Wordpress 3.7
[autoinstalls/wordpress.git] / wp-includes / class-wp-xmlrpc-server.php
1 <?php
2 /**
3  * XML-RPC protocol support for WordPress
4  *
5  * @package WordPress
6  */
7
8 /**
9  * WordPress XMLRPC server implementation.
10  *
11  * Implements compatibility for Blogger API, MetaWeblog API, MovableType, and
12  * pingback. Additional WordPress API for managing comments, pages, posts,
13  * options, etc.
14  *
15  * As of WordPress 3.5.0, XML-RPC is enabled by default. It can be disabled
16  * via the xmlrpc_enabled filter found in wp_xmlrpc_server::login().
17  *
18  * @package WordPress
19  * @subpackage Publishing
20  * @since 1.5.0
21  */
22 class wp_xmlrpc_server extends IXR_Server {
23
24         /**
25          * Register all of the XMLRPC methods that XMLRPC server understands.
26          *
27          * Sets up server and method property. Passes XMLRPC
28          * methods through the 'xmlrpc_methods' filter to allow plugins to extend
29          * or replace XMLRPC methods.
30          *
31          * @since 1.5.0
32          *
33          * @return wp_xmlrpc_server
34          */
35         function __construct() {
36                 $this->methods = array(
37                         // WordPress API
38                         'wp.getUsersBlogs'              => 'this:wp_getUsersBlogs',
39                         'wp.newPost'                    => 'this:wp_newPost',
40                         'wp.editPost'                   => 'this:wp_editPost',
41                         'wp.deletePost'                 => 'this:wp_deletePost',
42                         'wp.getPost'                    => 'this:wp_getPost',
43                         'wp.getPosts'                   => 'this:wp_getPosts',
44                         'wp.newTerm'                    => 'this:wp_newTerm',
45                         'wp.editTerm'                   => 'this:wp_editTerm',
46                         'wp.deleteTerm'                 => 'this:wp_deleteTerm',
47                         'wp.getTerm'                    => 'this:wp_getTerm',
48                         'wp.getTerms'                   => 'this:wp_getTerms',
49                         'wp.getTaxonomy'                => 'this:wp_getTaxonomy',
50                         'wp.getTaxonomies'              => 'this:wp_getTaxonomies',
51                         'wp.getUser'                    => 'this:wp_getUser',
52                         'wp.getUsers'                   => 'this:wp_getUsers',
53                         'wp.getProfile'                 => 'this:wp_getProfile',
54                         'wp.editProfile'                => 'this:wp_editProfile',
55                         'wp.getPage'                    => 'this:wp_getPage',
56                         'wp.getPages'                   => 'this:wp_getPages',
57                         'wp.newPage'                    => 'this:wp_newPage',
58                         'wp.deletePage'                 => 'this:wp_deletePage',
59                         'wp.editPage'                   => 'this:wp_editPage',
60                         'wp.getPageList'                => 'this:wp_getPageList',
61                         'wp.getAuthors'                 => 'this:wp_getAuthors',
62                         'wp.getCategories'              => 'this:mw_getCategories',             // Alias
63                         'wp.getTags'                    => 'this:wp_getTags',
64                         'wp.newCategory'                => 'this:wp_newCategory',
65                         'wp.deleteCategory'             => 'this:wp_deleteCategory',
66                         'wp.suggestCategories'  => 'this:wp_suggestCategories',
67                         'wp.uploadFile'                 => 'this:mw_newMediaObject',    // Alias
68                         'wp.getCommentCount'    => 'this:wp_getCommentCount',
69                         'wp.getPostStatusList'  => 'this:wp_getPostStatusList',
70                         'wp.getPageStatusList'  => 'this:wp_getPageStatusList',
71                         'wp.getPageTemplates'   => 'this:wp_getPageTemplates',
72                         'wp.getOptions'                 => 'this:wp_getOptions',
73                         'wp.setOptions'                 => 'this:wp_setOptions',
74                         'wp.getComment'                 => 'this:wp_getComment',
75                         'wp.getComments'                => 'this:wp_getComments',
76                         'wp.deleteComment'              => 'this:wp_deleteComment',
77                         'wp.editComment'                => 'this:wp_editComment',
78                         'wp.newComment'                 => 'this:wp_newComment',
79                         'wp.getCommentStatusList' => 'this:wp_getCommentStatusList',
80                         'wp.getMediaItem'               => 'this:wp_getMediaItem',
81                         'wp.getMediaLibrary'    => 'this:wp_getMediaLibrary',
82                         'wp.getPostFormats'     => 'this:wp_getPostFormats',
83                         'wp.getPostType'                => 'this:wp_getPostType',
84                         'wp.getPostTypes'               => 'this:wp_getPostTypes',
85                         'wp.getRevisions'               => 'this:wp_getRevisions',
86                         'wp.restoreRevision'    => 'this:wp_restoreRevision',
87
88                         // Blogger API
89                         'blogger.getUsersBlogs' => 'this:blogger_getUsersBlogs',
90                         'blogger.getUserInfo' => 'this:blogger_getUserInfo',
91                         'blogger.getPost' => 'this:blogger_getPost',
92                         'blogger.getRecentPosts' => 'this:blogger_getRecentPosts',
93                         'blogger.newPost' => 'this:blogger_newPost',
94                         'blogger.editPost' => 'this:blogger_editPost',
95                         'blogger.deletePost' => 'this:blogger_deletePost',
96
97                         // MetaWeblog API (with MT extensions to structs)
98                         'metaWeblog.newPost' => 'this:mw_newPost',
99                         'metaWeblog.editPost' => 'this:mw_editPost',
100                         'metaWeblog.getPost' => 'this:mw_getPost',
101                         'metaWeblog.getRecentPosts' => 'this:mw_getRecentPosts',
102                         'metaWeblog.getCategories' => 'this:mw_getCategories',
103                         'metaWeblog.newMediaObject' => 'this:mw_newMediaObject',
104
105                         // MetaWeblog API aliases for Blogger API
106                         // see http://www.xmlrpc.com/stories/storyReader$2460
107                         'metaWeblog.deletePost' => 'this:blogger_deletePost',
108                         'metaWeblog.getUsersBlogs' => 'this:blogger_getUsersBlogs',
109
110                         // MovableType API
111                         'mt.getCategoryList' => 'this:mt_getCategoryList',
112                         'mt.getRecentPostTitles' => 'this:mt_getRecentPostTitles',
113                         'mt.getPostCategories' => 'this:mt_getPostCategories',
114                         'mt.setPostCategories' => 'this:mt_setPostCategories',
115                         'mt.supportedMethods' => 'this:mt_supportedMethods',
116                         'mt.supportedTextFilters' => 'this:mt_supportedTextFilters',
117                         'mt.getTrackbackPings' => 'this:mt_getTrackbackPings',
118                         'mt.publishPost' => 'this:mt_publishPost',
119
120                         // PingBack
121                         'pingback.ping' => 'this:pingback_ping',
122                         'pingback.extensions.getPingbacks' => 'this:pingback_extensions_getPingbacks',
123
124                         'demo.sayHello' => 'this:sayHello',
125                         'demo.addTwoNumbers' => 'this:addTwoNumbers'
126                 );
127
128                 $this->initialise_blog_option_info();
129                 $this->methods = apply_filters('xmlrpc_methods', $this->methods);
130         }
131
132         function serve_request() {
133                 $this->IXR_Server($this->methods);
134         }
135
136         /**
137          * Test XMLRPC API by saying, "Hello!" to client.
138          *
139          * @since 1.5.0
140          *
141          * @param array $args Method Parameters.
142          * @return string
143          */
144         function sayHello($args) {
145                 return 'Hello!';
146         }
147
148         /**
149          * Test XMLRPC API by adding two numbers for client.
150          *
151          * @since 1.5.0
152          *
153          * @param array $args Method Parameters.
154          * @return int
155          */
156         function addTwoNumbers($args) {
157                 $number1 = $args[0];
158                 $number2 = $args[1];
159                 return $number1 + $number2;
160         }
161
162         /**
163          * Log user in.
164          *
165          * @since 2.8.0
166          *
167          * @param string $username User's username.
168          * @param string $password User's password.
169          * @return mixed WP_User object if authentication passed, false otherwise
170          */
171         function login( $username, $password ) {
172                 // Respect any old filters against get_option() for 'enable_xmlrpc'.
173                 $enabled = apply_filters( 'pre_option_enable_xmlrpc', false ); // Deprecated
174                 if ( false === $enabled )
175                         $enabled = apply_filters( 'option_enable_xmlrpc', true ); // Deprecated
176
177                 // Proper filter for turning off XML-RPC. It is on by default.
178                 $enabled = apply_filters( 'xmlrpc_enabled', $enabled );
179
180                 if ( ! $enabled ) {
181                         $this->error = new IXR_Error( 405, sprintf( __( 'XML-RPC services are disabled on this site.' ) ) );
182                         return false;
183                 }
184
185                 $user = wp_authenticate($username, $password);
186
187                 if (is_wp_error($user)) {
188                         $this->error = new IXR_Error( 403, __( 'Incorrect username or password.' ) );
189                         $this->error = apply_filters( 'xmlrpc_login_error', $this->error, $user );
190                         return false;
191                 }
192
193                 wp_set_current_user( $user->ID );
194                 return $user;
195         }
196
197         /**
198          * Check user's credentials. Deprecated.
199          *
200          * @since 1.5.0
201          * @deprecated 2.8.0
202          * @deprecated use wp_xmlrpc_server::login
203          * @see wp_xmlrpc_server::login
204          *
205          * @param string $username User's username.
206          * @param string $password User's password.
207          * @return bool Whether authentication passed.
208          */
209         function login_pass_ok( $username, $password ) {
210                 return (bool) $this->login( $username, $password );
211         }
212
213         /**
214          * Escape string or array of strings for database.
215          *
216          * @since 1.5.2
217          *
218          * @param string|array $data Escape single string or array of strings.
219          * @return string|array Type matches $data and sanitized for the database.
220          */
221         function escape( &$data ) {
222                 if ( ! is_array( $data ) )
223                         return wp_slash( $data );
224
225                 foreach ( $data as &$v ) {
226                         if ( is_array( $v ) )
227                                 $this->escape( $v );
228                         elseif ( ! is_object( $v ) )
229                                 $v = wp_slash( $v );
230                 }
231         }
232
233         /**
234          * Retrieve custom fields for post.
235          *
236          * @since 2.5.0
237          *
238          * @param int $post_id Post ID.
239          * @return array Custom fields, if exist.
240          */
241         function get_custom_fields($post_id) {
242                 $post_id = (int) $post_id;
243
244                 $custom_fields = array();
245
246                 foreach ( (array) has_meta($post_id) as $meta ) {
247                         // Don't expose protected fields.
248                         if ( ! current_user_can( 'edit_post_meta', $post_id , $meta['meta_key'] ) )
249                                 continue;
250
251                         $custom_fields[] = array(
252                                 "id"    => $meta['meta_id'],
253                                 "key"   => $meta['meta_key'],
254                                 "value" => $meta['meta_value']
255                         );
256                 }
257
258                 return $custom_fields;
259         }
260
261         /**
262          * Set custom fields for post.
263          *
264          * @since 2.5.0
265          *
266          * @param int $post_id Post ID.
267          * @param array $fields Custom fields.
268          */
269         function set_custom_fields($post_id, $fields) {
270                 $post_id = (int) $post_id;
271
272                 foreach ( (array) $fields as $meta ) {
273                         if ( isset($meta['id']) ) {
274                                 $meta['id'] = (int) $meta['id'];
275                                 $pmeta = get_metadata_by_mid( 'post', $meta['id'] );
276                                 if ( isset($meta['key']) ) {
277                                         $meta['key'] = wp_unslash( $meta['key'] );
278                                         if ( $meta['key'] !== $pmeta->meta_key )
279                                                 continue;
280                                         $meta['value'] = wp_unslash( $meta['value'] );
281                                         if ( current_user_can( 'edit_post_meta', $post_id, $meta['key'] ) )
282                                                 update_metadata_by_mid( 'post', $meta['id'], $meta['value'] );
283                                 } elseif ( current_user_can( 'delete_post_meta', $post_id, $pmeta->meta_key ) ) {
284                                         delete_metadata_by_mid( 'post', $meta['id'] );
285                                 }
286                         } elseif ( current_user_can( 'add_post_meta', $post_id, wp_unslash( $meta['key'] ) ) ) {
287                                 add_post_meta( $post_id, $meta['key'], $meta['value'] );
288                         }
289                 }
290         }
291
292         /**
293          * Set up blog options property.
294          *
295          * Passes property through 'xmlrpc_blog_options' filter.
296          *
297          * @since 2.6.0
298          */
299         function initialise_blog_option_info() {
300                 global $wp_version;
301
302                 $this->blog_options = array(
303                         // Read only options
304                         'software_name'     => array(
305                                 'desc'          => __( 'Software Name' ),
306                                 'readonly'      => true,
307                                 'value'         => 'WordPress'
308                         ),
309                         'software_version'  => array(
310                                 'desc'          => __( 'Software Version' ),
311                                 'readonly'      => true,
312                                 'value'         => $wp_version
313                         ),
314                         'blog_url'          => array(
315                                 'desc'          => __( 'WordPress Address (URL)' ),
316                                 'readonly'      => true,
317                                 'option'        => 'siteurl'
318                         ),
319                         'home_url'          => array(
320                                 'desc'          => __( 'Site Address (URL)' ),
321                                 'readonly'      => true,
322                                 'option'        => 'home'
323                         ),
324                         'login_url'          => array(
325                                 'desc'          => __( 'Login Address (URL)' ),
326                                 'readonly'      => true,
327                                 'value'         => wp_login_url( )
328                         ),
329                         'admin_url'          => array(
330                                 'desc'          => __( 'The URL to the admin area' ),
331                                 'readonly'      => true,
332                                 'value'         => get_admin_url( )
333                         ),
334                         'image_default_link_type' => array(
335                                 'desc'          => __( 'Image default link type' ),
336                                 'readonly'      => true,
337                                 'option'        => 'image_default_link_type'
338                         ),
339                         'image_default_size' => array(
340                                 'desc'          => __( 'Image default size' ),
341                                 'readonly'      => true,
342                                 'option'        => 'image_default_size'
343                         ),
344                         'image_default_align' => array(
345                                 'desc'          => __( 'Image default align' ),
346                                 'readonly'      => true,
347                                 'option'        => 'image_default_align'
348                         ),
349                         'template'          => array(
350                                 'desc'          => __( 'Template' ),
351                                 'readonly'      => true,
352                                 'option'        => 'template'
353                         ),
354                         'stylesheet'        => array(
355                                 'desc'          => __( 'Stylesheet' ),
356                                 'readonly'      => true,
357                                 'option'        => 'stylesheet'
358                         ),
359                         'post_thumbnail'    => array(
360                                 'desc'          => __('Post Thumbnail'),
361                                 'readonly'      => true,
362                                 'value'         => current_theme_supports( 'post-thumbnails' )
363                         ),
364
365                         // Updatable options
366                         'time_zone'         => array(
367                                 'desc'          => __( 'Time Zone' ),
368                                 'readonly'      => false,
369                                 'option'        => 'gmt_offset'
370                         ),
371                         'blog_title'        => array(
372                                 'desc'          => __( 'Site Title' ),
373                                 'readonly'      => false,
374                                 'option'        => 'blogname'
375                         ),
376                         'blog_tagline'      => array(
377                                 'desc'          => __( 'Site Tagline' ),
378                                 'readonly'      => false,
379                                 'option'        => 'blogdescription'
380                         ),
381                         'date_format'       => array(
382                                 'desc'          => __( 'Date Format' ),
383                                 'readonly'      => false,
384                                 'option'        => 'date_format'
385                         ),
386                         'time_format'       => array(
387                                 'desc'          => __( 'Time Format' ),
388                                 'readonly'      => false,
389                                 'option'        => 'time_format'
390                         ),
391                         'users_can_register' => array(
392                                 'desc'          => __( 'Allow new users to sign up' ),
393                                 'readonly'      => false,
394                                 'option'        => 'users_can_register'
395                         ),
396                         'thumbnail_size_w'  => array(
397                                 'desc'          => __( 'Thumbnail Width' ),
398                                 'readonly'      => false,
399                                 'option'        => 'thumbnail_size_w'
400                         ),
401                         'thumbnail_size_h'  => array(
402                                 'desc'          => __( 'Thumbnail Height' ),
403                                 'readonly'      => false,
404                                 'option'        => 'thumbnail_size_h'
405                         ),
406                         'thumbnail_crop'    => array(
407                                 'desc'          => __( 'Crop thumbnail to exact dimensions' ),
408                                 'readonly'      => false,
409                                 'option'        => 'thumbnail_crop'
410                         ),
411                         'medium_size_w'     => array(
412                                 'desc'          => __( 'Medium size image width' ),
413                                 'readonly'      => false,
414                                 'option'        => 'medium_size_w'
415                         ),
416                         'medium_size_h'     => array(
417                                 'desc'          => __( 'Medium size image height' ),
418                                 'readonly'      => false,
419                                 'option'        => 'medium_size_h'
420                         ),
421                         'large_size_w'      => array(
422                                 'desc'          => __( 'Large size image width' ),
423                                 'readonly'      => false,
424                                 'option'        => 'large_size_w'
425                         ),
426                         'large_size_h'      => array(
427                                 'desc'          => __( 'Large size image height' ),
428                                 'readonly'      => false,
429                                 'option'        => 'large_size_h'
430                         ),
431                         'default_comment_status' => array(
432                                 'desc'          => __( 'Allow people to post comments on new articles' ),
433                                 'readonly'      => false,
434                                 'option'        => 'default_comment_status'
435                         ),
436                         'default_ping_status' => array(
437                                 'desc'          => __( 'Allow link notifications from other blogs (pingbacks and trackbacks)' ),
438                                 'readonly'      => false,
439                                 'option'        => 'default_ping_status'
440                         )
441                 );
442
443                 $this->blog_options = apply_filters( 'xmlrpc_blog_options', $this->blog_options );
444         }
445
446         /**
447          * Retrieve the blogs of the user.
448          *
449          * @since 2.6.0
450          *
451          * @param array $args Method parameters. Contains:
452          *  - username
453          *  - password
454          * @return array. Contains:
455          *  - 'isAdmin'
456          *  - 'url'
457          *  - 'blogid'
458          *  - 'blogName'
459          *  - 'xmlrpc' - url of xmlrpc endpoint
460          */
461         function wp_getUsersBlogs( $args ) {
462                 global $current_site;
463                 // If this isn't on WPMU then just use blogger_getUsersBlogs
464                 if ( !is_multisite() ) {
465                         array_unshift( $args, 1 );
466                         return $this->blogger_getUsersBlogs( $args );
467                 }
468
469                 $this->escape( $args );
470
471                 $username = $args[0];
472                 $password = $args[1];
473
474                 if ( !$user = $this->login($username, $password) )
475                         return $this->error;
476
477                 do_action( 'xmlrpc_call', 'wp.getUsersBlogs' );
478
479                 $blogs = (array) get_blogs_of_user( $user->ID );
480                 $struct = array();
481
482                 foreach ( $blogs as $blog ) {
483                         // Don't include blogs that aren't hosted at this site
484                         if ( $blog->site_id != $current_site->id )
485                                 continue;
486
487                         $blog_id = $blog->userblog_id;
488
489                         switch_to_blog( $blog_id );
490
491                         $is_admin = current_user_can( 'manage_options' );
492
493                         $struct[] = array(
494                                 'isAdmin'               => $is_admin,
495                                 'url'                   => home_url( '/' ),
496                                 'blogid'                => (string) $blog_id,
497                                 'blogName'              => get_option( 'blogname' ),
498                                 'xmlrpc'                => site_url( 'xmlrpc.php', 'rpc' ),
499                         );
500
501                         restore_current_blog();
502                 }
503
504                 return $struct;
505         }
506
507         /**
508          * Checks if the method received at least the minimum number of arguments.
509          *
510          * @since 3.4.0
511          *
512          * @param string|array $args Sanitize single string or array of strings.
513          * @param int $count Minimum number of arguments.
514          * @return boolean if $args contains at least $count arguments.
515          */
516         protected function minimum_args( $args, $count ) {
517                 if ( count( $args ) < $count ) {
518                         $this->error = new IXR_Error( 400, __( 'Insufficient arguments passed to this XML-RPC method.' ) );
519                         return false;
520                 }
521
522                 return true;
523         }
524
525         /**
526          * Prepares taxonomy data for return in an XML-RPC object.
527          *
528          * @access protected
529          *
530          * @param object $taxonomy The unprepared taxonomy data
531          * @param array $fields The subset of taxonomy fields to return
532          * @return array The prepared taxonomy data
533          */
534         protected function _prepare_taxonomy( $taxonomy, $fields ) {
535                 $_taxonomy = array(
536                         'name' => $taxonomy->name,
537                         'label' => $taxonomy->label,
538                         'hierarchical' => (bool) $taxonomy->hierarchical,
539                         'public' => (bool) $taxonomy->public,
540                         'show_ui' => (bool) $taxonomy->show_ui,
541                         '_builtin' => (bool) $taxonomy->_builtin,
542                 );
543
544                 if ( in_array( 'labels', $fields ) )
545                         $_taxonomy['labels'] = (array) $taxonomy->labels;
546
547                 if ( in_array( 'cap', $fields ) )
548                         $_taxonomy['cap'] = (array) $taxonomy->cap;
549
550                 if ( in_array( 'menu', $fields ) )
551                         $_taxonomy['show_in_menu'] = (bool) $_taxonomy->show_in_menu;
552
553                 if ( in_array( 'object_type', $fields ) )
554                         $_taxonomy['object_type'] = array_unique( (array) $taxonomy->object_type );
555
556                 return apply_filters( 'xmlrpc_prepare_taxonomy', $_taxonomy, $taxonomy, $fields );
557         }
558
559         /**
560          * Prepares term data for return in an XML-RPC object.
561          *
562          * @access protected
563          *
564          * @param array|object $term The unprepared term data
565          * @return array The prepared term data
566          */
567         protected function _prepare_term( $term ) {
568                 $_term = $term;
569                 if ( ! is_array( $_term) )
570                         $_term = get_object_vars( $_term );
571
572                 // For integers which may be larger than XML-RPC supports ensure we return strings.
573                 $_term['term_id'] = strval( $_term['term_id'] );
574                 $_term['term_group'] = strval( $_term['term_group'] );
575                 $_term['term_taxonomy_id'] = strval( $_term['term_taxonomy_id'] );
576                 $_term['parent'] = strval( $_term['parent'] );
577
578                 // Count we are happy to return as an integer because people really shouldn't use terms that much.
579                 $_term['count'] = intval( $_term['count'] );
580
581                 return apply_filters( 'xmlrpc_prepare_term', $_term, $term );
582         }
583
584         /**
585          * Convert a WordPress date string to an IXR_Date object.
586          *
587          * @access protected
588          *
589          * @param string $date
590          * @return IXR_Date
591          */
592         protected function _convert_date( $date ) {
593                 if ( $date === '0000-00-00 00:00:00' ) {
594                         return new IXR_Date( '00000000T00:00:00Z' );
595                 }
596                 return new IXR_Date( mysql2date( 'Ymd\TH:i:s', $date, false ) );
597         }
598
599         /**
600          * Convert a WordPress GMT date string to an IXR_Date object.
601          *
602          * @access protected
603          *
604          * @param string $date_gmt
605          * @param string $date
606          * @return IXR_Date
607          */
608         protected function _convert_date_gmt( $date_gmt, $date ) {
609                 if ( $date !== '0000-00-00 00:00:00' && $date_gmt === '0000-00-00 00:00:00' ) {
610                         return new IXR_Date( get_gmt_from_date( mysql2date( 'Y-m-d H:i:s', $date, false ), 'Ymd\TH:i:s' ) );
611                 }
612                 return $this->_convert_date( $date_gmt );
613         }
614
615         /**
616          * Prepares post data for return in an XML-RPC object.
617          *
618          * @access protected
619          *
620          * @param array $post The unprepared post data
621          * @param array $fields The subset of post type fields to return
622          * @return array The prepared post data
623          */
624         protected function _prepare_post( $post, $fields ) {
625                 // holds the data for this post. built up based on $fields
626                 $_post = array( 'post_id' => strval( $post['ID'] ) );
627
628                 // prepare common post fields
629                 $post_fields = array(
630                         'post_title'        => $post['post_title'],
631                         'post_date'         => $this->_convert_date( $post['post_date'] ),
632                         'post_date_gmt'     => $this->_convert_date_gmt( $post['post_date_gmt'], $post['post_date'] ),
633                         'post_modified'     => $this->_convert_date( $post['post_modified'] ),
634                         'post_modified_gmt' => $this->_convert_date_gmt( $post['post_modified_gmt'], $post['post_modified'] ),
635                         'post_status'       => $post['post_status'],
636                         'post_type'         => $post['post_type'],
637                         'post_name'         => $post['post_name'],
638                         'post_author'       => $post['post_author'],
639                         'post_password'     => $post['post_password'],
640                         'post_excerpt'      => $post['post_excerpt'],
641                         'post_content'      => $post['post_content'],
642                         'post_parent'       => strval( $post['post_parent'] ),
643                         'post_mime_type'    => $post['post_mime_type'],
644                         'link'              => post_permalink( $post['ID'] ),
645                         'guid'              => $post['guid'],
646                         'menu_order'        => intval( $post['menu_order'] ),
647                         'comment_status'    => $post['comment_status'],
648                         'ping_status'       => $post['ping_status'],
649                         'sticky'            => ( $post['post_type'] === 'post' && is_sticky( $post['ID'] ) ),
650                 );
651
652                 // Thumbnail
653                 $post_fields['post_thumbnail'] = array();
654                 $thumbnail_id = get_post_thumbnail_id( $post['ID'] );
655                 if ( $thumbnail_id ) {
656                         $thumbnail_size = current_theme_supports('post-thumbnail') ? 'post-thumbnail' : 'thumbnail';
657                         $post_fields['post_thumbnail'] = $this->_prepare_media_item( get_post( $thumbnail_id ), $thumbnail_size );
658                 }
659
660                 // Consider future posts as published
661                 if ( $post_fields['post_status'] === 'future' )
662                         $post_fields['post_status'] = 'publish';
663
664                 // Fill in blank post format
665                 $post_fields['post_format'] = get_post_format( $post['ID'] );
666                 if ( empty( $post_fields['post_format'] ) )
667                         $post_fields['post_format'] = 'standard';
668
669                 // Merge requested $post_fields fields into $_post
670                 if ( in_array( 'post', $fields ) ) {
671                         $_post = array_merge( $_post, $post_fields );
672                 } else {
673                         $requested_fields = array_intersect_key( $post_fields, array_flip( $fields ) );
674                         $_post = array_merge( $_post, $requested_fields );
675                 }
676
677                 $all_taxonomy_fields = in_array( 'taxonomies', $fields );
678
679                 if ( $all_taxonomy_fields || in_array( 'terms', $fields ) ) {
680                         $post_type_taxonomies = get_object_taxonomies( $post['post_type'], 'names' );
681                         $terms = wp_get_object_terms( $post['ID'], $post_type_taxonomies );
682                         $_post['terms'] = array();
683                         foreach ( $terms as $term ) {
684                                 $_post['terms'][] = $this->_prepare_term( $term );
685                         }
686                 }
687
688                 if ( in_array( 'custom_fields', $fields ) )
689                         $_post['custom_fields'] = $this->get_custom_fields( $post['ID'] );
690
691                 if ( in_array( 'enclosure', $fields ) ) {
692                         $_post['enclosure'] = array();
693                         $enclosures = (array) get_post_meta( $post['ID'], 'enclosure' );
694                         if ( ! empty( $enclosures ) ) {
695                                 $encdata = explode( "\n", $enclosures[0] );
696                                 $_post['enclosure']['url'] = trim( htmlspecialchars( $encdata[0] ) );
697                                 $_post['enclosure']['length'] = (int) trim( $encdata[1] );
698                                 $_post['enclosure']['type'] = trim( $encdata[2] );
699                         }
700                 }
701
702                 return apply_filters( 'xmlrpc_prepare_post', $_post, $post, $fields );
703         }
704
705         /**
706          * Prepares post data for return in an XML-RPC object.
707          *
708          * @access protected
709          *
710          * @param object $post_type Post type object
711          * @param array $fields The subset of post fields to return
712          * @return array The prepared post type data
713          */
714         protected function _prepare_post_type( $post_type, $fields ) {
715                 $_post_type = array(
716                         'name' => $post_type->name,
717                         'label' => $post_type->label,
718                         'hierarchical' => (bool) $post_type->hierarchical,
719                         'public' => (bool) $post_type->public,
720                         'show_ui' => (bool) $post_type->show_ui,
721                         '_builtin' => (bool) $post_type->_builtin,
722                         'has_archive' => (bool) $post_type->has_archive,
723                         'supports' => get_all_post_type_supports( $post_type->name ),
724                 );
725
726                 if ( in_array( 'labels', $fields ) ) {
727                         $_post_type['labels'] = (array) $post_type->labels;
728                 }
729
730                 if ( in_array( 'cap', $fields ) ) {
731                         $_post_type['cap'] = (array) $post_type->cap;
732                         $_post_type['map_meta_cap'] = (bool) $post_type->map_meta_cap;
733                 }
734
735                 if ( in_array( 'menu', $fields ) ) {
736                         $_post_type['menu_position'] = (int) $post_type->menu_position;
737                         $_post_type['menu_icon'] = $post_type->menu_icon;
738                         $_post_type['show_in_menu'] = (bool) $post_type->show_in_menu;
739                 }
740
741                 if ( in_array( 'taxonomies', $fields ) )
742                         $_post_type['taxonomies'] = get_object_taxonomies( $post_type->name, 'names' );
743
744                 return apply_filters( 'xmlrpc_prepare_post_type', $_post_type, $post_type );
745         }
746
747         /**
748          * Prepares media item data for return in an XML-RPC object.
749          *
750          * @access protected
751          *
752          * @param object $media_item The unprepared media item data
753          * @param string $thumbnail_size The image size to use for the thumbnail URL
754          * @return array The prepared media item data
755          */
756         protected function _prepare_media_item( $media_item, $thumbnail_size = 'thumbnail' ) {
757                 $_media_item = array(
758                         'attachment_id'    => strval( $media_item->ID ),
759                         'date_created_gmt' => $this->_convert_date_gmt( $media_item->post_date_gmt, $media_item->post_date ),
760                         'parent'           => $media_item->post_parent,
761                         'link'             => wp_get_attachment_url( $media_item->ID ),
762                         'title'            => $media_item->post_title,
763                         'caption'          => $media_item->post_excerpt,
764                         'description'      => $media_item->post_content,
765                         'metadata'         => wp_get_attachment_metadata( $media_item->ID ),
766                 );
767
768                 $thumbnail_src = image_downsize( $media_item->ID, $thumbnail_size );
769                 if ( $thumbnail_src )
770                         $_media_item['thumbnail'] = $thumbnail_src[0];
771                 else
772                         $_media_item['thumbnail'] = $_media_item['link'];
773
774                 return apply_filters( 'xmlrpc_prepare_media_item', $_media_item, $media_item, $thumbnail_size );
775         }
776
777         /**
778          * Prepares page data for return in an XML-RPC object.
779          *
780          * @access protected
781          *
782          * @param object $page The unprepared page data
783          * @return array The prepared page data
784          */
785         protected function _prepare_page( $page ) {
786                 // Get all of the page content and link.
787                 $full_page = get_extended( $page->post_content );
788                 $link = post_permalink( $page->ID );
789
790                 // Get info the page parent if there is one.
791                 $parent_title = "";
792                 if ( ! empty( $page->post_parent ) ) {
793                         $parent = get_post( $page->post_parent );
794                         $parent_title = $parent->post_title;
795                 }
796
797                 // Determine comment and ping settings.
798                 $allow_comments = comments_open( $page->ID ) ? 1 : 0;
799                 $allow_pings = pings_open( $page->ID ) ? 1 : 0;
800
801                 // Format page date.
802                 $page_date = $this->_convert_date( $page->post_date );
803                 $page_date_gmt = $this->_convert_date_gmt( $page->post_date_gmt, $page->post_date );
804
805                 // Pull the categories info together.
806                 $categories = array();
807                 foreach ( wp_get_post_categories( $page->ID ) as $cat_id ) {
808                         $categories[] = get_cat_name( $cat_id );
809                 }
810
811                 // Get the author info.
812                 $author = get_userdata( $page->post_author );
813
814                 $page_template = get_page_template_slug( $page->ID );
815                 if ( empty( $page_template ) )
816                         $page_template = 'default';
817
818                 $_page = array(
819                         'dateCreated'            => $page_date,
820                         'userid'                 => $page->post_author,
821                         'page_id'                => $page->ID,
822                         'page_status'            => $page->post_status,
823                         'description'            => $full_page['main'],
824                         'title'                  => $page->post_title,
825                         'link'                   => $link,
826                         'permaLink'              => $link,
827                         'categories'             => $categories,
828                         'excerpt'                => $page->post_excerpt,
829                         'text_more'              => $full_page['extended'],
830                         'mt_allow_comments'      => $allow_comments,
831                         'mt_allow_pings'         => $allow_pings,
832                         'wp_slug'                => $page->post_name,
833                         'wp_password'            => $page->post_password,
834                         'wp_author'              => $author->display_name,
835                         'wp_page_parent_id'      => $page->post_parent,
836                         'wp_page_parent_title'   => $parent_title,
837                         'wp_page_order'          => $page->menu_order,
838                         'wp_author_id'           => (string) $author->ID,
839                         'wp_author_display_name' => $author->display_name,
840                         'date_created_gmt'       => $page_date_gmt,
841                         'custom_fields'          => $this->get_custom_fields( $page->ID ),
842                         'wp_page_template'       => $page_template
843                 );
844
845                 return apply_filters( 'xmlrpc_prepare_page', $_page, $page );
846         }
847
848         /**
849          * Prepares comment data for return in an XML-RPC object.
850          *
851          * @access protected
852          *
853          * @param object $comment The unprepared comment data
854          * @return array The prepared comment data
855          */
856         protected function _prepare_comment( $comment ) {
857                 // Format page date.
858                 $comment_date = $this->_convert_date( $comment->comment_date );
859                 $comment_date_gmt = $this->_convert_date_gmt( $comment->comment_date_gmt, $comment->comment_date );
860
861                 if ( '0' == $comment->comment_approved )
862                         $comment_status = 'hold';
863                 else if ( 'spam' == $comment->comment_approved )
864                         $comment_status = 'spam';
865                 else if ( '1' == $comment->comment_approved )
866                         $comment_status = 'approve';
867                 else
868                         $comment_status = $comment->comment_approved;
869
870                 $_comment = array(
871                         'date_created_gmt' => $comment_date_gmt,
872                         'user_id'          => $comment->user_id,
873                         'comment_id'       => $comment->comment_ID,
874                         'parent'           => $comment->comment_parent,
875                         'status'           => $comment_status,
876                         'content'          => $comment->comment_content,
877                         'link'             => get_comment_link($comment),
878                         'post_id'          => $comment->comment_post_ID,
879                         'post_title'       => get_the_title($comment->comment_post_ID),
880                         'author'           => $comment->comment_author,
881                         'author_url'       => $comment->comment_author_url,
882                         'author_email'     => $comment->comment_author_email,
883                         'author_ip'        => $comment->comment_author_IP,
884                         'type'             => $comment->comment_type,
885                 );
886
887                 return apply_filters( 'xmlrpc_prepare_comment', $_comment, $comment );
888         }
889
890         /**
891          * Prepares user data for return in an XML-RPC object.
892          *
893          * @access protected
894          *
895          * @param WP_User $user The unprepared user object
896          * @param array $fields The subset of user fields to return
897          * @return array The prepared user data
898          */
899         protected function _prepare_user( $user, $fields ) {
900                 $_user = array( 'user_id' => strval( $user->ID ) );
901
902                 $user_fields = array(
903                         'username'          => $user->user_login,
904                         'first_name'        => $user->user_firstname,
905                         'last_name'         => $user->user_lastname,
906                         'registered'        => $this->_convert_date( $user->user_registered ),
907                         'bio'               => $user->user_description,
908                         'email'             => $user->user_email,
909                         'nickname'          => $user->nickname,
910                         'nicename'          => $user->user_nicename,
911                         'url'               => $user->user_url,
912                         'display_name'      => $user->display_name,
913                         'roles'             => $user->roles,
914                 );
915
916                 if ( in_array( 'all', $fields ) ) {
917                         $_user = array_merge( $_user, $user_fields );
918                 } else {
919                         if ( in_array( 'basic', $fields ) ) {
920                                 $basic_fields = array( 'username', 'email', 'registered', 'display_name', 'nicename' );
921                                 $fields = array_merge( $fields, $basic_fields );
922                         }
923                         $requested_fields = array_intersect_key( $user_fields, array_flip( $fields ) );
924                         $_user = array_merge( $_user, $requested_fields );
925                 }
926
927                 return apply_filters( 'xmlrpc_prepare_user', $_user, $user, $fields );
928         }
929
930         /**
931          * Create a new post for any registered post type.
932          *
933          * @since 3.4.0
934          *
935          * @param array $args Method parameters. Contains:
936          *  - int     $blog_id
937          *  - string  $username
938          *  - string  $password
939          *  - array   $content_struct
940          *      $content_struct can contain:
941          *      - post_type (default: 'post')
942          *      - post_status (default: 'draft')
943          *      - post_title
944          *      - post_author
945          *      - post_excerpt
946          *      - post_content
947          *      - post_date_gmt | post_date
948          *      - post_format
949          *      - post_password
950          *      - comment_status - can be 'open' | 'closed'
951          *      - ping_status - can be 'open' | 'closed'
952          *      - sticky
953          *      - post_thumbnail - ID of a media item to use as the post thumbnail/featured image
954          *      - custom_fields - array, with each element containing 'key' and 'value'
955          *      - terms - array, with taxonomy names as keys and arrays of term IDs as values
956          *      - terms_names - array, with taxonomy names as keys and arrays of term names as values
957          *      - enclosure
958          *      - any other fields supported by wp_insert_post()
959          * @return string post_id
960          */
961         function wp_newPost( $args ) {
962                 if ( ! $this->minimum_args( $args, 4 ) )
963                         return $this->error;
964
965                 $this->escape( $args );
966
967                 $blog_id        = (int) $args[0];
968                 $username       = $args[1];
969                 $password       = $args[2];
970                 $content_struct = $args[3];
971
972                 if ( ! $user = $this->login( $username, $password ) )
973                         return $this->error;
974
975                 do_action( 'xmlrpc_call', 'wp.newPost' );
976
977                 unset( $content_struct['ID'] );
978
979                 return $this->_insert_post( $user, $content_struct );
980         }
981
982         /**
983          * Helper method for filtering out elements from an array.
984          *
985          * @since 3.4.0
986          *
987          * @param int $count Number to compare to one.
988          */
989         private function _is_greater_than_one( $count ) {
990                 return $count > 1;
991         }
992
993         /**
994          * Helper method for wp_newPost and wp_editPost, containing shared logic.
995          *
996          * @since 3.4.0
997          * @uses wp_insert_post()
998          *
999          * @param WP_User $user The post author if post_author isn't set in $content_struct.
1000          * @param array $content_struct Post data to insert.
1001          */
1002         protected function _insert_post( $user, $content_struct ) {
1003                 $defaults = array( 'post_status' => 'draft', 'post_type' => 'post', 'post_author' => 0,
1004                         'post_password' => '', 'post_excerpt' => '', 'post_content' => '', 'post_title' => '' );
1005
1006                 $post_data = wp_parse_args( $content_struct, $defaults );
1007
1008                 $post_type = get_post_type_object( $post_data['post_type'] );
1009                 if ( ! $post_type )
1010                         return new IXR_Error( 403, __( 'Invalid post type' ) );
1011
1012                 $update = ! empty( $post_data['ID'] );
1013
1014                 if ( $update ) {
1015                         if ( ! get_post( $post_data['ID'] ) )
1016                                 return new IXR_Error( 401, __( 'Invalid post ID.' ) );
1017                         if ( ! current_user_can( 'edit_post', $post_data['ID'] ) )
1018                                 return new IXR_Error( 401, __( 'Sorry, you are not allowed to edit this post.' ) );
1019                         if ( $post_data['post_type'] != get_post_type( $post_data['ID'] ) )
1020                                 return new IXR_Error( 401, __( 'The post type may not be changed.' ) );
1021                 } else {
1022                         if ( ! current_user_can( $post_type->cap->create_posts ) || ! current_user_can( $post_type->cap->edit_posts ) )
1023                                 return new IXR_Error( 401, __( 'Sorry, you are not allowed to post on this site.' ) );
1024                 }
1025
1026                 switch ( $post_data['post_status'] ) {
1027                         case 'draft':
1028                         case 'pending':
1029                                 break;
1030                         case 'private':
1031                                 if ( ! current_user_can( $post_type->cap->publish_posts ) )
1032                                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to create private posts in this post type' ) );
1033                                 break;
1034                         case 'publish':
1035                         case 'future':
1036                                 if ( ! current_user_can( $post_type->cap->publish_posts ) )
1037                                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to publish posts in this post type' ) );
1038                                 break;
1039                         default:
1040                                 if ( ! get_post_status_object( $post_data['post_status'] ) )
1041                                         $post_data['post_status'] = 'draft';
1042                         break;
1043                 }
1044
1045                 if ( ! empty( $post_data['post_password'] ) && ! current_user_can( $post_type->cap->publish_posts ) )
1046                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to create password protected posts in this post type' ) );
1047
1048                 $post_data['post_author'] = absint( $post_data['post_author'] );
1049                 if ( ! empty( $post_data['post_author'] ) && $post_data['post_author'] != $user->ID ) {
1050                         if ( ! current_user_can( $post_type->cap->edit_others_posts ) )
1051                                 return new IXR_Error( 401, __( 'You are not allowed to create posts as this user.' ) );
1052
1053                         $author = get_userdata( $post_data['post_author'] );
1054
1055                         if ( ! $author )
1056                                 return new IXR_Error( 404, __( 'Invalid author ID.' ) );
1057                 } else {
1058                         $post_data['post_author'] = $user->ID;
1059                 }
1060
1061                 if ( isset( $post_data['comment_status'] ) && $post_data['comment_status'] != 'open' && $post_data['comment_status'] != 'closed' )
1062                         unset( $post_data['comment_status'] );
1063
1064                 if ( isset( $post_data['ping_status'] ) && $post_data['ping_status'] != 'open' && $post_data['ping_status'] != 'closed' )
1065                         unset( $post_data['ping_status'] );
1066
1067                 // Do some timestamp voodoo
1068                 if ( ! empty( $post_data['post_date_gmt'] ) ) {
1069                         // We know this is supposed to be GMT, so we're going to slap that Z on there by force
1070                         $dateCreated = rtrim( $post_data['post_date_gmt']->getIso(), 'Z' ) . 'Z';
1071                 } elseif ( ! empty( $post_data['post_date'] ) ) {
1072                         $dateCreated = $post_data['post_date']->getIso();
1073                 }
1074
1075                 if ( ! empty( $dateCreated ) ) {
1076                         $post_data['post_date'] = get_date_from_gmt( iso8601_to_datetime( $dateCreated ) );
1077                         $post_data['post_date_gmt'] = iso8601_to_datetime( $dateCreated, 'GMT' );
1078                 }
1079
1080                 if ( ! isset( $post_data['ID'] ) )
1081                         $post_data['ID'] = get_default_post_to_edit( $post_data['post_type'], true )->ID;
1082                 $post_ID = $post_data['ID'];
1083
1084                 if ( $post_data['post_type'] == 'post' ) {
1085                         // Private and password-protected posts cannot be stickied.
1086                         if ( $post_data['post_status'] == 'private' || ! empty( $post_data['post_password'] ) ) {
1087                                 // Error if the client tried to stick the post, otherwise, silently unstick.
1088                                 if ( ! empty( $post_data['sticky'] ) )
1089                                         return new IXR_Error( 401, __( 'Sorry, you cannot stick a private post.' ) );
1090                                 if ( $update )
1091                                         unstick_post( $post_ID );
1092                         } elseif ( isset( $post_data['sticky'] ) )  {
1093                                 if ( ! current_user_can( $post_type->cap->edit_others_posts ) )
1094                                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to stick this post.' ) );
1095                                 if ( $post_data['sticky'] )
1096                                         stick_post( $post_ID );
1097                                 else
1098                                         unstick_post( $post_ID );
1099                         }
1100                 }
1101
1102                 if ( isset( $post_data['post_thumbnail'] ) ) {
1103                         // empty value deletes, non-empty value adds/updates
1104                         if ( ! $post_data['post_thumbnail'] )
1105                                 delete_post_thumbnail( $post_ID );
1106                         elseif ( ! get_post( absint( $post_data['post_thumbnail'] ) ) )
1107                                 return new IXR_Error( 404, __( 'Invalid attachment ID.' ) );
1108                         set_post_thumbnail( $post_ID, $post_data['post_thumbnail'] );
1109                         unset( $content_struct['post_thumbnail'] );
1110                 }
1111
1112                 if ( isset( $post_data['custom_fields'] ) )
1113                         $this->set_custom_fields( $post_ID, $post_data['custom_fields'] );
1114
1115                 if ( isset( $post_data['terms'] ) || isset( $post_data['terms_names'] ) ) {
1116                         $post_type_taxonomies = get_object_taxonomies( $post_data['post_type'], 'objects' );
1117
1118                         // accumulate term IDs from terms and terms_names
1119                         $terms = array();
1120
1121                         // first validate the terms specified by ID
1122                         if ( isset( $post_data['terms'] ) && is_array( $post_data['terms'] ) ) {
1123                                 $taxonomies = array_keys( $post_data['terms'] );
1124
1125                                 // validating term ids
1126                                 foreach ( $taxonomies as $taxonomy ) {
1127                                         if ( ! array_key_exists( $taxonomy , $post_type_taxonomies ) )
1128                                                 return new IXR_Error( 401, __( 'Sorry, one of the given taxonomies is not supported by the post type.' ) );
1129
1130                                         if ( ! current_user_can( $post_type_taxonomies[$taxonomy]->cap->assign_terms ) )
1131                                                 return new IXR_Error( 401, __( 'Sorry, you are not allowed to assign a term to one of the given taxonomies.' ) );
1132
1133                                         $term_ids = $post_data['terms'][$taxonomy];
1134                                         foreach ( $term_ids as $term_id ) {
1135                                                 $term = get_term_by( 'id', $term_id, $taxonomy );
1136
1137                                                 if ( ! $term )
1138                                                         return new IXR_Error( 403, __( 'Invalid term ID' ) );
1139
1140                                                 $terms[$taxonomy][] = (int) $term_id;
1141                                         }
1142                                 }
1143                         }
1144
1145                         // now validate terms specified by name
1146                         if ( isset( $post_data['terms_names'] ) && is_array( $post_data['terms_names'] ) ) {
1147                                 $taxonomies = array_keys( $post_data['terms_names'] );
1148
1149                                 foreach ( $taxonomies as $taxonomy ) {
1150                                         if ( ! array_key_exists( $taxonomy , $post_type_taxonomies ) )
1151                                                 return new IXR_Error( 401, __( 'Sorry, one of the given taxonomies is not supported by the post type.' ) );
1152
1153                                         if ( ! current_user_can( $post_type_taxonomies[$taxonomy]->cap->assign_terms ) )
1154                                                 return new IXR_Error( 401, __( 'Sorry, you are not allowed to assign a term to one of the given taxonomies.' ) );
1155
1156                                         // for hierarchical taxonomies, we can't assign a term when multiple terms in the hierarchy share the same name
1157                                         $ambiguous_terms = array();
1158                                         if ( is_taxonomy_hierarchical( $taxonomy ) ) {
1159                                                 $tax_term_names = get_terms( $taxonomy, array( 'fields' => 'names', 'hide_empty' => false ) );
1160
1161                                                 // count the number of terms with the same name
1162                                                 $tax_term_names_count = array_count_values( $tax_term_names );
1163
1164                                                 // filter out non-ambiguous term names
1165                                                 $ambiguous_tax_term_counts = array_filter( $tax_term_names_count, array( $this, '_is_greater_than_one') );
1166
1167                                                 $ambiguous_terms = array_keys( $ambiguous_tax_term_counts );
1168                                         }
1169
1170                                         $term_names = $post_data['terms_names'][$taxonomy];
1171                                         foreach ( $term_names as $term_name ) {
1172                                                 if ( in_array( $term_name, $ambiguous_terms ) )
1173                                                         return new IXR_Error( 401, __( 'Ambiguous term name used in a hierarchical taxonomy. Please use term ID instead.' ) );
1174
1175                                                 $term = get_term_by( 'name', $term_name, $taxonomy );
1176
1177                                                 if ( ! $term ) {
1178                                                         // term doesn't exist, so check that the user is allowed to create new terms
1179                                                         if ( ! current_user_can( $post_type_taxonomies[$taxonomy]->cap->edit_terms ) )
1180                                                                 return new IXR_Error( 401, __( 'Sorry, you are not allowed to add a term to one of the given taxonomies.' ) );
1181
1182                                                         // create the new term
1183                                                         $term_info = wp_insert_term( $term_name, $taxonomy );
1184                                                         if ( is_wp_error( $term_info ) )
1185                                                                 return new IXR_Error( 500, $term_info->get_error_message() );
1186
1187                                                         $terms[$taxonomy][] = (int) $term_info['term_id'];
1188                                                 } else {
1189                                                         $terms[$taxonomy][] = (int) $term->term_id;
1190                                                 }
1191                                         }
1192                                 }
1193                         }
1194
1195                         $post_data['tax_input'] = $terms;
1196                         unset( $post_data['terms'], $post_data['terms_names'] );
1197                 } else {
1198                         // do not allow direct submission of 'tax_input', clients must use 'terms' and/or 'terms_names'
1199                         unset( $post_data['tax_input'], $post_data['post_category'], $post_data['tags_input'] );
1200                 }
1201
1202                 if ( isset( $post_data['post_format'] ) ) {
1203                         $format = set_post_format( $post_ID, $post_data['post_format'] );
1204
1205                         if ( is_wp_error( $format ) )
1206                                 return new IXR_Error( 500, $format->get_error_message() );
1207
1208                         unset( $post_data['post_format'] );
1209                 }
1210
1211                 // Handle enclosures
1212                 $enclosure = isset( $post_data['enclosure'] ) ? $post_data['enclosure'] : null;
1213                 $this->add_enclosure_if_new( $post_ID, $enclosure );
1214
1215                 $this->attach_uploads( $post_ID, $post_data['post_content'] );
1216
1217                 $post_data = apply_filters( 'xmlrpc_wp_insert_post_data', $post_data, $content_struct );
1218
1219                 $post_ID = $update ? wp_update_post( $post_data, true ) : wp_insert_post( $post_data, true );
1220                 if ( is_wp_error( $post_ID ) )
1221                         return new IXR_Error( 500, $post_ID->get_error_message() );
1222
1223                 if ( ! $post_ID )
1224                         return new IXR_Error( 401, __( 'Sorry, your entry could not be posted. Something wrong happened.' ) );
1225
1226                 return strval( $post_ID );
1227         }
1228
1229         /**
1230          * Edit a post for any registered post type.
1231          *
1232          * The $content_struct parameter only needs to contain fields that
1233          * should be changed. All other fields will retain their existing values.
1234          *
1235          * @since 3.4.0
1236          *
1237          * @param array $args Method parameters. Contains:
1238          *  - int     $blog_id
1239          *  - string  $username
1240          *  - string  $password
1241          *  - int     $post_id
1242          *  - array   $content_struct
1243          * @return true on success
1244          */
1245         function wp_editPost( $args ) {
1246                 if ( ! $this->minimum_args( $args, 5 ) )
1247                         return $this->error;
1248
1249                 $this->escape( $args );
1250
1251                 $blog_id        = (int) $args[0];
1252                 $username       = $args[1];
1253                 $password       = $args[2];
1254                 $post_id        = (int) $args[3];
1255                 $content_struct = $args[4];
1256
1257                 if ( ! $user = $this->login( $username, $password ) )
1258                         return $this->error;
1259
1260                 do_action( 'xmlrpc_call', 'wp.editPost' );
1261
1262                 $post = get_post( $post_id, ARRAY_A );
1263
1264                 if ( empty( $post['ID'] ) )
1265                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
1266
1267                 if ( isset( $content_struct['if_not_modified_since'] ) ) {
1268                         // If the post has been modified since the date provided, return an error.
1269                         if ( mysql2date( 'U', $post['post_modified_gmt'] ) > $content_struct['if_not_modified_since']->getTimestamp() ) {
1270                                 return new IXR_Error( 409, __( 'There is a revision of this post that is more recent.' ) );
1271                         }
1272                 }
1273
1274                 // convert the date field back to IXR form
1275                 $post['post_date'] = $this->_convert_date( $post['post_date'] );
1276
1277                 // ignore the existing GMT date if it is empty or a non-GMT date was supplied in $content_struct,
1278                 // since _insert_post will ignore the non-GMT date if the GMT date is set
1279                 if ( $post['post_date_gmt'] == '0000-00-00 00:00:00' || isset( $content_struct['post_date'] ) )
1280                         unset( $post['post_date_gmt'] );
1281                 else
1282                         $post['post_date_gmt'] = $this->_convert_date( $post['post_date_gmt'] );
1283
1284                 $this->escape( $post );
1285                 $merged_content_struct = array_merge( $post, $content_struct );
1286
1287                 $retval = $this->_insert_post( $user, $merged_content_struct );
1288                 if ( $retval instanceof IXR_Error )
1289                         return $retval;
1290
1291                 return true;
1292         }
1293
1294         /**
1295          * Delete a post for any registered post type.
1296          *
1297          * @since 3.4.0
1298          *
1299          * @uses wp_delete_post()
1300          * @param array $args Method parameters. Contains:
1301          *  - int     $blog_id
1302          *  - string  $username
1303          *  - string  $password
1304          *  - int     $post_id
1305          * @return true on success
1306          */
1307         function wp_deletePost( $args ) {
1308                 if ( ! $this->minimum_args( $args, 4 ) )
1309                         return $this->error;
1310
1311                 $this->escape( $args );
1312
1313                 $blog_id    = (int) $args[0];
1314                 $username   = $args[1];
1315                 $password   = $args[2];
1316                 $post_id    = (int) $args[3];
1317
1318                 if ( ! $user = $this->login( $username, $password ) )
1319                         return $this->error;
1320
1321                 do_action( 'xmlrpc_call', 'wp.deletePost' );
1322
1323                 $post = get_post( $post_id, ARRAY_A );
1324                 if ( empty( $post['ID'] ) )
1325                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
1326
1327                 if ( ! current_user_can( 'delete_post', $post_id ) )
1328                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to delete this post.' ) );
1329
1330                 $result = wp_delete_post( $post_id );
1331
1332                 if ( ! $result )
1333                         return new IXR_Error( 500, __( 'The post cannot be deleted.' ) );
1334
1335                 return true;
1336         }
1337
1338         /**
1339          * Retrieve a post.
1340          *
1341          * @since 3.4.0
1342          *
1343          * The optional $fields parameter specifies what fields will be included
1344          * in the response array. This should be a list of field names. 'post_id' will
1345          * always be included in the response regardless of the value of $fields.
1346          *
1347          * Instead of, or in addition to, individual field names, conceptual group
1348          * names can be used to specify multiple fields. The available conceptual
1349          * groups are 'post' (all basic fields), 'taxonomies', 'custom_fields',
1350          * and 'enclosure'.
1351          *
1352          * @uses get_post()
1353          * @param array $args Method parameters. Contains:
1354          *  - int     $post_id
1355          *  - string  $username
1356          *  - string  $password
1357          *  - array   $fields optional
1358          * @return array contains (based on $fields parameter):
1359          *  - 'post_id'
1360          *  - 'post_title'
1361          *  - 'post_date'
1362          *  - 'post_date_gmt'
1363          *  - 'post_modified'
1364          *  - 'post_modified_gmt'
1365          *  - 'post_status'
1366          *  - 'post_type'
1367          *  - 'post_name'
1368          *  - 'post_author'
1369          *  - 'post_password'
1370          *  - 'post_excerpt'
1371          *  - 'post_content'
1372          *  - 'link'
1373          *  - 'comment_status'
1374          *  - 'ping_status'
1375          *  - 'sticky'
1376          *  - 'custom_fields'
1377          *  - 'terms'
1378          *  - 'categories'
1379          *  - 'tags'
1380          *  - 'enclosure'
1381          */
1382         function wp_getPost( $args ) {
1383                 if ( ! $this->minimum_args( $args, 4 ) )
1384                         return $this->error;
1385
1386                 $this->escape( $args );
1387
1388                 $blog_id            = (int) $args[0];
1389                 $username           = $args[1];
1390                 $password           = $args[2];
1391                 $post_id            = (int) $args[3];
1392
1393                 if ( isset( $args[4] ) )
1394                         $fields = $args[4];
1395                 else
1396                         $fields = apply_filters( 'xmlrpc_default_post_fields', array( 'post', 'terms', 'custom_fields' ), 'wp.getPost' );
1397
1398                 if ( ! $user = $this->login( $username, $password ) )
1399                         return $this->error;
1400
1401                 do_action( 'xmlrpc_call', 'wp.getPost' );
1402
1403                 $post = get_post( $post_id, ARRAY_A );
1404
1405                 if ( empty( $post['ID'] ) )
1406                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
1407
1408                 if ( ! current_user_can( 'edit_post', $post_id ) )
1409                         return new IXR_Error( 401, __( 'Sorry, you cannot edit this post.' ) );
1410
1411                 return $this->_prepare_post( $post, $fields );
1412         }
1413
1414         /**
1415          * Retrieve posts.
1416          *
1417          * @since 3.4.0
1418          *
1419          * The optional $filter parameter modifies the query used to retrieve posts.
1420          * Accepted keys are 'post_type', 'post_status', 'number', 'offset',
1421          * 'orderby', and 'order'.
1422          *
1423          * The optional $fields parameter specifies what fields will be included
1424          * in the response array.
1425          *
1426          * @uses wp_get_recent_posts()
1427          * @see wp_getPost() for more on $fields
1428          * @see get_posts() for more on $filter values
1429          *
1430          * @param array $args Method parameters. Contains:
1431          *  - int     $blog_id
1432          *  - string  $username
1433          *  - string  $password
1434          *  - array   $filter optional
1435          *  - array   $fields optional
1436          * @return array contains a collection of posts.
1437          */
1438         function wp_getPosts( $args ) {
1439                 if ( ! $this->minimum_args( $args, 3 ) )
1440                         return $this->error;
1441
1442                 $this->escape( $args );
1443
1444                 $blog_id    = (int) $args[0];
1445                 $username   = $args[1];
1446                 $password   = $args[2];
1447                 $filter     = isset( $args[3] ) ? $args[3] : array();
1448
1449                 if ( isset( $args[4] ) )
1450                         $fields = $args[4];
1451                 else
1452                         $fields = apply_filters( 'xmlrpc_default_post_fields', array( 'post', 'terms', 'custom_fields' ), 'wp.getPosts' );
1453
1454                 if ( ! $user = $this->login( $username, $password ) )
1455                         return $this->error;
1456
1457                 do_action( 'xmlrpc_call', 'wp.getPosts' );
1458
1459                 $query = array();
1460
1461                 if ( isset( $filter['post_type'] ) ) {
1462                         $post_type = get_post_type_object( $filter['post_type'] );
1463                         if ( ! ( (bool) $post_type ) )
1464                                 return new IXR_Error( 403, __( 'The post type specified is not valid' ) );
1465                 } else {
1466                         $post_type = get_post_type_object( 'post' );
1467                 }
1468
1469                 if ( ! current_user_can( $post_type->cap->edit_posts ) )
1470                         return new IXR_Error( 401, __( 'Sorry, you are not allowed to edit posts in this post type' ));
1471
1472                 $query['post_type'] = $post_type->name;
1473
1474                 if ( isset( $filter['post_status'] ) )
1475                         $query['post_status'] = $filter['post_status'];
1476
1477                 if ( isset( $filter['number'] ) )
1478                         $query['numberposts'] = absint( $filter['number'] );
1479
1480                 if ( isset( $filter['offset'] ) )
1481                         $query['offset'] = absint( $filter['offset'] );
1482
1483                 if ( isset( $filter['orderby'] ) ) {
1484                         $query['orderby'] = $filter['orderby'];
1485
1486                         if ( isset( $filter['order'] ) )
1487                                 $query['order'] = $filter['order'];
1488                 }
1489
1490                 if ( isset( $filter['s'] ) ) {
1491                         $query['s'] = $filter['s'];
1492                 }
1493
1494                 $posts_list = wp_get_recent_posts( $query );
1495
1496                 if ( ! $posts_list )
1497                         return array();
1498
1499                 // holds all the posts data
1500                 $struct = array();
1501
1502                 foreach ( $posts_list as $post ) {
1503                         if ( ! current_user_can( 'edit_post', $post['ID'] ) )
1504                                 continue;
1505
1506                         $struct[] = $this->_prepare_post( $post, $fields );
1507                 }
1508
1509                 return $struct;
1510         }
1511
1512         /**
1513          * Create a new term.
1514          *
1515          * @since 3.4.0
1516          *
1517          * @uses wp_insert_term()
1518          * @param array $args Method parameters. Contains:
1519          *  - int     $blog_id
1520          *  - string  $username
1521          *  - string  $password
1522          *  - array   $content_struct
1523          *      The $content_struct must contain:
1524          *      - 'name'
1525          *      - 'taxonomy'
1526          *      Also, it can optionally contain:
1527          *      - 'parent'
1528          *      - 'description'
1529          *      - 'slug'
1530          * @return string term_id
1531          */
1532         function wp_newTerm( $args ) {
1533                 if ( ! $this->minimum_args( $args, 4 ) )
1534                         return $this->error;
1535
1536                 $this->escape( $args );
1537
1538                 $blog_id            = (int) $args[0];
1539                 $username           = $args[1];
1540                 $password           = $args[2];
1541                 $content_struct     = $args[3];
1542
1543                 if ( ! $user = $this->login( $username, $password ) )
1544                         return $this->error;
1545
1546                 do_action( 'xmlrpc_call', 'wp.newTerm' );
1547
1548                 if ( ! taxonomy_exists( $content_struct['taxonomy'] ) )
1549                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1550
1551                 $taxonomy = get_taxonomy( $content_struct['taxonomy'] );
1552
1553                 if ( ! current_user_can( $taxonomy->cap->manage_terms ) )
1554                         return new IXR_Error( 401, __( 'You are not allowed to create terms in this taxonomy.' ) );
1555
1556                 $taxonomy = (array) $taxonomy;
1557
1558                 // hold the data of the term
1559                 $term_data = array();
1560
1561                 $term_data['name'] = trim( $content_struct['name'] );
1562                 if ( empty( $term_data['name'] ) )
1563                         return new IXR_Error( 403, __( 'The term name cannot be empty.' ) );
1564
1565                 if ( isset( $content_struct['parent'] ) ) {
1566                         if ( ! $taxonomy['hierarchical'] )
1567                                 return new IXR_Error( 403, __( 'This taxonomy is not hierarchical.' ) );
1568
1569                         $parent_term_id = (int) $content_struct['parent'];
1570                         $parent_term = get_term( $parent_term_id , $taxonomy['name'] );
1571
1572                         if ( is_wp_error( $parent_term ) )
1573                                 return new IXR_Error( 500, $parent_term->get_error_message() );
1574
1575                         if ( ! $parent_term )
1576                                 return new IXR_Error( 403, __( 'Parent term does not exist.' ) );
1577
1578                         $term_data['parent'] = $content_struct['parent'];
1579                 }
1580
1581                 if ( isset( $content_struct['description'] ) )
1582                         $term_data['description'] = $content_struct['description'];
1583
1584                 if ( isset( $content_struct['slug'] ) )
1585                         $term_data['slug'] = $content_struct['slug'];
1586
1587                 $term = wp_insert_term( $term_data['name'] , $taxonomy['name'] , $term_data );
1588
1589                 if ( is_wp_error( $term ) )
1590                         return new IXR_Error( 500, $term->get_error_message() );
1591
1592                 if ( ! $term )
1593                         return new IXR_Error( 500, __( 'Sorry, your term could not be created. Something wrong happened.' ) );
1594
1595                 return strval( $term['term_id'] );
1596         }
1597
1598         /**
1599          * Edit a term.
1600          *
1601          * @since 3.4.0
1602          *
1603          * @uses wp_update_term()
1604          * @param array $args Method parameters. Contains:
1605          *  - int     $blog_id
1606          *  - string  $username
1607          *  - string  $password
1608          *  - string  $term_id
1609          *  - array   $content_struct
1610          *      The $content_struct must contain:
1611          *      - 'taxonomy'
1612          *      Also, it can optionally contain:
1613          *      - 'name'
1614          *      - 'parent'
1615          *      - 'description'
1616          *      - 'slug'
1617          * @return bool True, on success.
1618          */
1619         function wp_editTerm( $args ) {
1620                 if ( ! $this->minimum_args( $args, 5 ) )
1621                         return $this->error;
1622
1623                 $this->escape( $args );
1624
1625                 $blog_id            = (int) $args[0];
1626                 $username           = $args[1];
1627                 $password           = $args[2];
1628                 $term_id            = (int) $args[3];
1629                 $content_struct     = $args[4];
1630
1631                 if ( ! $user = $this->login( $username, $password ) )
1632                         return $this->error;
1633
1634                 do_action( 'xmlrpc_call', 'wp.editTerm' );
1635
1636                 if ( ! taxonomy_exists( $content_struct['taxonomy'] ) )
1637                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1638
1639                 $taxonomy = get_taxonomy( $content_struct['taxonomy'] );
1640
1641                 if ( ! current_user_can( $taxonomy->cap->edit_terms ) )
1642                         return new IXR_Error( 401, __( 'You are not allowed to edit terms in this taxonomy.' ) );
1643
1644                 $taxonomy = (array) $taxonomy;
1645
1646                 // hold the data of the term
1647                 $term_data = array();
1648
1649                 $term = get_term( $term_id , $content_struct['taxonomy'] );
1650
1651                 if ( is_wp_error( $term ) )
1652                         return new IXR_Error( 500, $term->get_error_message() );
1653
1654                 if ( ! $term )
1655                         return new IXR_Error( 404, __( 'Invalid term ID' ) );
1656
1657                 if ( isset( $content_struct['name'] ) ) {
1658                         $term_data['name'] = trim( $content_struct['name'] );
1659
1660                         if ( empty( $term_data['name'] ) )
1661                                 return new IXR_Error( 403, __( 'The term name cannot be empty.' ) );
1662                 }
1663
1664                 if ( isset( $content_struct['parent'] ) ) {
1665                         if ( ! $taxonomy['hierarchical'] )
1666                                 return new IXR_Error( 403, __( "This taxonomy is not hierarchical so you can't set a parent." ) );
1667
1668                         $parent_term_id = (int) $content_struct['parent'];
1669                         $parent_term = get_term( $parent_term_id , $taxonomy['name'] );
1670
1671                         if ( is_wp_error( $parent_term ) )
1672                                 return new IXR_Error( 500, $parent_term->get_error_message() );
1673
1674                         if ( ! $parent_term )
1675                                 return new IXR_Error( 403, __( 'Parent term does not exist.' ) );
1676
1677                         $term_data['parent'] = $content_struct['parent'];
1678                 }
1679
1680                 if ( isset( $content_struct['description'] ) )
1681                         $term_data['description'] = $content_struct['description'];
1682
1683                 if ( isset( $content_struct['slug'] ) )
1684                         $term_data['slug'] = $content_struct['slug'];
1685
1686                 $term = wp_update_term( $term_id , $taxonomy['name'] , $term_data );
1687
1688                 if ( is_wp_error( $term ) )
1689                         return new IXR_Error( 500, $term->get_error_message() );
1690
1691                 if ( ! $term )
1692                         return new IXR_Error( 500, __( 'Sorry, editing the term failed.' ) );
1693
1694                 return true;
1695         }
1696
1697         /**
1698          * Delete a term.
1699          *
1700          * @since 3.4.0
1701          *
1702          * @uses wp_delete_term()
1703          * @param array $args Method parameters. Contains:
1704          *  - int     $blog_id
1705          *  - string  $username
1706          *  - string  $password
1707          *  - string  $taxnomy_name
1708          *  - string     $term_id
1709          * @return boolean|IXR_Error If it suceeded true else a reason why not
1710          */
1711         function wp_deleteTerm( $args ) {
1712                 if ( ! $this->minimum_args( $args, 5 ) )
1713                         return $this->error;
1714
1715                 $this->escape( $args );
1716
1717                 $blog_id            = (int) $args[0];
1718                 $username           = $args[1];
1719                 $password           = $args[2];
1720                 $taxonomy           = $args[3];
1721                 $term_id            = (int) $args[4];
1722
1723                 if ( ! $user = $this->login( $username, $password ) )
1724                         return $this->error;
1725
1726                 do_action( 'xmlrpc_call', 'wp.deleteTerm' );
1727
1728                 if ( ! taxonomy_exists( $taxonomy ) )
1729                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1730
1731                 $taxonomy = get_taxonomy( $taxonomy );
1732
1733                 if ( ! current_user_can( $taxonomy->cap->delete_terms ) )
1734                         return new IXR_Error( 401, __( 'You are not allowed to delete terms in this taxonomy.' ) );
1735
1736                 $term = get_term( $term_id, $taxonomy->name );
1737
1738                 if ( is_wp_error( $term ) )
1739                         return new IXR_Error( 500, $term->get_error_message() );
1740
1741                 if ( ! $term )
1742                         return new IXR_Error( 404, __( 'Invalid term ID' ) );
1743
1744                 $result = wp_delete_term( $term_id, $taxonomy->name );
1745
1746                 if ( is_wp_error( $result ) )
1747                         return new IXR_Error( 500, $term->get_error_message() );
1748
1749                 if ( ! $result )
1750                         return new IXR_Error( 500, __( 'Sorry, deleting the term failed.' ) );
1751
1752                 return $result;
1753         }
1754
1755         /**
1756          * Retrieve a term.
1757          *
1758          * @since 3.4.0
1759          *
1760          * @uses get_term()
1761          * @param array $args Method parameters. Contains:
1762          *  - int     $blog_id
1763          *  - string  $username
1764          *  - string  $password
1765          *  - string  $taxonomy
1766          *  - string  $term_id
1767          * @return array contains:
1768          *  - 'term_id'
1769          *  - 'name'
1770          *  - 'slug'
1771          *  - 'term_group'
1772          *  - 'term_taxonomy_id'
1773          *  - 'taxonomy'
1774          *  - 'description'
1775          *  - 'parent'
1776          *  - 'count'
1777          */
1778         function wp_getTerm( $args ) {
1779                 if ( ! $this->minimum_args( $args, 5 ) )
1780                         return $this->error;
1781
1782                 $this->escape( $args );
1783
1784                 $blog_id            = (int) $args[0];
1785                 $username           = $args[1];
1786                 $password           = $args[2];
1787                 $taxonomy           = $args[3];
1788                 $term_id            = (int) $args[4];
1789
1790                 if ( ! $user = $this->login( $username, $password ) )
1791                         return $this->error;
1792
1793                 do_action( 'xmlrpc_call', 'wp.getTerm' );
1794
1795                 if ( ! taxonomy_exists( $taxonomy ) )
1796                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1797
1798                 $taxonomy = get_taxonomy( $taxonomy );
1799
1800                 if ( ! current_user_can( $taxonomy->cap->assign_terms ) )
1801                         return new IXR_Error( 401, __( 'You are not allowed to assign terms in this taxonomy.' ) );
1802
1803                 $term = get_term( $term_id , $taxonomy->name, ARRAY_A );
1804
1805                 if ( is_wp_error( $term ) )
1806                         return new IXR_Error( 500, $term->get_error_message() );
1807
1808                 if ( ! $term )
1809                         return new IXR_Error( 404, __( 'Invalid term ID' ) );
1810
1811                 return $this->_prepare_term( $term );
1812         }
1813
1814         /**
1815          * Retrieve all terms for a taxonomy.
1816          *
1817          * @since 3.4.0
1818          *
1819          * The optional $filter parameter modifies the query used to retrieve terms.
1820          * Accepted keys are 'number', 'offset', 'orderby', 'order', 'hide_empty', and 'search'.
1821          *
1822          * @uses get_terms()
1823          * @param array $args Method parameters. Contains:
1824          *  - int     $blog_id
1825          *  - string  $username
1826          *  - string  $password
1827          *  - string  $taxonomy
1828          *  - array   $filter optional
1829          * @return array terms
1830          */
1831         function wp_getTerms( $args ) {
1832                 if ( ! $this->minimum_args( $args, 4 ) )
1833                         return $this->error;
1834
1835                 $this->escape( $args );
1836
1837                 $blog_id        = (int) $args[0];
1838                 $username       = $args[1];
1839                 $password       = $args[2];
1840                 $taxonomy       = $args[3];
1841                 $filter         = isset( $args[4] ) ? $args[4] : array();
1842
1843                 if ( ! $user = $this->login( $username, $password ) )
1844                         return $this->error;
1845
1846                 do_action( 'xmlrpc_call', 'wp.getTerms' );
1847
1848                 if ( ! taxonomy_exists( $taxonomy ) )
1849                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1850
1851                 $taxonomy = get_taxonomy( $taxonomy );
1852
1853                 if ( ! current_user_can( $taxonomy->cap->assign_terms ) )
1854                         return new IXR_Error( 401, __( 'You are not allowed to assign terms in this taxonomy.' ) );
1855
1856                 $query = array();
1857
1858                 if ( isset( $filter['number'] ) )
1859                         $query['number'] = absint( $filter['number'] );
1860
1861                 if ( isset( $filter['offset'] ) )
1862                         $query['offset'] = absint( $filter['offset'] );
1863
1864                 if ( isset( $filter['orderby'] ) ) {
1865                         $query['orderby'] = $filter['orderby'];
1866
1867                         if ( isset( $filter['order'] ) )
1868                                 $query['order'] = $filter['order'];
1869                 }
1870
1871                 if ( isset( $filter['hide_empty'] ) )
1872                         $query['hide_empty'] = $filter['hide_empty'];
1873                 else
1874                         $query['get'] = 'all';
1875
1876                 if ( isset( $filter['search'] ) )
1877                         $query['search'] = $filter['search'];
1878
1879                 $terms = get_terms( $taxonomy->name, $query );
1880
1881                 if ( is_wp_error( $terms ) )
1882                         return new IXR_Error( 500, $terms->get_error_message() );
1883
1884                 $struct = array();
1885
1886                 foreach ( $terms as $term ) {
1887                         $struct[] = $this->_prepare_term( $term );
1888                 }
1889
1890                 return $struct;
1891         }
1892
1893         /**
1894          * Retrieve a taxonomy.
1895          *
1896          * @since 3.4.0
1897          *
1898          * @uses get_taxonomy()
1899          * @param array $args Method parameters. Contains:
1900          *  - int     $blog_id
1901          *  - string  $username
1902          *  - string  $password
1903          *  - string  $taxonomy
1904          * @return array (@see get_taxonomy())
1905          */
1906         function wp_getTaxonomy( $args ) {
1907                 if ( ! $this->minimum_args( $args, 4 ) )
1908                         return $this->error;
1909
1910                 $this->escape( $args );
1911
1912                 $blog_id        = (int) $args[0];
1913                 $username       = $args[1];
1914                 $password       = $args[2];
1915                 $taxonomy       = $args[3];
1916
1917                 if ( isset( $args[4] ) )
1918                         $fields = $args[4];
1919                 else
1920                         $fields = apply_filters( 'xmlrpc_default_taxonomy_fields', array( 'labels', 'cap', 'object_type' ), 'wp.getTaxonomy' );
1921
1922                 if ( ! $user = $this->login( $username, $password ) )
1923                         return $this->error;
1924
1925                 do_action( 'xmlrpc_call', 'wp.getTaxonomy' );
1926
1927                 if ( ! taxonomy_exists( $taxonomy ) )
1928                         return new IXR_Error( 403, __( 'Invalid taxonomy' ) );
1929
1930                 $taxonomy = get_taxonomy( $taxonomy );
1931
1932                 if ( ! current_user_can( $taxonomy->cap->assign_terms ) )
1933                         return new IXR_Error( 401, __( 'You are not allowed to assign terms in this taxonomy.' ) );
1934
1935                 return $this->_prepare_taxonomy( $taxonomy, $fields );
1936         }
1937
1938         /**
1939          * Retrieve all taxonomies.
1940          *
1941          * @since 3.4.0
1942          *
1943          * @uses get_taxonomies()
1944          * @param array $args Method parameters. Contains:
1945          *  - int     $blog_id
1946          *  - string  $username
1947          *  - string  $password
1948          * @return array taxonomies
1949          */
1950         function wp_getTaxonomies( $args ) {
1951                 if ( ! $this->minimum_args( $args, 3 ) )
1952                         return $this->error;
1953
1954                 $this->escape( $args );
1955
1956                 $blog_id            = (int) $args[0];
1957                 $username           = $args[1];
1958                 $password           = $args[2];
1959                 $filter             = isset( $args[3] ) ? $args[3] : array( 'public' => true );
1960
1961                 if ( isset( $args[4] ) )
1962                         $fields = $args[4];
1963                 else
1964                         $fields = apply_filters( 'xmlrpc_default_taxonomy_fields', array( 'labels', 'cap', 'object_type' ), 'wp.getTaxonomies' );
1965
1966                 if ( ! $user = $this->login( $username, $password ) )
1967                         return $this->error;
1968
1969                 do_action( 'xmlrpc_call', 'wp.getTaxonomies' );
1970
1971                 $taxonomies = get_taxonomies( $filter, 'objects' );
1972
1973                 // holds all the taxonomy data
1974                 $struct = array();
1975
1976                 foreach ( $taxonomies as $taxonomy ) {
1977                         // capability check for post_types
1978                         if ( ! current_user_can( $taxonomy->cap->assign_terms ) )
1979                                 continue;
1980
1981                         $struct[] = $this->_prepare_taxonomy( $taxonomy, $fields );
1982                 }
1983
1984                 return $struct;
1985         }
1986
1987         /**
1988          * Retrieve a user.
1989          *
1990          * The optional $fields parameter specifies what fields will be included
1991          * in the response array. This should be a list of field names. 'user_id' will
1992          * always be included in the response regardless of the value of $fields.
1993          *
1994          * Instead of, or in addition to, individual field names, conceptual group
1995          * names can be used to specify multiple fields. The available conceptual
1996          * groups are 'basic' and 'all'.
1997          *
1998          * @uses get_userdata()
1999          * @param array $args Method parameters. Contains:
2000          *  - int     $blog_id
2001          *  - string  $username
2002          *  - string  $password
2003          *  - int     $user_id
2004          *  - array   $fields optional
2005          * @return array contains (based on $fields parameter):
2006          *  - 'user_id'
2007          *  - 'username'
2008          *  - 'first_name'
2009          *  - 'last_name'
2010          *  - 'registered'
2011          *  - 'bio'
2012          *  - 'email'
2013          *  - 'nickname'
2014          *  - 'nicename'
2015          *  - 'url'
2016          *  - 'display_name'
2017          *  - 'roles'
2018          */
2019         function wp_getUser( $args ) {
2020                 if ( ! $this->minimum_args( $args, 4 ) )
2021                         return $this->error;
2022
2023                 $this->escape( $args );
2024
2025                 $blog_id    = (int) $args[0];
2026                 $username   = $args[1];
2027                 $password   = $args[2];
2028                 $user_id    = (int) $args[3];
2029
2030                 if ( isset( $args[4] ) )
2031                         $fields = $args[4];
2032                 else
2033                         $fields = apply_filters( 'xmlrpc_default_user_fields', array( 'all' ), 'wp.getUser' );
2034
2035                 if ( ! $user = $this->login( $username, $password ) )
2036                         return $this->error;
2037
2038                 do_action( 'xmlrpc_call', 'wp.getUser' );
2039
2040                 if ( ! current_user_can( 'edit_user', $user_id ) )
2041                         return new IXR_Error( 401, __( 'Sorry, you cannot edit users.' ) );
2042
2043                 $user_data = get_userdata( $user_id );
2044
2045                 if ( ! $user_data )
2046                         return new IXR_Error( 404, __( 'Invalid user ID' ) );
2047
2048                 return $this->_prepare_user( $user_data, $fields );
2049         }
2050
2051         /**
2052          * Retrieve users.
2053          *
2054          * The optional $filter parameter modifies the query used to retrieve users.
2055          * Accepted keys are 'number' (default: 50), 'offset' (default: 0), 'role',
2056          * 'who', 'orderby', and 'order'.
2057          *
2058          * The optional $fields parameter specifies what fields will be included
2059          * in the response array.
2060          *
2061          * @uses get_users()
2062          * @see wp_getUser() for more on $fields and return values
2063          *
2064          * @param array $args Method parameters. Contains:
2065          *  - int     $blog_id
2066          *  - string  $username
2067          *  - string  $password
2068          *  - array   $filter optional
2069          *  - array   $fields optional
2070          * @return array users data
2071          */
2072         function wp_getUsers( $args ) {
2073                 if ( ! $this->minimum_args( $args, 3 ) )
2074                         return $this->error;
2075
2076                 $this->escape( $args );
2077
2078                 $blog_id    = (int) $args[0];
2079                 $username   = $args[1];
2080                 $password   = $args[2];
2081                 $filter     = isset( $args[3] ) ? $args[3] : array();
2082
2083                 if ( isset( $args[4] ) )
2084                         $fields = $args[4];
2085                 else
2086                         $fields = apply_filters( 'xmlrpc_default_user_fields', array( 'all' ), 'wp.getUsers' );
2087
2088                 if ( ! $user = $this->login( $username, $password ) )
2089                         return $this->error;
2090
2091                 do_action( 'xmlrpc_call', 'wp.getUsers' );
2092
2093                 if ( ! current_user_can( 'list_users' ) )
2094                         return new IXR_Error( 401, __( 'Sorry, you cannot list users.' ) );
2095
2096                 $query = array( 'fields' => 'all_with_meta' );
2097
2098                 $query['number'] = ( isset( $filter['number'] ) ) ? absint( $filter['number'] ) : 50;
2099                 $query['offset'] = ( isset( $filter['offset'] ) ) ? absint( $filter['offset'] ) : 0;
2100
2101                 if ( isset( $filter['orderby'] ) ) {
2102                         $query['orderby'] = $filter['orderby'];
2103
2104                         if ( isset( $filter['order'] ) )
2105                                 $query['order'] = $filter['order'];
2106                 }
2107
2108                 if ( isset( $filter['role'] ) ) {
2109                         if ( get_role( $filter['role'] ) === null )
2110                                 return new IXR_Error( 403, __( 'The role specified is not valid' ) );
2111
2112                         $query['role'] = $filter['role'];
2113                 }
2114
2115                 if ( isset( $filter['who'] ) ) {
2116                         $query['who'] = $filter['who'];
2117                 }
2118
2119                 $users = get_users( $query );
2120
2121                 $_users = array();
2122                 foreach ( $users as $user_data ) {
2123                         if ( current_user_can( 'edit_user', $user_data->ID ) )
2124                                 $_users[] = $this->_prepare_user( $user_data, $fields );
2125                 }
2126                 return $_users;
2127         }
2128
2129         /**
2130          * Retrieve information about the requesting user.
2131          *
2132          * @uses get_userdata()
2133          * @param array $args Method parameters. Contains:
2134          *  - int     $blog_id
2135          *  - string  $username
2136          *  - string  $password
2137          *  - array   $fields optional
2138          * @return array (@see wp_getUser)
2139          */
2140         function wp_getProfile( $args ) {
2141                 if ( ! $this->minimum_args( $args, 3 ) )
2142                         return $this->error;
2143
2144                 $this->escape( $args );
2145
2146                 $blog_id    = (int) $args[0];
2147                 $username   = $args[1];
2148                 $password   = $args[2];
2149
2150                 if ( isset( $args[3] ) )
2151                         $fields = $args[3];
2152                 else
2153                         $fields = apply_filters( 'xmlrpc_default_user_fields', array( 'all' ), 'wp.getProfile' );
2154
2155                 if ( ! $user = $this->login( $username, $password ) )
2156                         return $this->error;
2157
2158                 do_action( 'xmlrpc_call', 'wp.getProfile' );
2159
2160                 if ( ! current_user_can( 'edit_user', $user->ID ) )
2161                         return new IXR_Error( 401, __( 'Sorry, you cannot edit your profile.' ) );
2162
2163                 $user_data = get_userdata( $user->ID );
2164
2165                 return $this->_prepare_user( $user_data, $fields );
2166         }
2167
2168         /**
2169          * Edit user's profile.
2170          *
2171          * @uses wp_update_user()
2172          * @param array $args Method parameters. Contains:
2173          *  - int     $blog_id
2174          *  - string  $username
2175          *  - string  $password
2176          *  - array   $content_struct
2177          *      It can optionally contain:
2178          *      - 'first_name'
2179          *      - 'last_name'
2180          *      - 'website'
2181          *      - 'display_name'
2182          *      - 'nickname'
2183          *      - 'nicename'
2184          *      - 'bio'
2185          * @return bool True, on success.
2186          */
2187         function wp_editProfile( $args ) {
2188                 if ( ! $this->minimum_args( $args, 4 ) )
2189                         return $this->error;
2190
2191                 $this->escape( $args );
2192
2193                 $blog_id        = (int) $args[0];
2194                 $username       = $args[1];
2195                 $password       = $args[2];
2196                 $content_struct = $args[3];
2197
2198                 if ( ! $user = $this->login( $username, $password ) )
2199                         return $this->error;
2200
2201                 do_action( 'xmlrpc_call', 'wp.editProfile' );
2202
2203                 if ( ! current_user_can( 'edit_user', $user->ID ) )
2204                         return new IXR_Error( 401, __( 'Sorry, you cannot edit your profile.' ) );
2205
2206                 // holds data of the user
2207                 $user_data = array();
2208                 $user_data['ID'] = $user->ID;
2209
2210                 // only set the user details if it was given
2211                 if ( isset( $content_struct['first_name'] ) )
2212                         $user_data['first_name'] = $content_struct['first_name'];
2213
2214                 if ( isset( $content_struct['last_name'] ) )
2215                         $user_data['last_name'] = $content_struct['last_name'];
2216
2217                 if ( isset( $content_struct['url'] ) )
2218                         $user_data['user_url'] = $content_struct['url'];
2219
2220                 if ( isset( $content_struct['display_name'] ) )
2221                         $user_data['display_name'] = $content_struct['display_name'];
2222
2223                 if ( isset( $content_struct['nickname'] ) )
2224                         $user_data['nickname'] = $content_struct['nickname'];
2225
2226                 if ( isset( $content_struct['nicename'] ) )
2227                         $user_data['user_nicename'] = $content_struct['nicename'];
2228
2229                 if ( isset( $content_struct['bio'] ) )
2230                         $user_data['description'] = $content_struct['bio'];
2231
2232                 $result = wp_update_user( $user_data );
2233
2234                 if ( is_wp_error( $result ) )
2235                         return new IXR_Error( 500, $result->get_error_message() );
2236
2237                 if ( ! $result )
2238                         return new IXR_Error( 500, __( 'Sorry, the user cannot be updated.' ) );
2239
2240                 return true;
2241         }
2242
2243         /**
2244          * Retrieve page.
2245          *
2246          * @since 2.2.0
2247          *
2248          * @param array $args Method parameters. Contains:
2249          *  - blog_id
2250          *  - page_id
2251          *  - username
2252          *  - password
2253          * @return array
2254          */
2255         function wp_getPage($args) {
2256                 $this->escape($args);
2257
2258                 $blog_id        = (int) $args[0];
2259                 $page_id        = (int) $args[1];
2260                 $username       = $args[2];
2261                 $password       = $args[3];
2262
2263                 if ( !$user = $this->login($username, $password) ) {
2264                         return $this->error;
2265                 }
2266
2267                 $page = get_post($page_id);
2268                 if ( ! $page )
2269                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
2270
2271                 if ( !current_user_can( 'edit_page', $page_id ) )
2272                         return new IXR_Error( 401, __( 'Sorry, you cannot edit this page.' ) );
2273
2274                 do_action('xmlrpc_call', 'wp.getPage');
2275
2276                 // If we found the page then format the data.
2277                 if ( $page->ID && ($page->post_type == 'page') ) {
2278                         return $this->_prepare_page( $page );
2279                 }
2280                 // If the page doesn't exist indicate that.
2281                 else {
2282                         return(new IXR_Error(404, __('Sorry, no such page.')));
2283                 }
2284         }
2285
2286         /**
2287          * Retrieve Pages.
2288          *
2289          * @since 2.2.0
2290          *
2291          * @param array $args Method parameters. Contains:
2292          *  - blog_id
2293          *  - username
2294          *  - password
2295          *  - num_pages
2296          * @return array
2297          */
2298         function wp_getPages($args) {
2299                 $this->escape($args);
2300
2301                 $blog_id        = (int) $args[0];
2302                 $username       = $args[1];
2303                 $password       = $args[2];
2304                 $num_pages      = isset($args[3]) ? (int) $args[3] : 10;
2305
2306                 if ( !$user = $this->login($username, $password) )
2307                         return $this->error;
2308
2309                 if ( !current_user_can( 'edit_pages' ) )
2310                         return new IXR_Error( 401, __( 'Sorry, you cannot edit pages.' ) );
2311
2312                 do_action('xmlrpc_call', 'wp.getPages');
2313
2314                 $pages = get_posts( array('post_type' => 'page', 'post_status' => 'any', 'numberposts' => $num_pages) );
2315                 $num_pages = count($pages);
2316
2317                 // If we have pages, put together their info.
2318                 if ( $num_pages >= 1 ) {
2319                         $pages_struct = array();
2320
2321                         foreach ($pages as $page) {
2322                                 if ( current_user_can( 'edit_page', $page->ID ) )
2323                                         $pages_struct[] = $this->_prepare_page( $page );
2324                         }
2325
2326                         return($pages_struct);
2327                 }
2328                 // If no pages were found return an error.
2329                 else {
2330                         return(array());
2331                 }
2332         }
2333
2334         /**
2335          * Create new page.
2336          *
2337          * @since 2.2.0
2338          *
2339          * @param array $args Method parameters. See {@link wp_xmlrpc_server::mw_newPost()}
2340          * @return unknown
2341          */
2342         function wp_newPage($args) {
2343                 // Items not escaped here will be escaped in newPost.
2344                 $username       = $this->escape($args[1]);
2345                 $password       = $this->escape($args[2]);
2346                 $page           = $args[3];
2347                 $publish        = $args[4];
2348
2349                 if ( !$user = $this->login($username, $password) )
2350                         return $this->error;
2351
2352                 do_action('xmlrpc_call', 'wp.newPage');
2353
2354                 // Mark this as content for a page.
2355                 $args[3]["post_type"] = 'page';
2356
2357                 // Let mw_newPost do all of the heavy lifting.
2358                 return($this->mw_newPost($args));
2359         }
2360
2361         /**
2362          * Delete page.
2363          *
2364          * @since 2.2.0
2365          *
2366          * @param array $args Method parameters.
2367          * @return bool True, if success.
2368          */
2369         function wp_deletePage($args) {
2370                 $this->escape($args);
2371
2372                 $blog_id        = (int) $args[0];
2373                 $username       = $args[1];
2374                 $password       = $args[2];
2375                 $page_id        = (int) $args[3];
2376
2377                 if ( !$user = $this->login($username, $password) )
2378                         return $this->error;
2379
2380                 do_action('xmlrpc_call', 'wp.deletePage');
2381
2382                 // Get the current page based on the page_id and
2383                 // make sure it is a page and not a post.
2384                 $actual_page = get_post($page_id, ARRAY_A);
2385                 if ( !$actual_page || ($actual_page['post_type'] != 'page') )
2386                         return(new IXR_Error(404, __('Sorry, no such page.')));
2387
2388                 // Make sure the user can delete pages.
2389                 if ( !current_user_can('delete_page', $page_id) )
2390                         return(new IXR_Error(401, __('Sorry, you do not have the right to delete this page.')));
2391
2392                 // Attempt to delete the page.
2393                 $result = wp_delete_post($page_id);
2394                 if ( !$result )
2395                         return(new IXR_Error(500, __('Failed to delete the page.')));
2396
2397                 do_action( 'xmlrpc_call_success_wp_deletePage', $page_id, $args );
2398
2399                 return(true);
2400         }
2401
2402         /**
2403          * Edit page.
2404          *
2405          * @since 2.2.0
2406          *
2407          * @param array $args Method parameters.
2408          * @return unknown
2409          */
2410         function wp_editPage($args) {
2411                 // Items not escaped here will be escaped in editPost.
2412                 $blog_id        = (int) $args[0];
2413                 $page_id        = (int) $this->escape($args[1]);
2414                 $username       = $this->escape($args[2]);
2415                 $password       = $this->escape($args[3]);
2416                 $content        = $args[4];
2417                 $publish        = $args[5];
2418
2419                 if ( !$user = $this->login($username, $password) )
2420                         return $this->error;
2421
2422                 do_action('xmlrpc_call', 'wp.editPage');
2423
2424                 // Get the page data and make sure it is a page.
2425                 $actual_page = get_post($page_id, ARRAY_A);
2426                 if ( !$actual_page || ($actual_page['post_type'] != 'page') )
2427                         return(new IXR_Error(404, __('Sorry, no such page.')));
2428
2429                 // Make sure the user is allowed to edit pages.
2430                 if ( !current_user_can('edit_page', $page_id) )
2431                         return(new IXR_Error(401, __('Sorry, you do not have the right to edit this page.')));
2432
2433                 // Mark this as content for a page.
2434                 $content['post_type'] = 'page';
2435
2436                 // Arrange args in the way mw_editPost understands.
2437                 $args = array(
2438                         $page_id,
2439                         $username,
2440                         $password,
2441                         $content,
2442                         $publish
2443                 );
2444
2445                 // Let mw_editPost do all of the heavy lifting.
2446                 return($this->mw_editPost($args));
2447         }
2448
2449         /**
2450          * Retrieve page list.
2451          *
2452          * @since 2.2.0
2453          *
2454          * @param array $args Method parameters.
2455          * @return unknown
2456          */
2457         function wp_getPageList($args) {
2458                 global $wpdb;
2459
2460                 $this->escape($args);
2461
2462                 $blog_id                                = (int) $args[0];
2463                 $username                               = $args[1];
2464                 $password                               = $args[2];
2465
2466                 if ( !$user = $this->login($username, $password) )
2467                         return $this->error;
2468
2469                 if ( !current_user_can( 'edit_pages' ) )
2470                         return new IXR_Error( 401, __( 'Sorry, you cannot edit pages.' ) );
2471
2472                 do_action('xmlrpc_call', 'wp.getPageList');
2473
2474                 // Get list of pages ids and titles
2475                 $page_list = $wpdb->get_results("
2476                         SELECT ID page_id,
2477                                 post_title page_title,
2478                                 post_parent page_parent_id,
2479                                 post_date_gmt,
2480                                 post_date,
2481                                 post_status
2482                         FROM {$wpdb->posts}
2483                         WHERE post_type = 'page'
2484                         ORDER BY ID
2485                 ");
2486
2487                 // The date needs to be formatted properly.
2488                 $num_pages = count($page_list);
2489                 for ( $i = 0; $i < $num_pages; $i++ ) {
2490                         $page_list[$i]->dateCreated = $this->_convert_date(  $page_list[$i]->post_date );
2491                         $page_list[$i]->date_created_gmt = $this->_convert_date_gmt( $page_list[$i]->post_date_gmt, $page_list[$i]->post_date );
2492
2493                         unset($page_list[$i]->post_date_gmt);
2494                         unset($page_list[$i]->post_date);
2495                         unset($page_list[$i]->post_status);
2496                 }
2497
2498                 return($page_list);
2499         }
2500
2501         /**
2502          * Retrieve authors list.
2503          *
2504          * @since 2.2.0
2505          *
2506          * @param array $args Method parameters.
2507          * @return array
2508          */
2509         function wp_getAuthors($args) {
2510
2511                 $this->escape($args);
2512
2513                 $blog_id        = (int) $args[0];
2514                 $username       = $args[1];
2515                 $password       = $args[2];
2516
2517                 if ( !$user = $this->login($username, $password) )
2518                         return $this->error;
2519
2520                 if ( !current_user_can('edit_posts') )
2521                         return(new IXR_Error(401, __('Sorry, you cannot edit posts on this site.')));
2522
2523                 do_action('xmlrpc_call', 'wp.getAuthors');
2524
2525                 $authors = array();
2526                 foreach ( get_users( array( 'fields' => array('ID','user_login','display_name') ) ) as $user ) {
2527                         $authors[] = array(
2528                                 'user_id'       => $user->ID,
2529                                 'user_login'    => $user->user_login,
2530                                 'display_name'  => $user->display_name
2531                         );
2532                 }
2533
2534                 return $authors;
2535         }
2536
2537         /**
2538          * Get list of all tags
2539          *
2540          * @since 2.7.0
2541          *
2542          * @param array $args Method parameters.
2543          * @return array
2544          */
2545         function wp_getTags( $args ) {
2546                 $this->escape( $args );
2547
2548                 $blog_id                = (int) $args[0];
2549                 $username               = $args[1];
2550                 $password               = $args[2];
2551
2552                 if ( !$user = $this->login($username, $password) )
2553                         return $this->error;
2554
2555                 if ( !current_user_can( 'edit_posts' ) )
2556                         return new IXR_Error( 401, __( 'Sorry, you must be able to edit posts on this site in order to view tags.' ) );
2557
2558                 do_action( 'xmlrpc_call', 'wp.getKeywords' );
2559
2560                 $tags = array();
2561
2562                 if ( $all_tags = get_tags() ) {
2563                         foreach( (array) $all_tags as $tag ) {
2564                                 $struct['tag_id']                       = $tag->term_id;
2565                                 $struct['name']                         = $tag->name;
2566                                 $struct['count']                        = $tag->count;
2567                                 $struct['slug']                         = $tag->slug;
2568                                 $struct['html_url']                     = esc_html( get_tag_link( $tag->term_id ) );
2569                                 $struct['rss_url']                      = esc_html( get_tag_feed_link( $tag->term_id ) );
2570
2571                                 $tags[] = $struct;
2572                         }
2573                 }
2574
2575                 return $tags;
2576         }
2577
2578         /**
2579          * Create new category.
2580          *
2581          * @since 2.2.0
2582          *
2583          * @param array $args Method parameters.
2584          * @return int Category ID.
2585          */
2586         function wp_newCategory($args) {
2587                 $this->escape($args);
2588
2589                 $blog_id                                = (int) $args[0];
2590                 $username                               = $args[1];
2591                 $password                               = $args[2];
2592                 $category                               = $args[3];
2593
2594                 if ( !$user = $this->login($username, $password) )
2595                         return $this->error;
2596
2597                 do_action('xmlrpc_call', 'wp.newCategory');
2598
2599                 // Make sure the user is allowed to add a category.
2600                 if ( !current_user_can('manage_categories') )
2601                         return(new IXR_Error(401, __('Sorry, you do not have the right to add a category.')));
2602
2603                 // If no slug was provided make it empty so that
2604                 // WordPress will generate one.
2605                 if ( empty($category['slug']) )
2606                         $category['slug'] = '';
2607
2608                 // If no parent_id was provided make it empty
2609                 // so that it will be a top level page (no parent).
2610                 if ( !isset($category['parent_id']) )
2611                         $category['parent_id'] = '';
2612
2613                 // If no description was provided make it empty.
2614                 if ( empty($category["description"]) )
2615                         $category["description"] = "";
2616
2617                 $new_category = array(
2618                         'cat_name'                              => $category['name'],
2619                         'category_nicename'             => $category['slug'],
2620                         'category_parent'               => $category['parent_id'],
2621                         'category_description'  => $category['description']
2622                 );
2623
2624                 $cat_id = wp_insert_category($new_category, true);
2625                 if ( is_wp_error( $cat_id ) ) {
2626                         if ( 'term_exists' == $cat_id->get_error_code() )
2627                                 return (int) $cat_id->get_error_data();
2628                         else
2629                                 return(new IXR_Error(500, __('Sorry, the new category failed.')));
2630                 } elseif ( ! $cat_id ) {
2631                         return(new IXR_Error(500, __('Sorry, the new category failed.')));
2632                 }
2633
2634                 do_action( 'xmlrpc_call_success_wp_newCategory', $cat_id, $args );
2635
2636                 return $cat_id;
2637         }
2638
2639         /**
2640          * Remove category.
2641          *
2642          * @since 2.5.0
2643          *
2644          * @param array $args Method parameters.
2645          * @return mixed See {@link wp_delete_term()} for return info.
2646          */
2647         function wp_deleteCategory($args) {
2648                 $this->escape($args);
2649
2650                 $blog_id                = (int) $args[0];
2651                 $username               = $args[1];
2652                 $password               = $args[2];
2653                 $category_id    = (int) $args[3];
2654
2655                 if ( !$user = $this->login($username, $password) )
2656                         return $this->error;
2657
2658                 do_action('xmlrpc_call', 'wp.deleteCategory');
2659
2660                 if ( !current_user_can('manage_categories') )
2661                         return new IXR_Error( 401, __( 'Sorry, you do not have the right to delete a category.' ) );
2662
2663                 $status = wp_delete_term( $category_id, 'category' );
2664
2665                 if( true == $status )
2666                         do_action( 'xmlrpc_call_success_wp_deleteCategory', $category_id, $args );
2667
2668                 return $status;
2669         }
2670
2671         /**
2672          * Retrieve category list.
2673          *
2674          * @since 2.2.0
2675          *
2676          * @param array $args Method parameters.
2677          * @return array
2678          */
2679         function wp_suggestCategories($args) {
2680                 $this->escape($args);
2681
2682                 $blog_id                                = (int) $args[0];
2683                 $username                               = $args[1];
2684                 $password                               = $args[2];
2685                 $category                               = $args[3];
2686                 $max_results                    = (int) $args[4];
2687
2688                 if ( !$user = $this->login($username, $password) )
2689                         return $this->error;
2690
2691                 if ( !current_user_can( 'edit_posts' ) )
2692                         return new IXR_Error( 401, __( 'Sorry, you must be able to edit posts to this site in order to view categories.' ) );
2693
2694                 do_action('xmlrpc_call', 'wp.suggestCategories');
2695
2696                 $category_suggestions = array();
2697                 $args = array('get' => 'all', 'number' => $max_results, 'name__like' => $category);
2698                 foreach ( (array) get_categories($args) as $cat ) {
2699                         $category_suggestions[] = array(
2700                                 'category_id'   => $cat->term_id,
2701                                 'category_name' => $cat->name
2702                         );
2703                 }
2704
2705                 return($category_suggestions);
2706         }
2707
2708         /**
2709          * Retrieve comment.
2710          *
2711          * @since 2.7.0
2712          *
2713          * @param array $args Method parameters.
2714          * @return array
2715          */
2716         function wp_getComment($args) {
2717                 $this->escape($args);
2718
2719                 $blog_id        = (int) $args[0];
2720                 $username       = $args[1];
2721                 $password       = $args[2];
2722                 $comment_id     = (int) $args[3];
2723
2724                 if ( !$user = $this->login($username, $password) )
2725                         return $this->error;
2726
2727                 if ( !current_user_can( 'moderate_comments' ) )
2728                         return new IXR_Error( 403, __( 'You are not allowed to moderate comments on this site.' ) );
2729
2730                 do_action('xmlrpc_call', 'wp.getComment');
2731
2732                 if ( ! $comment = get_comment($comment_id) )
2733                         return new IXR_Error( 404, __( 'Invalid comment ID.' ) );
2734
2735                 return $this->_prepare_comment( $comment );
2736         }
2737
2738         /**
2739          * Retrieve comments.
2740          *
2741          * Besides the common blog_id, username, and password arguments, it takes a filter
2742          * array as last argument.
2743          *
2744          * Accepted 'filter' keys are 'status', 'post_id', 'offset', and 'number'.
2745          *
2746          * The defaults are as follows:
2747          * - 'status' - Default is ''. Filter by status (e.g., 'approve', 'hold')
2748          * - 'post_id' - Default is ''. The post where the comment is posted. Empty string shows all comments.
2749          * - 'number' - Default is 10. Total number of media items to retrieve.
2750          * - 'offset' - Default is 0. See {@link WP_Query::query()} for more.
2751          *
2752          * @since 2.7.0
2753          *
2754          * @param array $args Method parameters.
2755          * @return array. Contains a collection of comments. See {@link wp_xmlrpc_server::wp_getComment()} for a description of each item contents
2756          */
2757         function wp_getComments($args) {
2758                 $this->escape($args);
2759
2760                 $blog_id        = (int) $args[0];
2761                 $username       = $args[1];
2762                 $password       = $args[2];
2763                 $struct         = isset( $args[3] ) ? $args[3] : array();
2764
2765                 if ( !$user = $this->login($username, $password) )
2766                         return $this->error;
2767
2768                 if ( !current_user_can( 'moderate_comments' ) )
2769                         return new IXR_Error( 401, __( 'Sorry, you cannot edit comments.' ) );
2770
2771                 do_action('xmlrpc_call', 'wp.getComments');
2772
2773                 if ( isset($struct['status']) )
2774                         $status = $struct['status'];
2775                 else
2776                         $status = '';
2777
2778                 $post_id = '';
2779                 if ( isset($struct['post_id']) )
2780                         $post_id = absint($struct['post_id']);
2781
2782                 $offset = 0;
2783                 if ( isset($struct['offset']) )
2784                         $offset = absint($struct['offset']);
2785
2786                 $number = 10;
2787                 if ( isset($struct['number']) )
2788                         $number = absint($struct['number']);
2789
2790                 $comments = get_comments( array('status' => $status, 'post_id' => $post_id, 'offset' => $offset, 'number' => $number ) );
2791
2792                 $comments_struct = array();
2793
2794                 foreach ( $comments as $comment ) {
2795                         $comments_struct[] = $this->_prepare_comment( $comment );
2796                 }
2797
2798                 return $comments_struct;
2799         }
2800
2801         /**
2802          * Delete a comment.
2803          *
2804          * By default, the comment will be moved to the trash instead of deleted.
2805          * See {@link wp_delete_comment()} for more information on
2806          * this behavior.
2807          *
2808          * @since 2.7.0
2809          *
2810          * @param array $args Method parameters. Contains:
2811          *  - blog_id
2812          *  - username
2813          *  - password
2814          *  - comment_id
2815          * @return mixed {@link wp_delete_comment()}
2816          */
2817         function wp_deleteComment($args) {
2818                 $this->escape($args);
2819
2820                 $blog_id        = (int) $args[0];
2821                 $username       = $args[1];
2822                 $password       = $args[2];
2823                 $comment_ID     = (int) $args[3];
2824
2825                 if ( !$user = $this->login($username, $password) )
2826                         return $this->error;
2827
2828                 if ( !current_user_can( 'moderate_comments' ) )
2829                         return new IXR_Error( 403, __( 'You are not allowed to moderate comments on this site.' ) );
2830
2831                 if ( ! get_comment($comment_ID) )
2832                         return new IXR_Error( 404, __( 'Invalid comment ID.' ) );
2833
2834                 if ( !current_user_can( 'edit_comment', $comment_ID ) )
2835                         return new IXR_Error( 403, __( 'You are not allowed to moderate comments on this site.' ) );
2836
2837                 do_action('xmlrpc_call', 'wp.deleteComment');
2838
2839                 $status = wp_delete_comment( $comment_ID );
2840
2841                 if( true == $status )
2842                         do_action( 'xmlrpc_call_success_wp_deleteComment', $comment_ID, $args );
2843
2844                 return $status;
2845         }
2846
2847         /**
2848          * Edit comment.
2849          *
2850          * Besides the common blog_id, username, and password arguments, it takes a
2851          * comment_id integer and a content_struct array as last argument.
2852          *
2853          * The allowed keys in the content_struct array are:
2854          *  - 'author'
2855          *  - 'author_url'
2856          *  - 'author_email'
2857          *  - 'content'
2858          *  - 'date_created_gmt'
2859          *  - 'status'. Common statuses are 'approve', 'hold', 'spam'. See {@link get_comment_statuses()} for more details
2860          *
2861          * @since 2.7.0
2862          *
2863          * @param array $args. Contains:
2864          *  - blog_id
2865          *  - username
2866          *  - password
2867          *  - comment_id
2868          *  - content_struct
2869          * @return bool True, on success.
2870          */
2871         function wp_editComment($args) {
2872                 $this->escape($args);
2873
2874                 $blog_id        = (int) $args[0];
2875                 $username       = $args[1];
2876                 $password       = $args[2];
2877                 $comment_ID     = (int) $args[3];
2878                 $content_struct = $args[4];
2879
2880                 if ( !$user = $this->login($username, $password) )
2881                         return $this->error;
2882
2883                 if ( !current_user_can( 'moderate_comments' ) )
2884                         return new IXR_Error( 403, __( 'You are not allowed to moderate comments on this site.' ) );
2885
2886                 if ( ! get_comment($comment_ID) )
2887                         return new IXR_Error( 404, __( 'Invalid comment ID.' ) );
2888
2889                 if ( !current_user_can( 'edit_comment', $comment_ID ) )
2890                         return new IXR_Error( 403, __( 'You are not allowed to moderate comments on this site.' ) );
2891
2892                 do_action('xmlrpc_call', 'wp.editComment');
2893
2894                 if ( isset($content_struct['status']) ) {
2895                         $statuses = get_comment_statuses();
2896                         $statuses = array_keys($statuses);
2897
2898                         if ( ! in_array($content_struct['status'], $statuses) )
2899                                 return new IXR_Error( 401, __( 'Invalid comment status.' ) );
2900                         $comment_approved = $content_struct['status'];
2901                 }
2902
2903                 // Do some timestamp voodoo
2904                 if ( !empty( $content_struct['date_created_gmt'] ) ) {
2905                         // We know this is supposed to be GMT, so we're going to slap that Z on there by force
2906                         $dateCreated = rtrim( $content_struct['date_created_gmt']->getIso(), 'Z' ) . 'Z';
2907                         $comment_date = get_date_from_gmt(iso8601_to_datetime($dateCreated));
2908                         $comment_date_gmt = iso8601_to_datetime($dateCreated, 'GMT');
2909                 }
2910
2911                 if ( isset($content_struct['content']) )
2912                         $comment_content = $content_struct['content'];
2913
2914                 if ( isset($content_struct['author']) )
2915                         $comment_author = $content_struct['author'];
2916
2917                 if ( isset($content_struct['author_url']) )
2918                         $comment_author_url = $content_struct['author_url'];
2919
2920                 if ( isset($content_struct['author_email']) )
2921                         $comment_author_email = $content_struct['author_email'];
2922
2923                 // We've got all the data -- post it:
2924                 $comment = compact('comment_ID', 'comment_content', 'comment_approved', 'comment_date', 'comment_date_gmt', 'comment_author', 'comment_author_email', 'comment_author_url');
2925
2926                 $result = wp_update_comment($comment);
2927                 if ( is_wp_error( $result ) )
2928                         return new IXR_Error(500, $result->get_error_message());
2929
2930                 if ( !$result )
2931                         return new IXR_Error(500, __('Sorry, the comment could not be edited. Something wrong happened.'));
2932
2933                 do_action( 'xmlrpc_call_success_wp_editComment', $comment_ID, $args );
2934
2935                 return true;
2936         }
2937
2938         /**
2939          * Create new comment.
2940          *
2941          * @since 2.7.0
2942          *
2943          * @param array $args Method parameters.
2944          * @return mixed {@link wp_new_comment()}
2945          */
2946         function wp_newComment($args) {
2947                 global $wpdb;
2948
2949                 $this->escape($args);
2950
2951                 $blog_id        = (int) $args[0];
2952                 $username       = $args[1];
2953                 $password       = $args[2];
2954                 $post           = $args[3];
2955                 $content_struct = $args[4];
2956
2957                 $allow_anon = apply_filters('xmlrpc_allow_anonymous_comments', false);
2958
2959                 $user = $this->login($username, $password);
2960
2961                 if ( !$user ) {
2962                         $logged_in = false;
2963                         if ( $allow_anon && get_option('comment_registration') )
2964                                 return new IXR_Error( 403, __( 'You must be registered to comment' ) );
2965                         else if ( !$allow_anon )
2966                                 return $this->error;
2967                 } else {
2968                         $logged_in = true;
2969                 }
2970
2971                 if ( is_numeric($post) )
2972                         $post_id = absint($post);
2973                 else
2974                         $post_id = url_to_postid($post);
2975
2976                 if ( ! $post_id )
2977                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
2978
2979                 if ( ! get_post($post_id) )
2980                         return new IXR_Error( 404, __( 'Invalid post ID.' ) );
2981
2982                 $comment['comment_post_ID'] = $post_id;
2983
2984                 if ( $logged_in ) {
2985                         $comment['comment_author'] = $this->escape( $user->display_name );
2986                         $comment['comment_author_email'] = $this->escape( $user->user_email );
2987                         $comment['comment_author_url'] = $this->escape( $user->user_url );
2988                         $comment['user_ID'] = $user->ID;
2989                 } else {
2990                         $comment['comment_author'] = '';
2991                         if ( isset($content_struct['author']) )
2992                                 $comment['comment_author'] = $content_struct['author'];
2993
2994                         $comment['comment_author_email'] = '';
2995                         if ( isset($content_struct['author_email']) )
2996                                 $comment['comment_author_email'] = $content_struct['author_email'];
2997
2998                         $comment['comment_author_url'] = '';
2999                         if ( isset($content_struct['author_url']) )
3000                                 $comment['comment_author_url'] = $content_struct['author_url'];
3001
3002                         $comment['user_ID'] = 0;
3003
3004                         if ( get_option('require_name_email') ) {
3005                                 if ( 6 > strlen($comment['comment_author_email']) || '' == $comment['comment_author'] )
3006                                         return new IXR_Error( 403, __( 'Comment author name and email are required' ) );
3007                                 elseif ( !is_email($comment['comment_author_email']) )
3008                                         return new IXR_Error( 403, __( 'A valid email address is required' ) );
3009                         }
3010                 }
3011
3012                 $comment['comment_parent'] = isset($content_struct['comment_parent']) ? absint($content_struct['comment_parent']) : 0;
3013
3014                 $comment['comment_content'] =  isset($content_struct['content']) ? $content_struct['content'] : null;
3015
3016                 do_action('xmlrpc_call', 'wp.newComment');
3017
3018                 $comment_ID = wp_new_comment( $comment );
3019
3020                 do_action( 'xmlrpc_call_success_wp_newComment', $comment_ID, $args );
3021
3022                 return $comment_ID;
3023         }
3024
3025         /**
3026          * Retrieve all of the comment status.
3027          *
3028          * @since 2.7.0
3029          *
3030          * @param array $args Method parameters.
3031          * @return array
3032          */
3033         function wp_getCommentStatusList($args) {
3034                 $this->escape( $args );
3035
3036                 $blog_id        = (int) $args[0];
3037                 $username       = $args[1];
3038                 $password       = $args[2];
3039
3040                 if ( !$user = $this->login($username, $password) )
3041                         return $this->error;
3042
3043                 if ( !current_user_can( 'moderate_comments' ) )
3044                         return new IXR_Error( 403, __( 'You are not allowed access to details about this site.' ) );
3045
3046                 do_action('xmlrpc_call', 'wp.getCommentStatusList');
3047
3048                 return get_comment_statuses();
3049         }
3050
3051         /**
3052          * Retrieve comment count.
3053          *
3054          * @since 2.5.0
3055          *
3056          * @param array $args Method parameters.
3057          * @return array
3058          */
3059         function wp_getCommentCount( $args ) {
3060                 $this->escape($args);
3061
3062                 $blog_id        = (int) $args[0];
3063                 $username       = $args[1];
3064                 $password       = $args[2];
3065                 $post_id        = (int) $args[3];
3066
3067                 if ( !$user = $this->login($username, $password) )
3068                         return $this->error;
3069
3070                 if ( !current_user_can( 'edit_posts' ) )
3071                         return new IXR_Error( 403, __( 'You are not allowed access to details about comments.' ) );
3072
3073                 do_action('xmlrpc_call', 'wp.getCommentCount');
3074
3075                 $count = wp_count_comments( $post_id );
3076                 return array(
3077                         'approved' => $count->approved,
3078                         'awaiting_moderation' => $count->moderated,
3079                         'spam' => $count->spam,
3080                         'total_comments' => $count->total_comments
3081                 );
3082         }
3083
3084         /**
3085          * Retrieve post statuses.
3086          *
3087          * @since 2.5.0
3088          *
3089          * @param array $args Method parameters.
3090          * @return array
3091          */
3092         function wp_getPostStatusList( $args ) {
3093                 $this->escape( $args );
3094
3095                 $blog_id        = (int) $args[0];
3096                 $username       = $args[1];
3097                 $password       = $args[2];
3098
3099                 if ( !$user = $this->login($username, $password) )
3100                         return $this->error;
3101
3102                 if ( !current_user_can( 'edit_posts' ) )
3103                         return new IXR_Error( 403, __( 'You are not allowed access to details about this site.' ) );
3104
3105                 do_action('xmlrpc_call', 'wp.getPostStatusList');
3106
3107                 return get_post_statuses();
3108         }
3109
3110         /**
3111          * Retrieve page statuses.
3112          *
3113          * @since 2.5.0
3114          *
3115          * @param array $args Method parameters.
3116          * @return array
3117          */
3118         function wp_getPageStatusList( $args ) {
3119                 $this->escape( $args );
3120
3121                 $blog_id        = (int) $args[0];
3122                 $username       = $args[1];
3123                 $password       = $args[2];
3124
3125                 if ( !$user = $this->login($username, $password) )
3126                         return $this->error;
3127
3128                 if ( !current_user_can( 'edit_pages' ) )
3129                         return new IXR_Error( 403, __( 'You are not allowed access to details about this site.' ) );
3130
3131                 do_action('xmlrpc_call', 'wp.getPageStatusList');
3132
3133                 return get_page_statuses();
3134         }
3135
3136         /**
3137          * Retrieve page templates.
3138          *
3139          * @since 2.6.0
3140          *
3141          * @param array $args Method parameters.
3142          * @return array
3143          */
3144         function wp_getPageTemplates( $args ) {
3145                 $this->escape( $args );
3146
3147                 $blog_id        = (int) $args[0];
3148                 $username       = $args[1];
3149                 $password       = $args[2];
3150
3151                 if ( !$user = $this->login($username, $password) )
3152                         return $this->error;
3153
3154                 if ( !current_user_can( 'edit_pages' ) )
3155                         return new IXR_Error( 403, __( 'You are not allowed access to details about this site.' ) );
3156
3157                 $templates = get_page_templates();
3158                 $templates['Default'] = 'default';
3159
3160                 return $templates;
3161         }
3162
3163         /**
3164          * Retrieve blog options.
3165          *
3166          * @since 2.6.0
3167          *
3168          * @param array $args Method parameters.
3169          * @return array
3170          */
3171         function wp_getOptions( $args ) {
3172                 $this->escape( $args );
3173
3174          &nb