.
203 * @return array Keys are 'start' and 'end'.
205 function get_weekstartend( $mysqlstring, $start_of_week = '' ) {
206 $my = substr( $mysqlstring, 0, 4 ); // Mysql string Year
207 $mm = substr( $mysqlstring, 8, 2 ); // Mysql string Month
208 $md = substr( $mysqlstring, 5, 2 ); // Mysql string day
209 $day = mktime( 0, 0, 0, $md, $mm, $my ); // The timestamp for mysqlstring day.
210 $weekday = date( 'w', $day ); // The day of the week from the timestamp
211 if ( !is_numeric($start_of_week) )
212 $start_of_week = get_option( 'start_of_week' );
214 if ( $weekday < $start_of_week )
217 $start = $day - DAY_IN_SECONDS * ( $weekday - $start_of_week ); // The most recent week start day on or before $day
218 $end = $start + 7 * DAY_IN_SECONDS - 1; // $start + 7 days - 1 second
219 return compact( 'start', 'end' );
223 * Unserialize value only if it was serialized.
227 * @param string $original Maybe unserialized original, if is needed.
228 * @return mixed Unserialized data can be any type.
230 function maybe_unserialize( $original ) {
231 if ( is_serialized( $original ) ) // don't attempt to unserialize data that wasn't serialized going in
232 return @unserialize( $original );
237 * Check value to find if it was serialized.
239 * If $data is not an string, then returned value will always be false.
240 * Serialized data is always a string.
244 * @param mixed $data Value to check to see if was serialized.
245 * @return bool False if not serialized and true if it was.
247 function is_serialized( $data ) {
248 // if it isn't a string, it isn't serialized
249 if ( ! is_string( $data ) )
251 $data = trim( $data );
254 $length = strlen( $data );
257 if ( ':' !== $data[1] )
259 $lastc = $data[$length-1];
260 if ( ';' !== $lastc && '}' !== $lastc )
265 if ( '"' !== $data[$length-2] )
269 return (bool) preg_match( "/^{$token}:[0-9]+:/s", $data );
273 return (bool) preg_match( "/^{$token}:[0-9.E-]+;\$/", $data );
279 * Check whether serialized data is of string type.
283 * @param mixed $data Serialized data
284 * @return bool False if not a serialized string, true if it is.
286 function is_serialized_string( $data ) {
287 // if it isn't a string, it isn't a serialized string
288 if ( !is_string( $data ) )
290 $data = trim( $data );
291 $length = strlen( $data );
294 elseif ( ':' !== $data[1] )
296 elseif ( ';' !== $data[$length-1] )
298 elseif ( $data[0] !== 's' )
300 elseif ( '"' !== $data[$length-2] )
307 * Serialize data, if needed.
311 * @param mixed $data Data that might be serialized.
312 * @return mixed A scalar data
314 function maybe_serialize( $data ) {
315 if ( is_array( $data ) || is_object( $data ) )
316 return serialize( $data );
318 // Double serialization is required for backward compatibility.
319 // See http://core.trac.wordpress.org/ticket/12930
320 if ( is_serialized( $data ) )
321 return serialize( $data );
327 * Retrieve post title from XMLRPC XML.
329 * If the title element is not part of the XML, then the default post title from
330 * the $post_default_title will be used instead.
336 * @global string $post_default_title Default XMLRPC post title.
338 * @param string $content XMLRPC XML Request content
339 * @return string Post title
341 function xmlrpc_getposttitle( $content ) {
342 global $post_default_title;
343 if ( preg_match( '/<title>(.+?)<\/title>/is', $content, $matchtitle ) ) {
344 $post_title = $matchtitle[1];
346 $post_title = $post_default_title;
352 * Retrieve the post category or categories from XMLRPC XML.
354 * If the category element is not found, then the default post category will be
355 * used. The return type then would be what $post_default_category. If the
356 * category is found, then it will always be an array.
362 * @global string $post_default_category Default XMLRPC post category.
364 * @param string $content XMLRPC XML Request content
365 * @return string|array List of categories or category name.
367 function xmlrpc_getpostcategory( $content ) {
368 global $post_default_category;
369 if ( preg_match( '/<category>(.+?)<\/category>/is', $content, $matchcat ) ) {
370 $post_category = trim( $matchcat[1], ',' );
371 $post_category = explode( ',', $post_category );
373 $post_category = $post_default_category;
375 return $post_category;
379 * XMLRPC XML content without title and category elements.
385 * @param string $content XMLRPC XML Request content
386 * @return string XMLRPC XML Request content without title and category elements.
388 function xmlrpc_removepostdata( $content ) {
389 $content = preg_replace( '/<title>(.+?)<\/title>/si', '', $content );
390 $content = preg_replace( '/<category>(.+?)<\/category>/si', '', $content );
391 $content = trim( $content );
396 * Check content for video and audio links to add as enclosures.
398 * Will not add enclosures that have already been added and will
399 * remove enclosures that are no longer in the post. This is called as
400 * pingbacks and trackbacks.
407 * @param string $content Post Content
408 * @param int $post_ID Post ID
410 function do_enclose( $content, $post_ID ) {
413 //TODO: Tidy this ghetto code up and make the debug code optional
414 include_once( ABSPATH . WPINC . '/class-IXR.php' );
416 $post_links = array();
418 $pung = get_enclosed( $post_ID );
421 $gunk = '/#~:.?+=&%@!\-';
423 $any = $ltrs . $gunk . $punc;
425 preg_match_all( "{\b http : [$any] +? (?= [$punc] * [^$any] | $)}x", $content, $post_links_temp );
427 foreach ( $pung as $link_test ) {
428 if ( !in_array( $link_test, $post_links_temp[0] ) ) { // link no longer in post
429 $mids = $wpdb->get_col( $wpdb->prepare("SELECT meta_id FROM $wpdb->postmeta WHERE post_id = %d AND meta_key = 'enclosure' AND meta_value LIKE (%s)", $post_ID, like_escape( $link_test ) . '%') );
430 foreach ( $mids as $mid )
431 delete_metadata_by_mid( 'post', $mid );
435 foreach ( (array) $post_links_temp[0] as $link_test ) {
436 if ( !in_array( $link_test, $pung ) ) { // If we haven't pung it already
437 $test = @parse_url( $link_test );
438 if ( false === $test )
440 if ( isset( $test['query'] ) )
441 $post_links[] = $link_test;
442 elseif ( isset($test['path']) && ( $test['path'] != '/' ) && ($test['path'] != '' ) )
443 $post_links[] = $link_test;
447 foreach ( (array) $post_links as $url ) {
448 if ( $url != '' && !$wpdb->get_var( $wpdb->prepare( "SELECT post_id FROM $wpdb->postmeta WHERE post_id = %d AND meta_key = 'enclosure' AND meta_value LIKE (%s)", $post_ID, like_escape( $url ) . '%' ) ) ) {
450 if ( $headers = wp_get_http_headers( $url) ) {
451 $len = isset( $headers['content-length'] ) ? (int) $headers['content-length'] : 0;
452 $type = isset( $headers['content-type'] ) ? $headers['content-type'] : '';
453 $allowed_types = array( 'video', 'audio' );
455 // Check to see if we can figure out the mime type from
457 $url_parts = @parse_url( $url );
458 if ( false !== $url_parts ) {
459 $extension = pathinfo( $url_parts['path'], PATHINFO_EXTENSION );
460 if ( !empty( $extension ) ) {
461 foreach ( wp_get_mime_types() as $exts => $mime ) {
462 if ( preg_match( '!^(' . $exts . ')$!i', $extension ) ) {
470 if ( in_array( substr( $type, 0, strpos( $type, "/" ) ), $allowed_types ) ) {
471 add_post_meta( $post_ID, 'enclosure', "$url\n$len\n$mime\n" );
479 * Perform a HTTP HEAD or GET request.
481 * If $file_path is a writable filename, this will do a GET request and write
482 * the file to that path.
486 * @param string $url URL to fetch.
487 * @param string|bool $file_path Optional. File path to write request to.
488 * @param int $red (private) The number of Redirects followed, Upon 5 being hit, returns false.
489 * @return bool|string False on failure and string of headers if HEAD request.
491 function wp_get_http( $url, $file_path = false, $red = 1 ) {
492 @set_time_limit( 60 );
498 $options['redirection'] = 5;
500 if ( false == $file_path )
501 $options['method'] = 'HEAD';
503 $options['method'] = 'GET';
505 $response = wp_safe_remote_request( $url, $options );
507 if ( is_wp_error( $response ) )
510 $headers = wp_remote_retrieve_headers( $response );
511 $headers['response'] = wp_remote_retrieve_response_code( $response );
513 // WP_HTTP no longer follows redirects for HEAD requests.
514 if ( 'HEAD' == $options['method'] && in_array($headers['response'], array(301, 302)) && isset( $headers['location'] ) ) {
515 return wp_get_http( $headers['location'], $file_path, ++$red );
518 if ( false == $file_path )
521 // GET request - write it to the supplied filename
522 $out_fp = fopen($file_path, 'w');
526 fwrite( $out_fp, wp_remote_retrieve_body( $response ) );
534 * Retrieve HTTP Headers from URL.
539 * @param bool $deprecated Not Used.
540 * @return bool|string False on failure, headers on success.
542 function wp_get_http_headers( $url, $deprecated = false ) {
543 if ( !empty( $deprecated ) )
544 _deprecated_argument( __FUNCTION__, '2.7' );
546 $response = wp_safe_remote_head( $url );
548 if ( is_wp_error( $response ) )
551 return wp_remote_retrieve_headers( $response );
555 * Whether today is a new day.
559 * @uses $previousday Previous day
561 * @return int 1 when new day, 0 if not a new day.
563 function is_new_day() {
564 global $currentday, $previousday;
565 if ( $currentday != $previousday )
572 * Build URL query based on an associative and, or indexed array.
574 * This is a convenient function for easily building url queries. It sets the
575 * separator to '&' and uses _http_build_query() function.
577 * @see _http_build_query() Used to build the query
578 * @link http://us2.php.net/manual/en/function.http-build-query.php more on what
579 * http_build_query() does.
583 * @param array $data URL-encode key/value pairs.
584 * @return string URL encoded string
586 function build_query( $data ) {
587 return _http_build_query( $data, null, '&', '', false );
590 // from php.net (modified by Mark Jaquith to behave like the native PHP5 function)
591 function _http_build_query($data, $prefix=null, $sep=null, $key='', $urlencode=true) {
594 foreach ( (array) $data as $k => $v ) {
597 if ( is_int($k) && $prefix != null )
600 $k = $key . '%5B' . $k . '%5D';
603 elseif ( $v === FALSE )
606 if ( is_array($v) || is_object($v) )
607 array_push($ret,_http_build_query($v, '', $sep, $k, $urlencode));
608 elseif ( $urlencode )
609 array_push($ret, $k.'='.urlencode($v));
611 array_push($ret, $k.'='.$v);
615 $sep = ini_get('arg_separator.output');
617 return implode($sep, $ret);
621 * Retrieve a modified URL query string.
623 * You can rebuild the URL and append a new query variable to the URL query by
624 * using this function. You can also retrieve the full URL with query data.
626 * Adding a single key & value or an associative array. Setting a key value to
627 * an empty string removes the key. Omitting oldquery_or_uri uses the $_SERVER
628 * value. Additional values provided are expected to be encoded appropriately
629 * with urlencode() or rawurlencode().
633 * @param mixed $param1 Either newkey or an associative_array
634 * @param mixed $param2 Either newvalue or oldquery or uri
635 * @param mixed $param3 Optional. Old query or uri
636 * @return string New URL query string.
638 function add_query_arg() {
640 $args = func_get_args();
641 if ( is_array( $args[0] ) ) {
642 if ( count( $args ) < 2 || false === $args[1] )
643 $uri = $_SERVER['REQUEST_URI'];
647 if ( count( $args ) < 3 || false === $args[2] )
648 $uri = $_SERVER['REQUEST_URI'];
653 if ( $frag = strstr( $uri, '#' ) )
654 $uri = substr( $uri, 0, -strlen( $frag ) );
658 if ( 0 === stripos( $uri, 'http://' ) ) {
659 $protocol = 'http://';
660 $uri = substr( $uri, 7 );
661 } elseif ( 0 === stripos( $uri, 'https://' ) ) {
662 $protocol = 'https://';
663 $uri = substr( $uri, 8 );
668 if ( strpos( $uri, '?' ) !== false ) {
669 $parts = explode( '?', $uri, 2 );
670 if ( 1 == count( $parts ) ) {
674 $base = $parts[0] . '?';
677 } elseif ( $protocol || strpos( $uri, '=' ) === false ) {
685 wp_parse_str( $query, $qs );
686 $qs = urlencode_deep( $qs ); // this re-URL-encodes things that were already in the query string
687 if ( is_array( $args[0] ) ) {
689 $qs = array_merge( $qs, $kayvees );
691 $qs[ $args[0] ] = $args[1];
694 foreach ( $qs as $k => $v ) {
699 $ret = build_query( $qs );
700 $ret = trim( $ret, '?' );
701 $ret = preg_replace( '#=(&|$)#', '$1', $ret );
702 $ret = $protocol . $base . $ret . $frag;
703 $ret = rtrim( $ret, '?' );
708 * Removes an item or list from the query string.
712 * @param string|array $key Query key or keys to remove.
713 * @param bool $query When false uses the $_SERVER value.
714 * @return string New URL query string.
716 function remove_query_arg( $key, $query=false ) {
717 if ( is_array( $key ) ) { // removing multiple keys
718 foreach ( $key as $k )
719 $query = add_query_arg( $k, false, $query );
722 return add_query_arg( $key, false, $query );
726 * Walks the array while sanitizing the contents.
730 * @param array $array Array to walk while sanitizing contents.
731 * @return array Sanitized $array.
733 function add_magic_quotes( $array ) {
734 foreach ( (array) $array as $k => $v ) {
735 if ( is_array( $v ) ) {
736 $array[$k] = add_magic_quotes( $v );
738 $array[$k] = addslashes( $v );
745 * HTTP request for URI to retrieve content.
748 * @uses wp_remote_get()
750 * @param string $uri URI/URL of web page to retrieve.
751 * @return bool|string HTTP content. False on failure.
753 function wp_remote_fopen( $uri ) {
754 $parsed_url = @parse_url( $uri );
756 if ( !$parsed_url || !is_array( $parsed_url ) )
760 $options['timeout'] = 10;
762 $response = wp_safe_remote_get( $uri, $options );
764 if ( is_wp_error( $response ) )
767 return wp_remote_retrieve_body( $response );
771 * Set up the WordPress query.
775 * @param string $query_vars Default WP_Query arguments.
777 function wp( $query_vars = '' ) {
778 global $wp, $wp_query, $wp_the_query;
779 $wp->main( $query_vars );
781 if ( !isset($wp_the_query) )
782 $wp_the_query = $wp_query;
786 * Retrieve the description for the HTTP status.
790 * @param int $code HTTP status code.
791 * @return string Empty string if not found, or description if found.
793 function get_status_header_desc( $code ) {
794 global $wp_header_to_desc;
796 $code = absint( $code );
798 if ( !isset( $wp_header_to_desc ) ) {
799 $wp_header_to_desc = array(
801 101 => 'Switching Protocols',
807 203 => 'Non-Authoritative Information',
809 205 => 'Reset Content',
810 206 => 'Partial Content',
811 207 => 'Multi-Status',
814 300 => 'Multiple Choices',
815 301 => 'Moved Permanently',
818 304 => 'Not Modified',
821 307 => 'Temporary Redirect',
823 400 => 'Bad Request',
824 401 => 'Unauthorized',
825 402 => 'Payment Required',
828 405 => 'Method Not Allowed',
829 406 => 'Not Acceptable',
830 407 => 'Proxy Authentication Required',
831 408 => 'Request Timeout',
834 411 => 'Length Required',
835 412 => 'Precondition Failed',
836 413 => 'Request Entity Too Large',
837 414 => 'Request-URI Too Long',
838 415 => 'Unsupported Media Type',
839 416 => 'Requested Range Not Satisfiable',
840 417 => 'Expectation Failed',
841 422 => 'Unprocessable Entity',
843 424 => 'Failed Dependency',
844 426 => 'Upgrade Required',
846 500 => 'Internal Server Error',
847 501 => 'Not Implemented',
848 502 => 'Bad Gateway',
849 503 => 'Service Unavailable',
850 504 => 'Gateway Timeout',
851 505 => 'HTTP Version Not Supported',
852 506 => 'Variant Also Negotiates',
853 507 => 'Insufficient Storage',
854 510 => 'Not Extended'
858 if ( isset( $wp_header_to_desc[$code] ) )
859 return $wp_header_to_desc[$code];
865 * Set HTTP status header.
868 * @uses apply_filters() Calls 'status_header' on status header string, HTTP
869 * HTTP code, HTTP code description, and protocol string as separate
872 * @param int $header HTTP status code
875 function status_header( $header ) {
876 $text = get_status_header_desc( $header );
878 if ( empty( $text ) )
881 $protocol = $_SERVER["SERVER_PROTOCOL"];
882 if ( 'HTTP/1.1' != $protocol && 'HTTP/1.0' != $protocol )
883 $protocol = 'HTTP/1.0';
884 $status_header = "$protocol $header $text";
885 if ( function_exists( 'apply_filters' ) )
886 $status_header = apply_filters( 'status_header', $status_header, $header, $text, $protocol );
888 return @header( $status_header, true, $header );
892 * Gets the header information to prevent caching.
894 * The several different headers cover the different ways cache prevention is handled
895 * by different browsers
899 * @uses apply_filters()
900 * @return array The associative array of header names and field values.
902 function wp_get_nocache_headers() {
904 'Expires' => 'Wed, 11 Jan 1984 05:00:00 GMT',
905 'Cache-Control' => 'no-cache, must-revalidate, max-age=0',
906 'Pragma' => 'no-cache',
909 if ( function_exists('apply_filters') ) {
910 $headers = (array) apply_filters('nocache_headers', $headers);
912 $headers['Last-Modified'] = false;
917 * Sets the headers to prevent caching for the different browsers.
919 * Different browsers support different nocache headers, so several headers must
920 * be sent so that all of them get the point that no caching should occur.
923 * @uses wp_get_nocache_headers()
925 function nocache_headers() {
926 $headers = wp_get_nocache_headers();
928 unset( $headers['Last-Modified'] );
930 // In PHP 5.3+, make sure we are not sending a Last-Modified header.
931 if ( function_exists( 'header_remove' ) ) {
932 @header_remove( 'Last-Modified' );
934 // In PHP 5.2, send an empty Last-Modified header, but only as a
935 // last resort to override a header already sent. #WP23021
936 foreach ( headers_list() as $header ) {
937 if ( 0 === stripos( $header, 'Last-Modified' ) ) {
938 $headers['Last-Modified'] = '';
944 foreach( $headers as $name => $field_value )
945 @header("{$name}: {$field_value}");
949 * Set the headers for caching for 10 days with JavaScript content type.
953 function cache_javascript_headers() {
954 $expiresOffset = 10 * DAY_IN_SECONDS;
955 header( "Content-Type: text/javascript; charset=" . get_bloginfo( 'charset' ) );
956 header( "Vary: Accept-Encoding" ); // Handle proxies
957 header( "Expires: " . gmdate( "D, d M Y H:i:s", time() + $expiresOffset ) . " GMT" );
961 * Retrieve the number of database queries during the WordPress execution.
965 * @return int Number of database queries
967 function get_num_queries() {
969 return $wpdb->num_queries;
973 * Whether input is yes or no. Must be 'y' to be true.
977 * @param string $yn Character string containing either 'y' or 'n'
978 * @return bool True if yes, false on anything else
980 function bool_from_yn( $yn ) {
981 return ( strtolower( $yn ) == 'y' );
985 * Loads the feed template from the use of an action hook.
987 * If the feed action does not have a hook, then the function will die with a
988 * message telling the visitor that the feed is not valid.
990 * It is better to only have one hook for each feed.
993 * @uses $wp_query Used to tell if the use a comment feed.
994 * @uses do_action() Calls 'do_feed_$feed' hook, if a hook exists for the feed.
999 $feed = get_query_var( 'feed' );
1001 // Remove the pad, if present.
1002 $feed = preg_replace( '/^_+/', '', $feed );
1004 if ( $feed == '' || $feed == 'feed' )
1005 $feed = get_default_feed();
1007 $hook = 'do_feed_' . $feed;
1008 if ( !has_action($hook) ) {
1009 $message = sprintf( __( 'ERROR: %s is not a valid feed template.' ), esc_html($feed));
1010 wp_die( $message, '', array( 'response' => 404 ) );
1013 do_action( $hook, $wp_query->is_comment_feed );
1017 * Load the RDF RSS 0.91 Feed template.
1021 function do_feed_rdf() {
1022 load_template( ABSPATH . WPINC . '/feed-rdf.php' );
1026 * Load the RSS 1.0 Feed Template.
1030 function do_feed_rss() {
1031 load_template( ABSPATH . WPINC . '/feed-rss.php' );
1035 * Load either the RSS2 comment feed or the RSS2 posts feed.
1039 * @param bool $for_comments True for the comment feed, false for normal feed.
1041 function do_feed_rss2( $for_comments ) {
1042 if ( $for_comments )
1043 load_template( ABSPATH . WPINC . '/feed-rss2-comments.php' );
1045 load_template( ABSPATH . WPINC . '/feed-rss2.php' );
1049 * Load either Atom comment feed or Atom posts feed.
1053 * @param bool $for_comments True for the comment feed, false for normal feed.
1055 function do_feed_atom( $for_comments ) {
1057 load_template( ABSPATH . WPINC . '/feed-atom-comments.php');
1059 load_template( ABSPATH . WPINC . '/feed-atom.php' );
1063 * Display the robots.txt file content.
1065 * The echo content should be with usage of the permalinks or for creating the
1069 * @uses do_action() Calls 'do_robotstxt' hook for displaying robots.txt rules.
1071 function do_robots() {
1072 header( 'Content-Type: text/plain; charset=utf-8' );
1074 do_action( 'do_robotstxt' );
1076 $output = "User-agent: *\n";
1077 $public = get_option( 'blog_public' );
1078 if ( '0' == $public ) {
1079 $output .= "Disallow: /\n";
1081 $site_url = parse_url( site_url() );
1082 $path = ( !empty( $site_url['path'] ) ) ? $site_url['path'] : '';
1083 $output .= "Disallow: $path/wp-admin/\n";
1084 $output .= "Disallow: $path/wp-includes/\n";
1087 echo apply_filters('robots_txt', $output, $public);
1091 * Test whether blog is already installed.
1093 * The cache will be checked first. If you have a cache plugin, which saves the
1094 * cache values, then this will work. If you use the default WordPress cache,
1095 * and the database goes away, then you might have problems.
1097 * Checks for the option siteurl for whether WordPress is installed.
1102 * @return bool Whether blog is already installed.
1104 function is_blog_installed() {
1107 // Check cache first. If options table goes away and we have true cached, oh well.
1108 if ( wp_cache_get( 'is_blog_installed' ) )
1111 $suppress = $wpdb->suppress_errors();
1112 if ( ! defined( 'WP_INSTALLING' ) ) {
1113 $alloptions = wp_load_alloptions();
1115 // If siteurl is not set to autoload, check it specifically
1116 if ( !isset( $alloptions['siteurl'] ) )
1117 $installed = $wpdb->get_var( "SELECT option_value FROM $wpdb->options WHERE option_name = 'siteurl'" );
1119 $installed = $alloptions['siteurl'];
1120 $wpdb->suppress_errors( $suppress );
1122 $installed = !empty( $installed );
1123 wp_cache_set( 'is_blog_installed', $installed );
1128 // If visiting repair.php, return true and let it take over.
1129 if ( defined( 'WP_REPAIRING' ) )
1132 $suppress = $wpdb->suppress_errors();
1134 // Loop over the WP tables. If none exist, then scratch install is allowed.
1135 // If one or more exist, suggest table repair since we got here because the options
1136 // table could not be accessed.
1137 $wp_tables = $wpdb->tables();
1138 foreach ( $wp_tables as $table ) {
1139 // The existence of custom user tables shouldn't suggest an insane state or prevent a clean install.
1140 if ( defined( 'CUSTOM_USER_TABLE' ) && CUSTOM_USER_TABLE == $table )
1142 if ( defined( 'CUSTOM_USER_META_TABLE' ) && CUSTOM_USER_META_TABLE == $table )
1145 if ( ! $wpdb->get_results( "DESCRIBE $table;" ) )
1148 // One or more tables exist. We are insane.
1150 wp_load_translations_early();
1152 // Die with a DB error.
1153 $wpdb->error = sprintf( __( 'One or more database tables are unavailable. The database may need to be <a href="%s">repaired</a>.' ), 'maint/repair.php?referrer=is_blog_installed' );
1157 $wpdb->suppress_errors( $suppress );
1159 wp_cache_set( 'is_blog_installed', false );
1165 * Retrieve URL with nonce added to URL query.
1167 * @package WordPress
1168 * @subpackage Security
1171 * @param string $actionurl URL to add nonce action.
1172 * @param string $action Optional. Nonce action name.
1173 * @param string $name Optional. Nonce name.
1174 * @return string URL with nonce action added.
1176 function wp_nonce_url( $actionurl, $action = -1, $name = '_wpnonce' ) {
1177 $actionurl = str_replace( '&', '&', $actionurl );
1178 return esc_html( add_query_arg( $name, wp_create_nonce( $action ), $actionurl ) );
1182 * Retrieve or display nonce hidden field for forms.
1184 * The nonce field is used to validate that the contents of the form came from
1185 * the location on the current site and not somewhere else. The nonce does not
1186 * offer absolute protection, but should protect against most cases. It is very
1187 * important to use nonce field in forms.
1189 * The $action and $name are optional, but if you want to have better security,
1190 * it is strongly suggested to set those two parameters. It is easier to just
1191 * call the function without any parameters, because validation of the nonce
1192 * doesn't require any parameters, but since crackers know what the default is
1193 * it won't be difficult for them to find a way around your nonce and cause
1196 * The input name will be whatever $name value you gave. The input value will be
1197 * the nonce creation value.
1199 * @package WordPress
1200 * @subpackage Security
1203 * @param string $action Optional. Action name.
1204 * @param string $name Optional. Nonce name.
1205 * @param bool $referer Optional, default true. Whether to set the referer field for validation.
1206 * @param bool $echo Optional, default true. Whether to display or return hidden form field.
1207 * @return string Nonce field.
1209 function wp_nonce_field( $action = -1, $name = "_wpnonce", $referer = true , $echo = true ) {
1210 $name = esc_attr( $name );
1211 $nonce_field = '<input type="hidden" id="' . $name . '" name="' . $name . '" value="' . wp_create_nonce( $action ) . '" />';
1214 $nonce_field .= wp_referer_field( false );
1219 return $nonce_field;
1223 * Retrieve or display referer hidden field for forms.
1225 * The referer link is the current Request URI from the server super global. The
1226 * input name is '_wp_http_referer', in case you wanted to check manually.
1228 * @package WordPress
1229 * @subpackage Security
1232 * @param bool $echo Whether to echo or return the referer field.
1233 * @return string Referer field.
1235 function wp_referer_field( $echo = true ) {
1236 $referer_field = '<input type="hidden" name="_wp_http_referer" value="'. esc_attr( wp_unslash( $_SERVER['REQUEST_URI'] ) ) . '" />';
1239 echo $referer_field;
1240 return $referer_field;
1244 * Retrieve or display original referer hidden field for forms.
1246 * The input name is '_wp_original_http_referer' and will be either the same
1247 * value of {@link wp_referer_field()}, if that was posted already or it will
1248 * be the current page, if it doesn't exist.
1250 * @package WordPress
1251 * @subpackage Security
1254 * @param bool $echo Whether to echo the original http referer
1255 * @param string $jump_back_to Optional, default is 'current'. Can be 'previous' or page you want to jump back to.
1256 * @return string Original referer field.
1258 function wp_original_referer_field( $echo = true, $jump_back_to = 'current' ) {
1259 if ( ! $ref = wp_get_original_referer() ) {
1260 $ref = 'previous' == $jump_back_to ? wp_get_referer() : wp_unslash( $_SERVER['REQUEST_URI'] );
1262 $orig_referer_field = '<input type="hidden" name="_wp_original_http_referer" value="' . esc_attr( $ref ) . '" />';
1264 echo $orig_referer_field;
1265 return $orig_referer_field;
1269 * Retrieve referer from '_wp_http_referer' or HTTP referer. If it's the same
1270 * as the current request URL, will return false.
1272 * @package WordPress
1273 * @subpackage Security
1276 * @return string|bool False on failure. Referer URL on success.
1278 function wp_get_referer() {
1280 if ( ! empty( $_REQUEST['_wp_http_referer'] ) )
1281 $ref = wp_unslash( $_REQUEST['_wp_http_referer'] );
1282 else if ( ! empty( $_SERVER['HTTP_REFERER'] ) )
1283 $ref = wp_unslash( $_SERVER['HTTP_REFERER'] );
1285 if ( $ref && $ref !== wp_unslash( $_SERVER['REQUEST_URI'] ) )
1286 return wp_unslash( $ref );
1291 * Retrieve original referer that was posted, if it exists.
1293 * @package WordPress
1294 * @subpackage Security
1297 * @return string|bool False if no original referer or original referer if set.
1299 function wp_get_original_referer() {
1300 if ( !empty( $_REQUEST['_wp_original_http_referer'] ) )
1301 return wp_unslash( $_REQUEST['_wp_original_http_referer'] );
1306 * Recursive directory creation based on full path.
1308 * Will attempt to set permissions on folders.
1312 * @param string $target Full path to attempt to create.
1313 * @return bool Whether the path was created. True if path already exists.
1315 function wp_mkdir_p( $target ) {
1318 // strip the protocol
1319 if( wp_is_stream( $target ) ) {
1320 list( $wrapper, $target ) = explode( '://', $target, 2 );
1323 // from php.net/mkdir user contributed notes
1324 $target = str_replace( '//', '/', $target );
1326 // put the wrapper back on the target
1327 if( $wrapper !== null ) {
1328 $target = $wrapper . '://' . $target;
1331 // safe mode fails with a trailing slash under certain PHP versions.
1332 $target = rtrim($target, '/'); // Use rtrim() instead of untrailingslashit to avoid formatting.php dependency.
1333 if ( empty($target) )
1336 if ( file_exists( $target ) )
1337 return @is_dir( $target );
1339 // Attempting to create the directory may clutter up our display.
1340 if ( @mkdir( $target ) ) {
1341 $stat = @stat( dirname( $target ) );
1342 $dir_perms = $stat['mode'] & 0007777; // Get the permission bits.
1343 @chmod( $target, $dir_perms );
1345 } elseif ( is_dir( dirname( $target ) ) ) {
1349 // If the above failed, attempt to create the parent node, then try again.
1350 if ( ( $target != '/' ) && ( wp_mkdir_p( dirname( $target ) ) ) )
1351 return wp_mkdir_p( $target );
1357 * Test if a give filesystem path is absolute ('/foo/bar', 'c:\windows').
1361 * @param string $path File path
1362 * @return bool True if path is absolute, false is not absolute.
1364 function path_is_absolute( $path ) {
1365 // this is definitive if true but fails if $path does not exist or contains a symbolic link
1366 if ( realpath($path) == $path )
1369 if ( strlen($path) == 0 || $path[0] == '.' )
1372 // windows allows absolute paths like this
1373 if ( preg_match('#^[a-zA-Z]:\\\\#', $path) )
1376 // a path starting with / or \ is absolute; anything else is relative
1377 return ( $path[0] == '/' || $path[0] == '\\' );
1381 * Join two filesystem paths together (e.g. 'give me $path relative to $base').
1383 * If the $path is absolute, then it the full path is returned.
1387 * @param string $base
1388 * @param string $path
1389 * @return string The path with the base or absolute path.
1391 function path_join( $base, $path ) {
1392 if ( path_is_absolute($path) )
1395 return rtrim($base, '/') . '/' . ltrim($path, '/');
1399 * Determines a writable directory for temporary files.
1400 * Function's preference is the return value of <code>sys_get_temp_dir()</code>,
1401 * followed by your PHP temporary upload directory, followed by WP_CONTENT_DIR,
1402 * before finally defaulting to /tmp/
1404 * In the event that this function does not find a writable location,
1405 * It may be overridden by the <code>WP_TEMP_DIR</code> constant in
1406 * your <code>wp-config.php</code> file.
1410 * @return string Writable temporary directory
1412 function get_temp_dir() {
1414 if ( defined('WP_TEMP_DIR') )
1415 return trailingslashit(WP_TEMP_DIR);
1418 return trailingslashit( rtrim( $temp, '\\' ) );
1420 if ( function_exists('sys_get_temp_dir') ) {
1421 $temp = sys_get_temp_dir();
1422 if ( @is_dir( $temp ) && wp_is_writable( $temp ) )
1423 return trailingslashit( rtrim( $temp, '\\' ) );
1426 $temp = ini_get('upload_tmp_dir');
1427 if ( is_dir( $temp ) && wp_is_writable( $temp ) )
1428 return trailingslashit( rtrim( $temp, '\\' ) );
1430 $temp = WP_CONTENT_DIR . '/';
1431 if ( is_dir( $temp ) && wp_is_writable( $temp ) )
1439 * Determine if a directory is writable.
1441 * This function is used to work around certain ACL issues
1442 * in PHP primarily affecting Windows Servers.
1444 * @see win_is_writable()
1448 * @param string $path
1451 function wp_is_writable( $path ) {
1452 if ( 'WIN' === strtoupper( substr( PHP_OS, 0, 3 ) ) )
1453 return win_is_writable( $path );
1455 return @is_writable( $path );
1459 * Workaround for Windows bug in is_writable() function
1461 * PHP has issues with Windows ACL's for determine if a
1462 * directory is writable or not, this works around them by
1463 * checking the ability to open files rather than relying
1464 * upon PHP to interprate the OS ACL.
1466 * @link http://bugs.php.net/bug.php?id=27609
1467 * @link http://bugs.php.net/bug.php?id=30931
1471 * @param string $path
1474 function win_is_writable( $path ) {
1476 if ( $path[strlen( $path ) - 1] == '/' ) // if it looks like a directory, check a random file within the directory
1477 return win_is_writable( $path . uniqid( mt_rand() ) . '.tmp');
1478 else if ( is_dir( $path ) ) // If it's a directory (and not a file) check a random file within the directory
1479 return win_is_writable( $path . '/' . uniqid( mt_rand() ) . '.tmp' );
1481 // check tmp file for read/write capabilities
1482 $should_delete_tmp_file = !file_exists( $path );
1483 $f = @fopen( $path, 'a' );
1487 if ( $should_delete_tmp_file )
1493 * Get an array containing the current upload directory's path and url.
1495 * Checks the 'upload_path' option, which should be from the web root folder,
1496 * and if it isn't empty it will be used. If it is empty, then the path will be
1497 * 'WP_CONTENT_DIR/uploads'. If the 'UPLOADS' constant is defined, then it will
1498 * override the 'upload_path' option and 'WP_CONTENT_DIR/uploads' path.
1500 * The upload URL path is set either by the 'upload_url_path' option or by using
1501 * the 'WP_CONTENT_URL' constant and appending '/uploads' to the path.
1503 * If the 'uploads_use_yearmonth_folders' is set to true (checkbox if checked in
1504 * the administration settings panel), then the time will be used. The format
1505 * will be year first and then month.
1507 * If the path couldn't be created, then an error will be returned with the key
1508 * 'error' containing the error message. The error suggests that the parent
1509 * directory is not writable by the server.
1511 * On success, the returned array will have many indices:
1512 * 'path' - base directory and sub directory or full path to upload directory.
1513 * 'url' - base url and sub directory or absolute URL to upload directory.
1514 * 'subdir' - sub directory if uploads use year/month folders option is on.
1515 * 'basedir' - path without subdir.
1516 * 'baseurl' - URL path without subdir.
1517 * 'error' - set to false.
1520 * @uses apply_filters() Calls 'upload_dir' on returned array.
1522 * @param string $time Optional. Time formatted in 'yyyy/mm'.
1523 * @return array See above for description.
1525 function wp_upload_dir( $time = null ) {
1526 $siteurl = get_option( 'siteurl' );
1527 $upload_path = trim( get_option( 'upload_path' ) );
1529 if ( empty( $upload_path ) || 'wp-content/uploads' == $upload_path ) {
1530 $dir = WP_CONTENT_DIR . '/uploads';
1531 } elseif ( 0 !== strpos( $upload_path, ABSPATH ) ) {
1532 // $dir is absolute, $upload_path is (maybe) relative to ABSPATH
1533 $dir = path_join( ABSPATH, $upload_path );
1535 $dir = $upload_path;
1538 if ( !$url = get_option( 'upload_url_path' ) ) {
1539 if ( empty($upload_path) || ( 'wp-content/uploads' == $upload_path ) || ( $upload_path == $dir ) )
1540 $url = WP_CONTENT_URL . '/uploads';
1542 $url = trailingslashit( $siteurl ) . $upload_path;
1545 // Obey the value of UPLOADS. This happens as long as ms-files rewriting is disabled.
1546 // We also sometimes obey UPLOADS when rewriting is enabled -- see the next block.
1547 if ( defined( 'UPLOADS' ) && ! ( is_multisite() && get_site_option( 'ms_files_rewriting' ) ) ) {
1548 $dir = ABSPATH . UPLOADS;
1549 $url = trailingslashit( $siteurl ) . UPLOADS;
1552 // If multisite (and if not the main site in a post-MU network)
1553 if ( is_multisite() && ! ( is_main_site() && defined( 'MULTISITE' ) ) ) {
1555 if ( ! get_site_option( 'ms_files_rewriting' ) ) {
1556 // If ms-files rewriting is disabled (networks created post-3.5), it is fairly straightforward:
1557 // Append sites/%d if we're not on the main site (for post-MU networks). (The extra directory
1558 // prevents a four-digit ID from conflicting with a year-based directory for the main site.
1559 // But if a MU-era network has disabled ms-files rewriting manually, they don't need the extra
1560 // directory, as they never had wp-content/uploads for the main site.)
1562 if ( defined( 'MULTISITE' ) )
1563 $ms_dir = '/sites/' . get_current_blog_id();
1565 $ms_dir = '/' . get_current_blog_id();
1570 } elseif ( defined( 'UPLOADS' ) && ! ms_is_switched() ) {
1571 // Handle the old-form ms-files.php rewriting if the network still has that enabled.
1572 // When ms-files rewriting is enabled, then we only listen to UPLOADS when:
1573 // 1) we are not on the main site in a post-MU network,
1574 // as wp-content/uploads is used there, and
1575 // 2) we are not switched, as ms_upload_constants() hardcodes
1576 // these constants to reflect the original blog ID.
1578 // Rather than UPLOADS, we actually use BLOGUPLOADDIR if it is set, as it is absolute.
1579 // (And it will be set, see ms_upload_constants().) Otherwise, UPLOADS can be used, as
1580 // as it is relative to ABSPATH. For the final piece: when UPLOADS is used with ms-files
1581 // rewriting in multisite, the resulting URL is /files. (#WP22702 for background.)
1583 if ( defined( 'BLOGUPLOADDIR' ) )
1584 $dir = untrailingslashit( BLOGUPLOADDIR );
1586 $dir = ABSPATH . UPLOADS;
1587 $url = trailingslashit( $siteurl ) . 'files';
1595 if ( get_option( 'uploads_use_yearmonth_folders' ) ) {
1596 // Generate the yearly and monthly dirs
1598 $time = current_time( 'mysql' );
1599 $y = substr( $time, 0, 4 );
1600 $m = substr( $time, 5, 2 );
1607 $uploads = apply_filters( 'upload_dir',
1611 'subdir' => $subdir,
1612 'basedir' => $basedir,
1613 'baseurl' => $baseurl,
1617 // Make sure we have an uploads dir
1618 if ( ! wp_mkdir_p( $uploads['path'] ) ) {
1619 if ( 0 === strpos( $uploads['basedir'], ABSPATH ) )
1620 $error_path = str_replace( ABSPATH, '', $uploads['basedir'] ) . $uploads['subdir'];
1622 $error_path = basename( $uploads['basedir'] ) . $uploads['subdir'];
1624 $message = sprintf( __( 'Unable to create directory %s. Is its parent directory writable by the server?' ), $error_path );
1625 $uploads['error'] = $message;
1632 * Get a filename that is sanitized and unique for the given directory.
1634 * If the filename is not unique, then a number will be added to the filename
1635 * before the extension, and will continue adding numbers until the filename is
1638 * The callback is passed three parameters, the first one is the directory, the
1639 * second is the filename, and the third is the extension.
1643 * @param string $dir
1644 * @param string $filename
1645 * @param mixed $unique_filename_callback Callback.
1646 * @return string New filename, if given wasn't unique.
1648 function wp_unique_filename( $dir, $filename, $unique_filename_callback = null ) {
1649 // sanitize the file name before we begin processing
1650 $filename = sanitize_file_name($filename);
1652 // separate the filename into a name and extension
1653 $info = pathinfo($filename);
1654 $ext = !empty($info['extension']) ? '.' . $info['extension'] : '';
1655 $name = basename($filename, $ext);
1657 // edge case: if file is named '.ext', treat as an empty name
1658 if ( $name === $ext )
1661 // Increment the file number until we have a unique file to save in $dir. Use callback if supplied.
1662 if ( $unique_filename_callback && is_callable( $unique_filename_callback ) ) {
1663 $filename = call_user_func( $unique_filename_callback, $dir, $name, $ext );
1667 // change '.ext' to lower case
1668 if ( $ext && strtolower($ext) != $ext ) {
1669 $ext2 = strtolower($ext);
1670 $filename2 = preg_replace( '|' . preg_quote($ext) . '$|', $ext2, $filename );
1672 // check for both lower and upper case extension or image sub-sizes may be overwritten
1673 while ( file_exists($dir . "/$filename") || file_exists($dir . "/$filename2") ) {
1674 $new_number = $number + 1;
1675 $filename = str_replace( "$number$ext", "$new_number$ext", $filename );
1676 $filename2 = str_replace( "$number$ext2", "$new_number$ext2", $filename2 );
1677 $number = $new_number;
1682 while ( file_exists( $dir . "/$filename" ) ) {
1683 if ( '' == "$number$ext" )
1684 $filename = $filename . ++$number . $ext;
1686 $filename = str_replace( "$number$ext", ++$number . $ext, $filename );
1694 * Create a file in the upload folder with given content.
1696 * If there is an error, then the key 'error' will exist with the error message.
1697 * If success, then the key 'file' will have the unique file path, the 'url' key
1698 * will have the link to the new file. and the 'error' key will be set to false.
1700 * This function will not move an uploaded file to the upload folder. It will
1701 * create a new file with the content in $bits parameter. If you move the upload
1702 * file, read the content of the uploaded file, and then you can give the
1703 * filename and content to this function, which will add it to the upload
1706 * The permissions will be set on the new file automatically by this function.
1710 * @param string $name
1711 * @param null $deprecated Never used. Set to null.
1712 * @param mixed $bits File content
1713 * @param string $time Optional. Time formatted in 'yyyy/mm'.
1716 function wp_upload_bits( $name, $deprecated, $bits, $time = null ) {
1717 if ( !empty( $deprecated ) )
1718 _deprecated_argument( __FUNCTION__, '2.0' );
1720 if ( empty( $name ) )
1721 return array( 'error' => __( 'Empty filename' ) );
1723 $wp_filetype = wp_check_filetype( $name );
1724 if ( ! $wp_filetype['ext'] && ! current_user_can( 'unfiltered_upload' ) )
1725 return array( 'error' => __( 'Invalid file type' ) );
1727 $upload = wp_upload_dir( $time );
1729 if ( $upload['error'] !== false )
1732 $upload_bits_error = apply_filters( 'wp_upload_bits', array( 'name' => $name, 'bits' => $bits, 'time' => $time ) );
1733 if ( !is_array( $upload_bits_error ) ) {
1734 $upload[ 'error' ] = $upload_bits_error;
1738 $filename = wp_unique_filename( $upload['path'], $name );
1740 $new_file = $upload['path'] . "/$filename";
1741 if ( ! wp_mkdir_p( dirname( $new_file ) ) ) {
1742 if ( 0 === strpos( $upload['basedir'], ABSPATH ) )
1743 $error_path = str_replace( ABSPATH, '', $upload['basedir'] ) . $upload['subdir'];
1745 $error_path = basename( $upload['basedir'] ) . $upload['subdir'];
1747 $message = sprintf( __( 'Unable to create directory %s. Is its parent directory writable by the server?' ), $error_path );
1748 return array( 'error' => $message );
1751 $ifp = @ fopen( $new_file, 'wb' );
1753 return array( 'error' => sprintf( __( 'Could not write file %s' ), $new_file ) );
1755 @fwrite( $ifp, $bits );
1759 // Set correct file permissions
1760 $stat = @ stat( dirname( $new_file ) );
1761 $perms = $stat['mode'] & 0007777;
1762 $perms = $perms & 0000666;
1763 @ chmod( $new_file, $perms );
1767 $url = $upload['url'] . "/$filename";
1769 return array( 'file' => $new_file, 'url' => $url, 'error' => false );
1773 * Retrieve the file type based on the extension name.
1775 * @package WordPress
1777 * @uses apply_filters() Calls 'ext2type' hook on default supported types.
1779 * @param string $ext The extension to search.
1780 * @return string|null The file type, example: audio, video, document, spreadsheet, etc. Null if not found.
1782 function wp_ext2type( $ext ) {
1783 $ext2type = apply_filters( 'ext2type', array(
1784 'audio' => array( 'aac', 'ac3', 'aif', 'aiff', 'm3a', 'm4a', 'm4b', 'mka', 'mp1', 'mp2', 'mp3', 'ogg', 'oga', 'ram', 'wav', 'wma' ),
1785 'video' => array( 'asf', 'avi', 'divx', 'dv', 'flv', 'm4v', 'mkv', 'mov', 'mp4', 'mpeg', 'mpg', 'mpv', 'ogm', 'ogv', 'qt', 'rm', 'vob', 'wmv' ),
1786 'document' => array( 'doc', 'docx', 'docm', 'dotm', 'odt', 'pages', 'pdf', 'rtf', 'wp', 'wpd' ),
1787 'spreadsheet' => array( 'numbers', 'ods', 'xls', 'xlsx', 'xlsm', 'xlsb' ),
1788 'interactive' => array( 'swf', 'key', 'ppt', 'pptx', 'pptm', 'pps', 'ppsx', 'ppsm', 'sldx', 'sldm', 'odp' ),
1789 'text' => array( 'asc', 'csv', 'tsv', 'txt' ),
1790 'archive' => array( 'bz2', 'cab', 'dmg', 'gz', 'rar', 'sea', 'sit', 'sqx', 'tar', 'tgz', 'zip', '7z' ),
1791 'code' => array( 'css', 'htm', 'html', 'php', 'js' ),
1793 foreach ( $ext2type as $type => $exts )
1794 if ( in_array( $ext, $exts ) )
1799 * Retrieve the file type from the file name.
1801 * You can optionally define the mime array, if needed.
1805 * @param string $filename File name or path.
1806 * @param array $mimes Optional. Key is the file extension with value as the mime type.
1807 * @return array Values with extension first and mime type.
1809 function wp_check_filetype( $filename, $mimes = null ) {
1810 if ( empty($mimes) )
1811 $mimes = get_allowed_mime_types();
1815 foreach ( $mimes as $ext_preg => $mime_match ) {
1816 $ext_preg = '!\.(' . $ext_preg . ')$!i';
1817 if ( preg_match( $ext_preg, $filename, $ext_matches ) ) {
1818 $type = $mime_match;
1819 $ext = $ext_matches[1];
1824 return compact( 'ext', 'type' );
1828 * Attempt to determine the real file type of a file.
1829 * If unable to, the file name extension will be used to determine type.
1831 * If it's determined that the extension does not match the file's real type,
1832 * then the "proper_filename" value will be set with a proper filename and extension.
1834 * Currently this function only supports validating images known to getimagesize().
1838 * @param string $file Full path to the image.
1839 * @param string $filename The filename of the image (may differ from $file due to $file being in a tmp directory)
1840 * @param array $mimes Optional. Key is the file extension with value as the mime type.
1841 * @return array Values for the extension, MIME, and either a corrected filename or false if original $filename is valid
1843 function wp_check_filetype_and_ext( $file, $filename, $mimes = null ) {
1845 $proper_filename = false;
1847 // Do basic extension validation and MIME mapping
1848 $wp_filetype = wp_check_filetype( $filename, $mimes );
1849 extract( $wp_filetype );
1851 // We can't do any further validation without a file to work with
1852 if ( ! file_exists( $file ) )
1853 return compact( 'ext', 'type', 'proper_filename' );
1855 // We're able to validate images using GD
1856 if ( $type && 0 === strpos( $type, 'image/' ) && function_exists('getimagesize') ) {
1858 // Attempt to figure out what type of image it actually is
1859 $imgstats = @getimagesize( $file );
1861 // If getimagesize() knows what kind of image it really is and if the real MIME doesn't match the claimed MIME
1862 if ( !empty($imgstats['mime']) && $imgstats['mime'] != $type ) {
1863 // This is a simplified array of MIMEs that getimagesize() can detect and their extensions
1864 // You shouldn't need to use this filter, but it's here just in case
1865 $mime_to_ext = apply_filters( 'getimagesize_mimes_to_exts', array(
1866 'image/jpeg' => 'jpg',
1867 'image/png' => 'png',
1868 'image/gif' => 'gif',
1869 'image/bmp' => 'bmp',
1870 'image/tiff' => 'tif',
1873 // Replace whatever is after the last period in the filename with the correct extension
1874 if ( ! empty( $mime_to_ext[ $imgstats['mime'] ] ) ) {
1875 $filename_parts = explode( '.', $filename );
1876 array_pop( $filename_parts );
1877 $filename_parts[] = $mime_to_ext[ $imgstats['mime'] ];
1878 $new_filename = implode( '.', $filename_parts );
1880 if ( $new_filename != $filename )
1881 $proper_filename = $new_filename; // Mark that it changed
1883 // Redefine the extension / MIME
1884 $wp_filetype = wp_check_filetype( $new_filename, $mimes );
1885 extract( $wp_filetype );
1890 // Let plugins try and validate other types of files
1891 // Should return an array in the style of array( 'ext' => $ext, 'type' => $type, 'proper_filename' => $proper_filename )
1892 return apply_filters( 'wp_check_filetype_and_ext', compact( 'ext', 'type', 'proper_filename' ), $file, $filename, $mimes );
1896 * Retrieve list of mime types and file extensions.
1900 * @uses apply_filters() Calls 'mime_types' on returned array. This filter should
1901 * be used to add types, not remove them. To remove types use the upload_mimes filter.
1903 * @return array Array of mime types keyed by the file extension regex corresponding to those types.
1905 function wp_get_mime_types() {
1906 // Accepted MIME types are set here as PCRE unless provided.
1907 return apply_filters( 'mime_types', array(
1909 'jpg|jpeg|jpe' => 'image/jpeg',
1910 'gif' => 'image/gif',
1911 'png' => 'image/png',
1912 'bmp' => 'image/bmp',
1913 'tif|tiff' => 'image/tiff',
1914 'ico' => 'image/x-icon',
1916 'asf|asx' => 'video/x-ms-asf',
1917 'wmv' => 'video/x-ms-wmv',
1918 'wmx' => 'video/x-ms-wmx',
1919 'wm' => 'video/x-ms-wm',
1920 'avi' => 'video/avi',
1921 'divx' => 'video/divx',
1922 'flv' => 'video/x-flv',
1923 'mov|qt' => 'video/quicktime',
1924 'mpeg|mpg|mpe' => 'video/mpeg',
1925 'mp4|m4v' => 'video/mp4',
1926 'ogv' => 'video/ogg',
1927 'webm' => 'video/webm',
1928 'mkv' => 'video/x-matroska',
1930 'txt|asc|c|cc|h' => 'text/plain',
1931 'csv' => 'text/csv',
1932 'tsv' => 'text/tab-separated-values',
1933 'ics' => 'text/calendar',
1934 'rtx' => 'text/richtext',
1935 'css' => 'text/css',
1936 'htm|html' => 'text/html',
1938 'mp3|m4a|m4b' => 'audio/mpeg',
1939 'ra|ram' => 'audio/x-realaudio',
1940 'wav' => 'audio/wav',
1941 'ogg|oga' => 'audio/ogg',
1942 'mid|midi' => 'audio/midi',
1943 'wma' => 'audio/x-ms-wma',
1944 'wax' => 'audio/x-ms-wax',
1945 'mka' => 'audio/x-matroska',
1946 // Misc application formats
1947 'rtf' => 'application/rtf',
1948 'js' => 'application/javascript',
1949 'pdf' => 'application/pdf',
1950 'swf' => 'application/x-shockwave-flash',
1951 'class' => 'application/java',
1952 'tar' => 'application/x-tar',
1953 'zip' => 'application/zip',
1954 'gz|gzip' => 'application/x-gzip',
1955 'rar' => 'application/rar',
1956 '7z' => 'application/x-7z-compressed',
1957 'exe' => 'application/x-msdownload',
1958 // MS Office formats
1959 'doc' => 'application/msword',
1960 'pot|pps|ppt' => 'application/vnd.ms-powerpoint',
1961 'wri' => 'application/vnd.ms-write',
1962 'xla|xls|xlt|xlw' => 'application/vnd.ms-excel',
1963 'mdb' => 'application/vnd.ms-access',
1964 'mpp' => 'application/vnd.ms-project',
1965 'docx' => 'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
1966 'docm' => 'application/vnd.ms-word.document.macroEnabled.12',
1967 'dotx' => 'application/vnd.openxmlformats-officedocument.wordprocessingml.template',
1968 'dotm' => 'application/vnd.ms-word.template.macroEnabled.12',
1969 'xlsx' => 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
1970 'xlsm' => 'application/vnd.ms-excel.sheet.macroEnabled.12',
1971 'xlsb' => 'application/vnd.ms-excel.sheet.binary.macroEnabled.12',
1972 'xltx' => 'application/vnd.openxmlformats-officedocument.spreadsheetml.template',
1973 'xltm' => 'application/vnd.ms-excel.template.macroEnabled.12',
1974 'xlam' => 'application/vnd.ms-excel.addin.macroEnabled.12',
1975 'pptx' => 'application/vnd.openxmlformats-officedocument.presentationml.presentation',
1976 'pptm' => 'application/vnd.ms-powerpoint.presentation.macroEnabled.12',
1977 'ppsx' => 'application/vnd.openxmlformats-officedocument.presentationml.slideshow',
1978 'ppsm' => 'application/vnd.ms-powerpoint.slideshow.macroEnabled.12',
1979 'potx' => 'application/vnd.openxmlformats-officedocument.presentationml.template',
1980 'potm' => 'application/vnd.ms-powerpoint.template.macroEnabled.12',
1981 'ppam' => 'application/vnd.ms-powerpoint.addin.macroEnabled.12',
1982 'sldx' => 'application/vnd.openxmlformats-officedocument.presentationml.slide',
1983 'sldm' => 'application/vnd.ms-powerpoint.slide.macroEnabled.12',
1984 'onetoc|onetoc2|onetmp|onepkg' => 'application/onenote',
1985 // OpenOffice formats
1986 'odt' => 'application/vnd.oasis.opendocument.text',
1987 'odp' => 'application/vnd.oasis.opendocument.presentation',
1988 'ods' => 'application/vnd.oasis.opendocument.spreadsheet',
1989 'odg' => 'application/vnd.oasis.opendocument.graphics',
1990 'odc' => 'application/vnd.oasis.opendocument.chart',
1991 'odb' => 'application/vnd.oasis.opendocument.database',
1992 'odf' => 'application/vnd.oasis.opendocument.formula',
1993 // WordPerfect formats
1994 'wp|wpd' => 'application/wordperfect',
1996 'key' => 'application/vnd.apple.keynote',
1997 'numbers' => 'application/vnd.apple.numbers',
1998 'pages' => 'application/vnd.apple.pages',
2002 * Retrieve list of allowed mime types and file extensions.
2006 * @uses apply_filters() Calls 'upload_mimes' on returned array
2007 * @uses wp_get_upload_mime_types() to fetch the list of mime types
2009 * @return array Array of mime types keyed by the file extension regex corresponding to those types.
2011 function get_allowed_mime_types() {
2012 return apply_filters( 'upload_mimes', wp_get_mime_types() );
2016 * Display "Are You Sure" message to confirm the action being taken.
2018 * If the action has the nonce explain message, then it will be displayed along
2019 * with the "Are you sure?" message.
2021 * @package WordPress
2022 * @subpackage Security
2025 * @param string $action The nonce action.
2027 function wp_nonce_ays( $action ) {
2028 $title = __( 'WordPress Failure Notice' );
2029 if ( 'log-out' == $action ) {
2030 $html = sprintf( __( 'You are attempting to log out of %s' ), get_bloginfo( 'name' ) ) . '</p><p>';
2031 $html .= sprintf( __( "Do you really want to <a href='%s'>log out</a>?"), wp_logout_url() );
2033 $html = __( 'Are you sure you want to do this?' );
2034 if ( wp_get_referer() )
2035 $html .= "</p><p><a href='" . esc_url( remove_query_arg( 'updated', wp_get_referer() ) ) . "'>" . __( 'Please try again.' ) . "</a>";
2038 wp_die( $html, $title, array('response' => 403) );
2042 * Kill WordPress execution and display HTML message with error message.
2044 * This function complements the die() PHP function. The difference is that
2045 * HTML will be displayed to the user. It is recommended to use this function
2046 * only, when the execution should not continue any further. It is not
2047 * recommended to call this function very often and try to handle as many errors
2048 * as possible silently.
2052 * @param string $message Error message.
2053 * @param string $title Error title.
2054 * @param string|array $args Optional arguments to control behavior.
2056 function wp_die( $message = '', $title = '', $args = array() ) {
2057 if ( defined( 'DOING_AJAX' ) && DOING_AJAX )
2058 $function = apply_filters( 'wp_die_ajax_handler', '_ajax_wp_die_handler' );
2059 elseif ( defined( 'XMLRPC_REQUEST' ) && XMLRPC_REQUEST )
2060 $function = apply_filters( 'wp_die_xmlrpc_handler', '_xmlrpc_wp_die_handler' );
2062 $function = apply_filters( 'wp_die_handler', '_default_wp_die_handler' );
2064 call_user_func( $function, $message, $title, $args );
2068 * Kill WordPress execution and display HTML message with error message.
2070 * This is the default handler for wp_die if you want a custom one for your
2071 * site then you can overload using the wp_die_handler filter in wp_die
2076 * @param string $message Error message.
2077 * @param string $title Error title.
2078 * @param string|array $args Optional arguments to control behavior.
2080 function _default_wp_die_handler( $message, $title = '', $args = array() ) {
2081 $defaults = array( 'response' => 500 );
2082 $r = wp_parse_args($args, $defaults);
2084 $have_gettext = function_exists('__');
2086 if ( function_exists( 'is_wp_error' ) && is_wp_error( $message ) ) {
2087 if ( empty( $title ) ) {
2088 $error_data = $message->get_error_data();
2089 if ( is_array( $error_data ) && isset( $error_data['title'] ) )
2090 $title = $error_data['title'];
2092 $errors = $message->get_error_messages();
2093 switch ( count( $errors ) ) :
2098 $message = "<p>{$errors[0]}</p>";
2101 $message = "<ul>\n\t\t<li>" . join( "</li>\n\t\t<li>", $errors ) . "</li>\n\t</ul>";
2104 } elseif ( is_string( $message ) ) {
2105 $message = "<p>$message</p>";
2108 if ( isset( $r['back_link'] ) && $r['back_link'] ) {
2109 $back_text = $have_gettext? __('« Back') : '« Back';
2110 $message .= "\n<p><a href='javascript:history.back()'>$back_text</a></p>";
2113 if ( ! did_action( 'admin_head' ) ) :
2114 if ( !headers_sent() ) {
2115 status_header( $r['response'] );
2117 header( 'Content-Type: text/html; charset=utf-8' );
2120 if ( empty($title) )
2121 $title = $have_gettext ? __('WordPress › Error') : 'WordPress › Error';
2123 $text_direction = 'ltr';
2124 if ( isset($r['text_direction']) && 'rtl' == $r['text_direction'] )
2125 $text_direction = 'rtl';
2126 elseif ( function_exists( 'is_rtl' ) && is_rtl() )
2127 $text_direction = 'rtl';
2130 <!-- Ticket #11289, IE bug fix: always pad the error page with enough characters such that it is greater than 512 bytes, even after gzip compression abcdefghijklmnopqrstuvwxyz1234567890aabbccddeeffgghhiijjkkllmmnnooppqqrrssttuuvvwwxxyyzz11223344556677889900abacbcbdcdcededfefegfgfhghgihihjijikjkjlklkmlmlnmnmononpopoqpqprqrqsrsrtstsubcbcdcdedefefgfabcadefbghicjkldmnoepqrfstugvwxhyz1i234j567k890laabmbccnddeoeffpgghqhiirjjksklltmmnunoovppqwqrrxsstytuuzvvw0wxx1yyz2z113223434455666777889890091abc2def3ghi4jkl5mno6pqr7stu8vwx9yz11aab2bcc3dd4ee5ff6gg7hh8ii9j0jk1kl2lmm3nnoo4p5pq6qrr7ss8tt9uuvv0wwx1x2yyzz13aba4cbcb5dcdc6dedfef8egf9gfh0ghg1ihi2hji3jik4jkj5lkl6kml7mln8mnm9ono
2132 <html xmlns="http://www.w3.org/1999/xhtml" <?php if ( function_exists( 'language_attributes' ) && function_exists( 'is_rtl' ) ) language_attributes(); else echo "dir='$text_direction'"; ?>>
2134 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
2135 <title><?php echo $title ?></title>
2136 <style type="text/css">
2138 background: #f9f9f9;
2143 font-family: sans-serif;
2146 -webkit-border-radius: 3px;
2148 border: 1px solid #dfdfdf;
2152 border-bottom: 1px solid #dadada;
2155 font: 24px Georgia, "Times New Roman", Times, serif;
2158 padding-bottom: 7px;
2166 margin: 25px 0 20px;
2169 font-family: Consolas, Monaco, monospace;
2172 margin-bottom: 10px;
2177 text-decoration: none;
2183 display: inline-block;
2184 text-decoration: none;
2189 padding: 0 10px 1px;
2192 border-style: solid;
2193 -webkit-border-radius: 3px;
2195 white-space: nowrap;
2196 -webkit-box-sizing: border-box;
2197 -moz-box-sizing: border-box;
2198 box-sizing: border-box;
2199 background: #f3f3f3;
2200 background-image: -webkit-gradient(linear, left top, left bottom, from(#fefefe), to(#f4f4f4));
2201 background-image: -webkit-linear-gradient(top, #fefefe, #f4f4f4);
2202 background-image: -moz-linear-gradient(top, #fefefe, #f4f4f4);
2203 background-image: -o-linear-gradient(top, #fefefe, #f4f4f4);
2204 background-image: linear-gradient(to bottom, #fefefe, #f4f4f4);
2207 text-shadow: 0 1px 0 #fff;
2210 .button.button-large {
2218 background: #f3f3f3;
2219 background-image: -webkit-gradient(linear, left top, left bottom, from(#fff), to(#f3f3f3));
2220 background-image: -webkit-linear-gradient(top, #fff, #f3f3f3);
2221 background-image: -moz-linear-gradient(top, #fff, #f3f3f3);
2222 background-image: -ms-linear-gradient(top, #fff, #f3f3f3);
2223 background-image: -o-linear-gradient(top, #fff, #f3f3f3);
2224 background-image: linear-gradient(to bottom, #fff, #f3f3f3);
2230 -webkit-box-shadow: 1px 1px 1px rgba(0,0,0,.2);
2231 box-shadow: 1px 1px 1px rgba(0,0,0,.2);
2237 background-image: -webkit-gradient(linear, left top, left bottom, from(#f4f4f4), to(#fefefe));
2238 background-image: -webkit-linear-gradient(top, #f4f4f4, #fefefe);
2239 background-image: -moz-linear-gradient(top, #f4f4f4, #fefefe);
2240 background-image: -ms-linear-gradient(top, #f4f4f4, #fefefe);
2241 background-image: -o-linear-gradient(top, #f4f4f4, #fefefe);
2242 background-image: linear-gradient(to bottom, #f4f4f4, #fefefe);
2245 text-shadow: 0 -1px 0 #fff;
2246 -webkit-box-shadow: inset 0 2px 5px -3px rgba( 0, 0, 0, 0.5 );
2247 box-shadow: inset 0 2px 5px -3px rgba( 0, 0, 0, 0.5 );
2250 <?php if ( 'rtl' == $text_direction ) : ?>
2251 body { font-family: Tahoma, Arial; }
2255 <body id="error-page">
2256 <?php endif; // ! did_action( 'admin_head' ) ?>
2257 <?php echo $message; ?>
2265 * Kill WordPress execution and display XML message with error message.
2267 * This is the handler for wp_die when processing XMLRPC requests.
2272 * @param string $message Error message.
2273 * @param string $title Error title.
2274 * @param string|array $args Optional arguments to control behavior.
2276 function _xmlrpc_wp_die_handler( $message, $title = '', $args = array() ) {
2277 global $wp_xmlrpc_server;
2278 $defaults = array( 'response' => 500 );
2280 $r = wp_parse_args($args, $defaults);
2282 if ( $wp_xmlrpc_server ) {
2283 $error = new IXR_Error( $r['response'] , $message);
2284 $wp_xmlrpc_server->output( $error->getXml() );
2290 * Kill WordPress ajax execution.
2292 * This is the handler for wp_die when processing Ajax requests.
2297 * @param string $message Optional. Response to print.
2299 function _ajax_wp_die_handler( $message = '' ) {
2300 if ( is_scalar( $message ) )
2301 die( (string) $message );
2306 * Kill WordPress execution.
2308 * This is the handler for wp_die when processing APP requests.
2313 * @param string $message Optional. Response to print.
2315 function _scalar_wp_die_handler( $message = '' ) {
2316 if ( is_scalar( $message ) )
2317 die( (string) $message );
2322 * Send a JSON response back to an Ajax request.
2326 * @param mixed $response Variable (usually an array or object) to encode as JSON, then print and die.
2328 function wp_send_json( $response ) {
2329 @header( 'Content-Type: application/json; charset=' . get_option( 'blog_charset' ) );
2330 echo json_encode( $response );
2331 if ( defined( 'DOING_AJAX' ) && DOING_AJAX )
2338 * Send a JSON response back to an Ajax request, indicating success.
2342 * @param mixed $data Data to encode as JSON, then print and die.
2344 function wp_send_json_success( $data = null ) {
2345 $response = array( 'success' => true );
2347 if ( isset( $data ) )
2348 $response['data'] = $data;
2350 wp_send_json( $response );
2354 * Send a JSON response back to an Ajax request, indicating failure.
2358 * @param mixed $data Data to encode as JSON, then print and die.
2360 function wp_send_json_error( $data = null ) {
2361 $response = array( 'success' => false );
2363 if ( isset( $data ) )
2364 $response['data'] = $data;
2366 wp_send_json( $response );
2370 * Retrieve the WordPress home page URL.
2372 * If the constant named 'WP_HOME' exists, then it will be used and returned by
2373 * the function. This can be used to counter the redirection on your local
2374 * development environment.
2377 * @package WordPress
2380 * @param string $url URL for the home location
2381 * @return string Homepage location.
2383 function _config_wp_home( $url = '' ) {
2384 if ( defined( 'WP_HOME' ) )
2385 return untrailingslashit( WP_HOME );
2390 * Retrieve the WordPress site URL.
2392 * If the constant named 'WP_SITEURL' is defined, then the value in that
2393 * constant will always be returned. This can be used for debugging a site on
2394 * your localhost while not having to change the database to your URL.
2397 * @package WordPress
2400 * @param string $url URL to set the WordPress site location.
2401 * @return string The WordPress Site URL
2403 function _config_wp_siteurl( $url = '' ) {
2404 if ( defined( 'WP_SITEURL' ) )
2405 return untrailingslashit( WP_SITEURL );
2410 * Set the localized direction for MCE plugin.
2412 * Will only set the direction to 'rtl', if the WordPress locale has the text
2413 * direction set to 'rtl'.
2415 * Fills in the 'directionality', 'plugins', and 'theme_advanced_button1' array
2416 * keys. These keys are then returned in the $input array.
2419 * @package WordPress
2423 * @param array $input MCE plugin array.
2424 * @return array Direction set for 'rtl', if needed by locale.
2426 function _mce_set_direction( $input ) {
2428 $input['directionality'] = 'rtl';
2429 $input['plugins'] .= ',directionality';
2430 $input['theme_advanced_buttons1'] .= ',ltr';
2437 * Convert smiley code to the icon graphic file equivalent.
2439 * You can turn off smilies, by going to the write setting screen and unchecking
2440 * the box, or by setting 'use_smilies' option to false or removing the option.
2442 * Plugins may override the default smiley list by setting the $wpsmiliestrans
2443 * to an array, with the key the code the blogger types in and the value the
2446 * The $wp_smiliessearch global is for the regular expression and is set each
2447 * time the function is called.
2449 * The full list of smilies can be found in the function and won't be listed in
2450 * the description. Probably should create a Codex page for it, so that it is
2453 * @global array $wpsmiliestrans
2454 * @global array $wp_smiliessearch
2457 function smilies_init() {
2458 global $wpsmiliestrans, $wp_smiliessearch;
2460 // don't bother setting up smilies if they are disabled
2461 if ( !get_option( 'use_smilies' ) )
2464 if ( !isset( $wpsmiliestrans ) ) {
2465 $wpsmiliestrans = array(
2466 ':mrgreen:' => 'icon_mrgreen.gif',
2467 ':neutral:' => 'icon_neutral.gif',
2468 ':twisted:' => 'icon_twisted.gif',
2469 ':arrow:' => 'icon_arrow.gif',
2470 ':shock:' => 'icon_eek.gif',
2471 ':smile:' => 'icon_smile.gif',
2472 ':???:' => 'icon_confused.gif',
2473 ':cool:' => 'icon_cool.gif',
2474 ':evil:' => 'icon_evil.gif',
2475 ':grin:' => 'icon_biggrin.gif',
2476 ':idea:' => 'icon_idea.gif',
2477 ':oops:' => 'icon_redface.gif',
2478 ':razz:' => 'icon_razz.gif',
2479 ':roll:' => 'icon_rolleyes.gif',
2480 ':wink:' => 'icon_wink.gif',
2481 ':cry:' => 'icon_cry.gif',
2482 ':eek:' => 'icon_surprised.gif',
2483 ':lol:' => 'icon_lol.gif',
2484 ':mad:' => 'icon_mad.gif',
2485 ':sad:' => 'icon_sad.gif',
2486 '8-)' => 'icon_cool.gif',
2487 '8-O' => 'icon_eek.gif',
2488 ':-(' => 'icon_sad.gif',
2489 ':-)' => 'icon_smile.gif',
2490 ':-?' => 'icon_confused.gif',
2491 ':-D' => 'icon_biggrin.gif',
2492 ':-P' => 'icon_razz.gif',
2493 ':-o' => 'icon_surprised.gif',
2494 ':-x' => 'icon_mad.gif',
2495 ':-|' => 'icon_neutral.gif',
2496 ';-)' => 'icon_wink.gif',
2497 // This one transformation breaks regular text with frequency.
2498 // '8)' => 'icon_cool.gif',
2499 '8O' => 'icon_eek.gif',
2500 ':(' => 'icon_sad.gif',
2501 ':)' => 'icon_smile.gif',
2502 ':?' => 'icon_confused.gif',
2503 ':D' => 'icon_biggrin.gif',
2504 ':P' => 'icon_razz.gif',
2505 ':o' => 'icon_surprised.gif',
2506 ':x' => 'icon_mad.gif',
2507 ':|' => 'icon_neutral.gif',
2508 ';)' => 'icon_wink.gif',
2509 ':!:' => 'icon_exclaim.gif',
2510 ':?:' => 'icon_question.gif',
2514 if (count($wpsmiliestrans) == 0) {
2519 * NOTE: we sort the smilies in reverse key order. This is to make sure
2520 * we match the longest possible smilie (:???: vs :?) as the regular
2521 * expression used below is first-match
2523 krsort($wpsmiliestrans);
2525 $wp_smiliessearch = '/(?:\s|^)';
2528 foreach ( (array) $wpsmiliestrans as $smiley => $img ) {
2529 $firstchar = substr($smiley, 0, 1);
2530 $rest = substr($smiley, 1);
2533 if ($firstchar != $subchar) {
2534 if ($subchar != '') {
2535 $wp_smiliessearch .= ')|(?:\s|^)';
2537 $subchar = $firstchar;
2538 $wp_smiliessearch .= preg_quote($firstchar, '/') . '(?:';
2540 $wp_smiliessearch .= '|';
2542 $wp_smiliessearch .= preg_quote($rest, '/');
2545 $wp_smiliessearch .= ')(?:\s|$)/m';
2549 * Merge user defined arguments into defaults array.
2551 * This function is used throughout WordPress to allow for both string or array
2552 * to be merged into another array.
2556 * @param string|array $args Value to merge with $defaults
2557 * @param array $defaults Array that serves as the defaults.
2558 * @return array Merged user defined values with defaults.
2560 function wp_parse_args( $args, $defaults = '' ) {
2561 if ( is_object( $args ) )
2562 $r = get_object_vars( $args );
2563 elseif ( is_array( $args ) )
2566 wp_parse_str( $args, $r );
2568 if ( is_array( $defaults ) )
2569 return array_merge( $defaults, $r );
2574 * Clean up an array, comma- or space-separated list of IDs.
2578 * @param array|string $list
2579 * @return array Sanitized array of IDs
2581 function wp_parse_id_list( $list ) {
2582 if ( !is_array($list) )
2583 $list = preg_split('/[\s,]+/', $list);
2585 return array_unique(array_map('absint', $list));
2589 * Extract a slice of an array, given a list of keys.
2593 * @param array $array The original array
2594 * @param array $keys The list of keys
2595 * @return array The array slice
2597 function wp_array_slice_assoc( $array, $keys ) {
2599 foreach ( $keys as $key )
2600 if ( isset( $array[ $key ] ) )
2601 $slice[ $key ] = $array[ $key ];
2607 * Filters a list of objects, based on a set of key => value arguments.
2611 * @param array $list An array of objects to filter
2612 * @param array $args An array of key => value arguments to match against each object
2613 * @param string $operator The logical operation to perform. 'or' means only one element
2614 * from the array needs to match; 'and' means all elements must match. The default is 'and'.
2615 * @param bool|string $field A field from the object to place instead of the entire object
2616 * @return array A list of objects or object fields
2618 function wp_filter_object_list( $list, $args = array(), $operator = 'and', $field = false ) {
2619 if ( ! is_array( $list ) )
2622 $list = wp_list_filter( $list, $args, $operator );
2625 $list = wp_list_pluck( $list, $field );
2631 * Filters a list of objects, based on a set of key => value arguments.
2635 * @param array $list An array of objects to filter
2636 * @param array $args An array of key => value arguments to match against each object
2637 * @param string $operator The logical operation to perform:
2638 * 'AND' means all elements from the array must match;
2639 * 'OR' means only one element needs to match;
2640 * 'NOT' means no elements may match.
2641 * The default is 'AND'.
2644 function wp_list_filter( $list, $args = array(), $operator = 'AND' ) {
2645 if ( ! is_array( $list ) )
2648 if ( empty( $args ) )
2651 $operator = strtoupper( $operator );
2652 $count = count( $args );
2653 $filtered = array();
2655 foreach ( $list as $key => $obj ) {
2656 $to_match = (array) $obj;
2659 foreach ( $args as $m_key => $m_value ) {
2660 if ( array_key_exists( $m_key, $to_match ) && $m_value == $to_match[ $m_key ] )
2664 if ( ( 'AND' == $operator && $matched == $count )
2665 || ( 'OR' == $operator && $matched > 0 )
2666 || ( 'NOT' == $operator && 0 == $matched ) ) {
2667 $filtered[$key] = $obj;
2675 * Pluck a certain field out of each object in a list.
2679 * @param array $list A list of objects or arrays
2680 * @param int|string $field A field from the object to place instead of the entire object
2683 function wp_list_pluck( $list, $field ) {
2684 foreach ( $list as $key => $value ) {
2685 if ( is_object( $value ) )
2686 $list[ $key ] = $value->$field;
2688 $list[ $key ] = $value[ $field ];
2695 * Determines if Widgets library should be loaded.
2697 * Checks to make sure that the widgets library hasn't already been loaded. If
2698 * it hasn't, then it will load the widgets library and run an action hook.
2701 * @uses add_action() Calls '_admin_menu' hook with 'wp_widgets_add_menu' value.
2703 function wp_maybe_load_widgets() {
2704 if ( ! apply_filters('load_default_widgets', true) )
2706 require_once( ABSPATH . WPINC . '/default-widgets.php' );
2707 add_action( '_admin_menu', 'wp_widgets_add_menu' );
2711 * Append the Widgets menu to the themes main menu.
2714 * @uses $submenu The administration submenu list.
2716 function wp_widgets_add_menu() {
2719 if ( ! current_theme_supports( 'widgets' ) )
2722 $submenu['themes.php'][7] = array( __( 'Widgets' ), 'edit_theme_options', 'widgets.php' );
2723 ksort( $submenu['themes.php'], SORT_NUMERIC );
2727 * Flush all output buffers for PHP 5.2.
2729 * Make sure all output buffers are flushed before our singletons our destroyed.
2733 function wp_ob_end_flush_all() {
2734 $levels = ob_get_level();
2735 for ($i=0; $i<$levels; $i++)
2740 * Load custom DB error or display WordPress DB error.
2742 * If a file exists in the wp-content directory named db-error.php, then it will
2743 * be loaded instead of displaying the WordPress DB error. If it is not found,
2744 * then the WordPress DB error will be displayed instead.
2746 * The WordPress DB error sets the HTTP status header to 500 to try to prevent
2747 * search engines from caching the message. Custom DB messages should do the
2750 * This function was backported to WordPress 2.3.2, but originally was added
2751 * in WordPress 2.5.0.
2756 function dead_db() {
2759 // Load custom DB error template, if present.
2760 if ( file_exists( WP_CONTENT_DIR . '/db-error.php' ) ) {
2761 require_once( WP_CONTENT_DIR . '/db-error.php' );
2765 // If installing or in the admin, provide the verbose message.
2766 if ( defined('WP_INSTALLING') || defined('WP_ADMIN') )
2767 wp_die($wpdb->error);
2769 // Otherwise, be terse.
2770 status_header( 500 );
2772 header( 'Content-Type: text/html; charset=utf-8' );
2774 wp_load_translations_early();
2777 <html xmlns="http://www.w3.org/1999/xhtml"<?php if ( is_rtl() ) echo ' dir="rtl"'; ?>>
2779 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
2780 <title><?php _e( 'Database Error' ); ?></title>
2784 <h1><?php _e( 'Error establishing a database connection' ); ?></h1>
2792 * Converts value to nonnegative integer.
2796 * @param mixed $maybeint Data you wish to have converted to a nonnegative integer
2797 * @return int An nonnegative integer
2799 function absint( $maybeint ) {
2800 return abs( intval( $maybeint ) );
2804 * Determines if the blog can be accessed over SSL.
2806 * Determines if blog can be accessed over SSL by using cURL to access the site
2807 * using the https in the siteurl. Requires cURL extension to work correctly.
2811 * @param string $url
2812 * @return bool Whether SSL access is available
2814 function url_is_accessable_via_ssl($url)
2816 if ( in_array( 'curl', get_loaded_extensions() ) ) {
2817 $ssl = set_url_scheme( $url, 'https' );
2820 curl_setopt($ch, CURLOPT_URL, $ssl);
2821 curl_setopt($ch, CURLOPT_FAILONERROR, true);
2822 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
2823 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
2824 curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2828 $status = curl_getinfo($ch, CURLINFO_HTTP_CODE);
2831 if ($status == 200 || $status == 401) {
2839 * Marks a function as deprecated and informs when it has been used.
2841 * There is a hook deprecated_function_run that will be called that can be used
2842 * to get the backtrace up to what file and function called the deprecated
2845 * The current behavior is to trigger a user error if WP_DEBUG is true.
2847 * This function is to be used in every function that is deprecated.
2849 * @package WordPress
2854 * @uses do_action() Calls 'deprecated_function_run' and passes the function name, what to use instead,
2855 * and the version the function was deprecated in.
2856 * @uses apply_filters() Calls 'deprecated_function_trigger_error' and expects boolean value of true to do
2857 * trigger or false to not trigger error.
2859 * @param string $function The function that was called
2860 * @param string $version The version of WordPress that deprecated the function
2861 * @param string $replacement Optional. The function that should have been called
2863 function _deprecated_function( $function, $version, $replacement = null ) {
2865 do_action( 'deprecated_function_run', $function, $replacement, $version );
2867 // Allow plugin to filter the output error trigger
2868 if ( WP_DEBUG && apply_filters( 'deprecated_function_trigger_error', true ) ) {
2869 if ( function_exists( '__' ) ) {
2870 if ( ! is_null( $replacement ) )
2871 trigger_error( sprintf( __('%1$s is <strong>deprecated</strong> since version %2$s! Use %3$s instead.'), $function, $version, $replacement ) );
2873 trigger_error( sprintf( __('%1$s is <strong>deprecated</strong> since version %2$s with no alternative available.'), $function, $version ) );
2875 if ( ! is_null( $replacement ) )
2876 trigger_error( sprintf( '%1$s is <strong>deprecated</strong> since version %2$s! Use %3$s instead.', $function, $version, $replacement ) );
2878 trigger_error( sprintf( '%1$s is <strong>deprecated</strong> since version %2$s with no alternative available.', $function, $version ) );
2884 * Marks a file as deprecated and informs when it has been used.
2886 * There is a hook deprecated_file_included that will be called that can be used
2887 * to get the backtrace up to what file and function included the deprecated
2890 * The current behavior is to trigger a user error if WP_DEBUG is true.
2892 * This function is to be used in every file that is deprecated.
2894 * @package WordPress
2899 * @uses do_action() Calls 'deprecated_file_included' and passes the file name, what to use instead,
2900 * the version in which the file was deprecated, and any message regarding the change.
2901 * @uses apply_filters() Calls 'deprecated_file_trigger_error' and expects boolean value of true to do
2902 * trigger or false to not trigger error.
2904 * @param string $file The file that was included
2905 * @param string $version The version of WordPress that deprecated the file
2906 * @param string $replacement Optional. The file that should have been included based on ABSPATH
2907 * @param string $message Optional. A message regarding the change
2909 function _deprecated_file( $file, $version, $replacement = null, $message = '' ) {
2911 do_action( 'deprecated_file_included', $file, $replacement, $version, $message );
2913 // Allow plugin to filter the output error trigger
2914 if ( WP_DEBUG && apply_filters( 'deprecated_file_trigger_error', true ) ) {
2915 $message = empty( $message ) ? '' : ' ' . $message;
2916 if ( function_exists( '__' ) ) {
2917 if ( ! is_null( $replacement ) )
2918 trigger_error( sprintf( __('%1$s is <strong>deprecated</strong> since version %2$s! Use %3$s instead.'), $file, $version, $replacement ) . $message );
2920 trigger_error( sprintf( __('%1$s is <strong>deprecated</strong> since version %2$s with no alternative available.'), $file, $version ) . $message );
2922 if ( ! is_null( $replacement ) )
2923 trigger_error( sprintf( '%1$s is <strong>deprecated</strong> since version %2$s! Use %3$s instead.', $file, $version, $replacement ) . $message );
2925 trigger_error( sprintf( '%1$s is <strong>deprecated</strong> since version %2$s with no alternative available.', $file, $version ) . $message );
2930 * Marks a function argument as deprecated and informs when it has been used.
2932 * This function is to be used whenever a deprecated function argument is used.
2933 * Before this function is called, the argument must be checked for whether it was
2934 * used by comparing it to its default value or evaluating whether it is empty.
2937 * if ( !empty($deprecated) )
2938 * _deprecated_argument( __FUNCTION__, '3.0' );
2941 * There is a hook deprecated_argument_run that will be called that can be used
2942 * to get the backtrace up to what file and function used the deprecated
2945 * The current behavior is to trigger a user error if WP_DEBUG is true.
2947 * @package WordPress
2952 * @uses do_action() Calls 'deprecated_argument_run' and passes the function name, a message on the change,
2953 * and the version in which the argument was deprecated.
2954 * @uses apply_filters() Calls 'deprecated_argument_trigger_error' and expects boolean value of true to do
2955 * trigger or false to not trigger error.
2957 * @param string $function The function that was called
2958 * @param string $version The version of WordPress that deprecated the argument used
2959 * @param string $message Optional. A message regarding the change.
2961 function _deprecated_argument( $function, $version, $message = null ) {
2963 do_action( 'deprecated_argument_run', $function, $message, $version );
2965 // Allow plugin to filter the output error trigger
2966 if ( WP_DEBUG && apply_filters( 'deprecated_argument_trigger_error', true ) ) {
2967 if ( function_exists( '__' ) ) {
2968 if ( ! is_null( $message ) )
2969 trigger_error( sprintf( __('%1$s was called with an argument that is <strong>deprecated</strong> since version %2$s! %3$s'), $function, $version, $message ) );
2971 trigger_error( sprintf( __('%1$s was called with an argument that is <strong>deprecated</strong> since version %2$s with no alternative available.'), $function, $version ) );
2973 if ( ! is_null( $message ) )
2974 trigger_error( sprintf( '%1$s was called with an argument that is <strong>deprecated</strong> since version %2$s! %3$s', $function, $version, $message ) );
2976 trigger_error( sprintf( '%1$s was called with an argument that is <strong>deprecated</strong> since version %2$s with no alternative available.', $function, $version ) );
2982 * Marks something as being incorrectly called.
2984 * There is a hook doing_it_wrong_run that will be called that can be used
2985 * to get the backtrace up to what file and function called the deprecated
2988 * The current behavior is to trigger a user error if WP_DEBUG is true.
2990 * @package WordPress
2995 * @uses do_action() Calls 'doing_it_wrong_run' and passes the function arguments.
2996 * @uses apply_filters() Calls 'doing_it_wrong_trigger_error' and expects boolean value of true to do
2997 * trigger or false to not trigger error.
2999 * @param string $function The function that was called.
3000 * @param string $message A message explaining what has been done incorrectly.
3001 * @param string $version The version of WordPress where the message was added.
3003 function _doing_it_wrong( $function, $message, $version ) {
3005 do_action( 'doing_it_wrong_run', $function, $message, $version );
3007 // Allow plugin to filter the output error trigger
3008 if ( WP_DEBUG && apply_filters( 'doing_it_wrong_trigger_error', true ) ) {
3009 if ( function_exists( '__' ) ) {
3010 $version = is_null( $version ) ? '' : sprintf( __( '(This message was added in version %s.)' ), $version );
3011 $message .= ' ' . __( 'Please see <a href="http://codex.wordpress.org/Debugging_in_WordPress">Debugging in WordPress</a> for more information.' );
3012 trigger_error( sprintf( __( '%1$s was called <strong>incorrectly</strong>. %2$s %3$s' ), $function, $message, $version ) );
3014 $version = is_null( $version ) ? '' : sprintf( '(This message was added in version %s.)', $version );
3015 $message .= ' Please see <a href="http://codex.wordpress.org/Debugging_in_WordPress">Debugging in WordPress</a> for more information.';
3016 trigger_error( sprintf( '%1$s was called <strong>incorrectly</strong>. %2$s %3$s', $function, $message, $version ) );
3022 * Is the server running earlier than 1.5.0 version of lighttpd?
3026 * @return bool Whether the server is running lighttpd < 1.5.0
3028 function is_lighttpd_before_150() {
3029 $server_parts = explode( '/', isset( $_SERVER['SERVER_SOFTWARE'] )? $_SERVER['SERVER_SOFTWARE'] : '' );
3030 $server_parts[1] = isset( $server_parts[1] )? $server_parts[1] : '';
3031 return 'lighttpd' == $server_parts[0] && -1 == version_compare( $server_parts[1], '1.5.0' );
3035 * Does the specified module exist in the Apache config?
3039 * @param string $mod e.g. mod_rewrite
3040 * @param bool $default The default return value if the module is not found
3043 function apache_mod_loaded($mod, $default = false) {
3049 if ( function_exists('apache_get_modules') ) {
3050 $mods = apache_get_modules();
3051 if ( in_array($mod, $mods) )
3053 } elseif ( function_exists('phpinfo') ) {
3056 $phpinfo = ob_get_clean();
3057 if ( false !== strpos($phpinfo, $mod) )
3064 * Check if IIS 7+ supports pretty permalinks.
3070 function iis7_supports_permalinks() {
3073 $supports_permalinks = false;
3075 /* First we check if the DOMDocument class exists. If it does not exist, then we cannot
3076 * easily update the xml configuration file, hence we just bail out and tell user that
3077 * pretty permalinks cannot be used.
3079 * Next we check if the URL Rewrite Module 1.1 is loaded and enabled for the web site. When
3080 * URL Rewrite 1.1 is loaded it always sets a server variable called 'IIS_UrlRewriteModule'.
3081 * Lastly we make sure that PHP is running via FastCGI. This is important because if it runs
3082 * via ISAPI then pretty permalinks will not work.
3084 $supports_permalinks = class_exists('DOMDocument') && isset($_SERVER['IIS_UrlRewriteModule']) && ( php_sapi_name() == 'cgi-fcgi' );
3087 return apply_filters('iis7_supports_permalinks', $supports_permalinks);
3091 * File validates against allowed set of defined rules.
3093 * A return value of '1' means that the $file contains either '..' or './'. A
3094 * return value of '2' means that the $file contains ':' after the first
3095 * character. A return value of '3' means that the file is not in the allowed
3100 * @param string $file File path.
3101 * @param array $allowed_files List of allowed files.
3102 * @return int 0 means nothing is wrong, greater than 0 means something was wrong.
3104 function validate_file( $file, $allowed_files = '' ) {
3105 if ( false !== strpos( $file, '..' ) )
3108 if ( false !== strpos( $file, './' ) )
3111 if ( ! empty( $allowed_files ) && ! in_array( $file, $allowed_files ) )
3114 if (':' == substr( $file, 1, 1 ) )
3121 * Determine if SSL is used.
3125 * @return bool True if SSL, false if not used.
3128 if ( isset($_SERVER['HTTPS']) ) {
3129 if ( 'on' == strtolower($_SERVER['HTTPS']) )
3131 if ( '1' == $_SERVER['HTTPS'] )
3133 } elseif ( isset($_SERVER['SERVER_PORT']) && ( '443' == $_SERVER['SERVER_PORT'] ) ) {
3140 * Whether SSL login should be forced.
3144 * @param string|bool $force Optional.
3145 * @return bool True if forced, false if not forced.
3147 function force_ssl_login( $force = null ) {
3148 static $forced = false;
3150 if ( !is_null( $force ) ) {
3151 $old_forced = $forced;
3160 * Whether to force SSL used for the Administration Screens.
3164 * @param string|bool $force
3165 * @return bool True if forced, false if not forced.
3167 function force_ssl_admin( $force = null ) {
3168 static $forced = false;
3170 if ( !is_null( $force ) ) {
3171 $old_forced = $forced;
3180 * Guess the URL for the site.
3182 * Will remove wp-admin links to retrieve only return URLs not in the wp-admin
3189 function wp_guess_url() {
3190 if ( defined('WP_SITEURL') && '' != WP_SITEURL ) {
3193 $schema = is_ssl() ? 'https://' : 'http://'; // set_url_scheme() is not defined yet
3194 $url = preg_replace( '#/(wp-admin/.*|wp-login.php)#i', '', $schema . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'] );
3197 return rtrim($url, '/');
3201 * Temporarily suspend cache additions.
3203 * Stops more data being added to the cache, but still allows cache retrieval.
3204 * This is useful for actions, such as imports, when a lot of data would otherwise
3205 * be almost uselessly added to the cache.
3207 * Suspension lasts for a single page load at most. Remember to call this
3208 * function again if you wish to re-enable cache adds earlier.
3212 * @param bool $suspend Optional. Suspends additions if true, re-enables them if false.
3213 * @return bool The current suspend setting
3215 function wp_suspend_cache_addition( $suspend = null ) {
3216 static $_suspend = false;
3218 if ( is_bool( $suspend ) )
3219 $_suspend = $suspend;
3225 * Suspend cache invalidation.
3227 * Turns cache invalidation on and off. Useful during imports where you don't wont to do invalidations
3228 * every time a post is inserted. Callers must be sure that what they are doing won't lead to an inconsistent
3229 * cache when invalidation is suspended.
3233 * @param bool $suspend Whether to suspend or enable cache invalidation
3234 * @return bool The current suspend setting
3236 function wp_suspend_cache_invalidation($suspend = true) {
3237 global $_wp_suspend_cache_invalidation;
3239 $current_suspend = $_wp_suspend_cache_invalidation;
3240 $_wp_suspend_cache_invalidation = $suspend;
3241 return $current_suspend;
3249 * @package WordPress
3251 * @param int $blog_id optional blog id to test (default current blog)
3252 * @return bool True if not multisite or $blog_id is main site
3254 function is_main_site( $blog_id = '' ) {
3255 global $current_site;
3257 if ( ! is_multisite() )
3261 $blog_id = get_current_blog_id();
3263 return $blog_id == $current_site->blog_id;
3267 * Whether global terms are enabled.
3271 * @package WordPress
3273 * @return bool True if multisite and global terms enabled
3275 function global_terms_enabled() {
3276 if ( ! is_multisite() )
3279 static $global_terms = null;
3280 if ( is_null( $global_terms ) ) {
3281 $filter = apply_filters( 'global_terms_enabled', null );
3282 if ( ! is_null( $filter ) )
3283 $global_terms = (bool) $filter;
3285 $global_terms = (bool) get_site_option( 'global_terms_enabled', false );
3287 return $global_terms;
3291 * gmt_offset modification for smart timezone handling.
3293 * Overrides the gmt_offset option if we have a timezone_string available.
3297 * @return float|bool
3299 function wp_timezone_override_offset() {
3300 if ( !$timezone_string = get_option( 'timezone_string' ) ) {
3304 $timezone_object = timezone_open( $timezone_string );
3305 $datetime_object = date_create();
3306 if ( false === $timezone_object || false === $datetime_object ) {
3309 return round( timezone_offset_get( $timezone_object, $datetime_object ) / HOUR_IN_SECONDS, 2 );
3313 * {@internal Missing Short Description}}
3317 * @param unknown_type $a
3318 * @param unknown_type $b
3321 function _wp_timezone_choice_usort_callback( $a, $b ) {
3322 // Don't use translated versions of Etc
3323 if ( 'Etc' === $a['continent'] && 'Etc' === $b['continent'] ) {
3324 // Make the order of these more like the old dropdown
3325 if ( 'GMT+' === substr( $a['city'], 0, 4 ) && 'GMT+' === substr( $b['city'], 0, 4 ) ) {
3326 return -1 * ( strnatcasecmp( $a['city'], $b['city'] ) );
3328 if ( 'UTC' === $a['city'] ) {
3329 if ( 'GMT+' === substr( $b['city'], 0, 4 ) ) {
3334 if ( 'UTC' === $b['city'] ) {
3335 if ( 'GMT+' === substr( $a['city'], 0, 4 ) ) {
3340 return strnatcasecmp( $a['city'], $b['city'] );
3342 if ( $a['t_continent'] == $b['t_continent'] ) {
3343 if ( $a['t_city'] == $b['t_city'] ) {
3344 return strnatcasecmp( $a['t_subcity'], $b['t_subcity'] );
3346 return strnatcasecmp( $a['t_city'], $b['t_city'] );
3348 // Force Etc to the bottom of the list
3349 if ( 'Etc' === $a['continent'] ) {
3352 if ( 'Etc' === $b['continent'] ) {
3355 return strnatcasecmp( $a['t_continent'], $b['t_continent'] );
3360 * Gives a nicely formatted list of timezone strings.
3364 * @param string $selected_zone Selected Zone
3367 function wp_timezone_choice( $selected_zone ) {
3368 static $mo_loaded = false;
3370 $continents = array( 'Africa', 'America', 'Antarctica', 'Arctic', 'Asia', 'Atlantic', 'Australia', 'Europe', 'Indian', 'Pacific');
3372 // Load translations for continents and cities
3373 if ( !$mo_loaded ) {
3374 $locale = get_locale();
3375 $mofile = WP_LANG_DIR . '/continents-cities-' . $locale . '.mo';
3376 load_textdomain( 'continents-cities', $mofile );
3381 foreach ( timezone_identifiers_list() as $zone ) {
3382 $zone = explode( '/', $zone );
3383 if ( !in_array( $zone[0], $continents ) ) {
3387 // This determines what gets set and translated - we don't translate Etc/* strings here, they are done later
3389 0 => ( isset( $zone[0] ) && $zone[0] ),
3390 1 => ( isset( $zone[1] ) && $zone[1] ),
3391 2 => ( isset( $zone[2] ) && $zone[2] ),
3393 $exists[3] = ( $exists[0] && 'Etc' !== $zone[0] );
3394 $exists[4] = ( $exists[1] && $exists[3] );
3395 $exists[5] = ( $exists[2] && $exists[3] );
3398 'continent' => ( $exists[0] ? $zone[0] : '' ),
3399 'city' => ( $exists[1] ? $zone[1] : '' ),
3400 'subcity' => ( $exists[2] ? $zone[2] : '' ),
3401 't_continent' => ( $exists[3] ? translate( str_replace( '_', ' ', $zone[0] ), 'continents-cities' ) : '' ),
3402 't_city' => ( $exists[4] ? translate( str_replace( '_', ' ', $zone[1] ), 'continents-cities' ) : '' ),
3403 't_subcity' => ( $exists[5] ? translate( str_replace( '_', ' ', $zone[2] ), 'continents-cities' ) : '' )
3406 usort( $zonen, '_wp_timezone_choice_usort_callback' );
3408 $structure = array();
3410 if ( empty( $selected_zone ) ) {
3411 $structure[] = '<option selected="selected" value="">' . __( 'Select a city' ) . '</option>';
3414 foreach ( $zonen as $key => $zone ) {
3415 // Build value in an array to join later
3416 $value = array( $zone['continent'] );
3418 if ( empty( $zone['city'] ) ) {
3419 // It's at the continent level (generally won't happen)
3420 $display = $zone['t_continent'];
3422 // It's inside a continent group
3424 // Continent optgroup
3425 if ( !isset( $zonen[$key - 1] ) || $zonen[$key - 1]['continent'] !== $zone['continent'] ) {
3426 $label = $zone['t_continent'];
3427 $structure[] = '<optgroup label="'. esc_attr( $label ) .'">';
3430 // Add the city to the value
3431 $value[] = $zone['city'];
3433 $display = $zone['t_city'];
3434 if ( !empty( $zone['subcity'] ) ) {
3435 // Add the subcity to the value
3436 $value[] = $zone['subcity'];
3437 $display .= ' - ' . $zone['t_subcity'];
3442 $value = join( '/', $value );
3444 if ( $value === $selected_zone ) {
3445 $selected = 'selected="selected" ';
3447 $structure[] = '<option ' . $selected . 'value="' . esc_attr( $value ) . '">' . esc_html( $display ) . "</option>";
3449 // Close continent optgroup
3450 if ( !empty( $zone['city'] ) && ( !isset($zonen[$key + 1]) || (isset( $zonen[$key + 1] ) && $zonen[$key + 1]['continent'] !== $zone['continent']) ) ) {
3451 $structure[] = '</optgroup>';
3456 $structure[] = '<optgroup label="'. esc_attr__( 'UTC' ) .'">';
3458 if ( 'UTC' === $selected_zone )
3459 $selected = 'selected="selected" ';
3460 $structure[] = '<option ' . $selected . 'value="' . esc_attr( 'UTC' ) . '">' . __('UTC') . '</option>';
3461 $structure[] = '</optgroup>';
3463 // Do manual UTC offsets
3464 $structure[] = '<optgroup label="'. esc_attr__( 'Manual Offsets' ) .'">';
3465 $offset_range = array (-12, -11.5, -11, -10.5, -10, -9.5, -9, -8.5, -8, -7.5, -7, -6.5, -6, -5.5, -5, -4.5, -4, -3.5, -3, -2.5, -2, -1.5, -1, -0.5,
3466 0, 0.5, 1, 1.5, 2, 2.5, 3, 3.5, 4, 4.5, 5, 5.5, 5.75, 6, 6.5, 7, 7.5, 8, 8.5, 8.75, 9, 9.5, 10, 10.5, 11, 11.5, 12, 12.75, 13, 13.75, 14);
3467 foreach ( $offset_range as $offset ) {
3469 $offset_name = '+' . $offset;
3471 $offset_name = (string) $offset;
3473 $offset_value = $offset_name;
3474 $offset_name = str_replace(array('.25','.5','.75'), array(':15',':30',':45'), $offset_name);
3475 $offset_name = 'UTC' . $offset_name;
3476 $offset_value = 'UTC' . $offset_value;
3478 if ( $offset_value === $selected_zone )
3479 $selected = 'selected="selected" ';
3480 $structure[] = '<option ' . $selected . 'value="' . esc_attr( $offset_value ) . '">' . esc_html( $offset_name ) . "</option>";
3483 $structure[] = '</optgroup>';
3485 return join( "\n", $structure );
3489 * Strip close comment and close php tags from file headers used by WP.
3490 * See http://core.trac.wordpress.org/ticket/8497
3494 * @param string $str
3497 function _cleanup_header_comment($str) {
3498 return trim(preg_replace("/\s*(?:\*\/|\?>).*/", '', $str));
3502 * Permanently deletes posts, pages, attachments, and comments which have been in the trash for EMPTY_TRASH_DAYS.
3506 function wp_scheduled_delete() {
3509 $delete_timestamp = time() - ( DAY_IN_SECONDS * EMPTY_TRASH_DAYS );
3511 $posts_to_delete = $wpdb->get_results($wpdb->prepare("SELECT post_id FROM $wpdb->postmeta WHERE meta_key = '_wp_trash_meta_time' AND meta_value < '%d'", $delete_timestamp), ARRAY_A);
3513 foreach ( (array) $posts_to_delete as $post ) {
3514 $post_id = (int) $post['post_id'];
3518 $del_post = get_post($post_id);
3520 if ( !$del_post || 'trash' != $del_post->post_status ) {
3521 delete_post_meta($post_id, '_wp_trash_meta_status');
3522 delete_post_meta($post_id, '_wp_trash_meta_time');
3524 wp_delete_post($post_id);
3528 $comments_to_delete = $wpdb->get_results($wpdb->prepare("SELECT comment_id FROM $wpdb->commentmeta WHERE meta_key = '_wp_trash_meta_time' AND meta_value < '%d'", $delete_timestamp), ARRAY_A);
3530 foreach ( (array) $comments_to_delete as $comment ) {
3531 $comment_id = (int) $comment['comment_id'];
3535 $del_comment = get_comment($comment_id);
3537 if ( !$del_comment || 'trash' != $del_comment->comment_approved ) {
3538 delete_comment_meta($comment_id, '_wp_trash_meta_time');
3539 delete_comment_meta($comment_id, '_wp_trash_meta_status');
3541 wp_delete_comment($comment_id);
3547 * Retrieve metadata from a file.
3549 * Searches for metadata in the first 8kiB of a file, such as a plugin or theme.
3550 * Each piece of metadata must be on its own line. Fields can not span multiple
3551 * lines, the value will get cut at the end of the first line.
3553 * If the file data is not within that first 8kiB, then the author should correct
3554 * their plugin file and move the data headers to the top.
3556 * @see http://codex.wordpress.org/File_Header
3559 * @param string $file Path to the file
3560 * @param array $default_headers List of headers, in the format array('HeaderKey' => 'Header Name')
3561 * @param string $context If specified adds filter hook "extra_{$context}_headers"
3563 function get_file_data( $file, $default_headers, $context = '' ) {
3564 // We don't need to write to the file, so just open for reading.
3565 $fp = fopen( $file, 'r' );
3567 // Pull only the first 8kiB of the file in.
3568 $file_data = fread( $fp, 8192 );
3570 // PHP will close file handle, but we are good citizens.
3573 // Make sure we catch CR-only line endings.
3574 $file_data = str_replace( "\r", "\n", $file_data );
3576 if ( $context && $extra_headers = apply_filters( "extra_{$context}_headers", array() ) ) {
3577 $extra_headers = array_combine( $extra_headers, $extra_headers ); // keys equal values
3578 $all_headers = array_merge( $extra_headers, (array) $default_headers );
3580 $all_headers = $default_headers;
3583 foreach ( $all_headers as $field => $regex ) {
3584 if ( preg_match( '/^[ \t\/*#@]*' . preg_quote( $regex, '/' ) . ':(.*)$/mi', $file_data, $match ) && $match[1] )
3585 $all_headers[ $field ] = _cleanup_header_comment( $match[1] );
3587 $all_headers[ $field ] = '';
3590 return $all_headers;
3594 * Used internally to tidy up the search terms.
3602 function _search_terms_tidy($t) {
3603 return trim($t, "\"'\n\r ");
3609 * Useful for returning true to filters easily.
3612 * @see __return_false()
3615 function __return_true() {
3622 * Useful for returning false to filters easily.
3625 * @see __return_true()
3626 * @return bool false
3628 function __return_false() {
3635 * Useful for returning 0 to filters easily.
3638 * @see __return_zero()
3641 function __return_zero() {
3646 * Returns an empty array.
3648 * Useful for returning an empty array to filters easily.
3651 * @see __return_zero()
3652 * @return array Empty array
3654 function __return_empty_array() {
3661 * Useful for returning null to filters easily.
3666 function __return_null() {
3671 * Send a HTTP header to disable content type sniffing in browsers which support it.
3673 * @link http://blogs.msdn.com/ie/archive/2008/07/02/ie8-security-part-v-comprehensive-protection.aspx
3674 * @link http://src.chromium.org/viewvc/chrome?view=rev&revision=6985
3679 function send_nosniff_header() {
3680 @header( 'X-Content-Type-Options: nosniff' );
3684 * Returns a MySQL expression for selecting the week number based on the start_of_week option.
3688 * @param string $column
3691 function _wp_mysql_week( $column ) {
3692 switch ( $start_of_week = (int) get_option( 'start_of_week' ) ) {
3695 return "WEEK( $column, 0 )";
3697 return "WEEK( $column, 1 )";
3703 return "WEEK( DATE_SUB( $column, INTERVAL $start_of_week DAY ), 0 )";
3708 * Finds hierarchy loops using a callback function that maps object IDs to parent IDs.
3713 * @param callback $callback function that accepts ( ID, $callback_args ) and outputs parent_ID
3714 * @param int $start The ID to start the loop check at
3715 * @param int $start_parent the parent_ID of $start to use instead of calling $callback( $start ). Use null to always use $callback
3716 * @param array $callback_args optional additional arguments to send to $callback
3717 * @return array IDs of all members of loop
3719 function wp_find_hierarchy_loop( $callback, $start, $start_parent, $callback_args = array() ) {
3720 $override = is_null( $start_parent ) ? array() : array( $start => $start_parent );
3722 if ( !$arbitrary_loop_member = wp_find_hierarchy_loop_tortoise_hare( $callback, $start, $override, $callback_args ) )
3725 return wp_find_hierarchy_loop_tortoise_hare( $callback, $arbitrary_loop_member, $override, $callback_args, true );
3729 * Uses the "The Tortoise and the Hare" algorithm to detect loops.
3731 * For every step of the algorithm, the hare takes two steps and the tortoise one.
3732 * If the hare ever laps the tortoise, there must be a loop.
3737 * @param callback $callback function that accepts ( ID, callback_arg, ... ) and outputs parent_ID
3738 * @param int $start The ID to start the loop check at
3739 * @param array $override an array of ( ID => parent_ID, ... ) to use instead of $callback
3740 * @param array $callback_args optional additional arguments to send to $callback
3741 * @param bool $_return_loop Return loop members or just detect presence of loop?
3742 * Only set to true if you already know the given $start is part of a loop
3743 * (otherwise the returned array might include branches)
3744 * @return mixed scalar ID of some arbitrary member of the loop, or array of IDs of all members of loop if $_return_loop
3746 function wp_find_hierarchy_loop_tortoise_hare( $callback, $start, $override = array(), $callback_args = array(), $_return_loop = false ) {
3747 $tortoise = $hare = $evanescent_hare = $start;
3750 // Set evanescent_hare to one past hare
3751 // Increment hare two steps
3755 ( $evanescent_hare = isset( $override[$hare] ) ? $override[$hare] : call_user_func_array( $callback, array_merge( array( $hare ), $callback_args ) ) )
3757 ( $hare = isset( $override[$evanescent_hare] ) ? $override[$evanescent_hare] : call_user_func_array( $callback, array_merge( array( $evanescent_hare ), $callback_args ) ) )
3759 if ( $_return_loop )
3760 $return[$tortoise] = $return[$evanescent_hare] = $return[$hare] = true;
3762 // tortoise got lapped - must be a loop
3763 if ( $tortoise == $evanescent_hare || $tortoise == $hare )
3764 return $_return_loop ? $return : $tortoise;
3766 // Increment tortoise by one step
3767 $tortoise = isset( $override[$tortoise] ) ? $override[$tortoise] : call_user_func_array( $callback, array_merge( array( $tortoise ), $callback_args ) );
3774 * Send a HTTP header to limit rendering of pages to same origin iframes.
3776 * @link https://developer.mozilla.org/en/the_x-frame-options_response_header
3781 function send_frame_options_header() {
3782 @header( 'X-Frame-Options: SAMEORIGIN' );
3786 * Retrieve a list of protocols to allow in HTML attributes.
3792 * @return array Array of allowed protocols
3794 function wp_allowed_protocols() {
3797 if ( empty( $protocols ) ) {
3798 $protocols = array( 'http', 'https', 'ftp', 'ftps', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet', 'mms', 'rtsp', 'svn', 'tel',&nb
scripts.mit.edu / autoinstalls / wordpress.git / blob