* @since 1.5.0
*/
class wp_xmlrpc_server extends IXR_Server {
-
+ /**
+ * @var array
+ */
+ public $methods;
+ /**
+ * @var array
+ */
+ public $blog_options;
+ /**
+ * @var IXR_Error
+ */
+ public $error;
/**
* Register all of the XMLRPC methods that XMLRPC server understands.
*
* or replace XMLRPC methods.
*
* @since 1.5.0
- *
- * @return wp_xmlrpc_server
*/
- function __construct() {
+ public function __construct() {
$this->methods = array(
// WordPress API
'wp.getUsersBlogs' => 'this:wp_getUsersBlogs',
'wp.deleteCategory' => 'this:wp_deleteCategory',
'wp.suggestCategories' => 'this:wp_suggestCategories',
'wp.uploadFile' => 'this:mw_newMediaObject', // Alias
+ 'wp.deleteFile' => 'this:wp_deletePost', // Alias
'wp.getCommentCount' => 'this:wp_getCommentCount',
'wp.getPostStatusList' => 'this:wp_getPostStatusList',
'wp.getPageStatusList' => 'this:wp_getPageStatusList',
$this->methods = apply_filters( 'xmlrpc_methods', $this->methods );
}
- function serve_request() {
+ /**
+ * Make private/protected methods readable for backwards compatibility.
+ *
+ * @since 4.0.0
+ * @access public
+ *
+ * @param callable $name Method to call.
+ * @param array $arguments Arguments to pass when calling.
+ * @return mixed|bool Return value of the callback, false otherwise.
+ */
+ public function __call( $name, $arguments ) {
+ if ( '_multisite_getUsersBlogs' === $name ) {
+ return call_user_func_array( array( $this, $name ), $arguments );
+ }
+ return false;
+ }
+
+ public function serve_request() {
$this->IXR_Server($this->methods);
}
* @param array $args Method Parameters.
* @return string
*/
- function sayHello($args) {
+ public function sayHello($args) {
return 'Hello!';
}
* @param array $args Method Parameters.
* @return int
*/
- function addTwoNumbers($args) {
+ public function addTwoNumbers($args) {
$number1 = $args[0];
$number2 = $args[1];
return $number1 + $number2;
*
* @param string $username User's username.
* @param string $password User's password.
- * @return mixed WP_User object if authentication passed, false otherwise
+ * @return WP_User|bool WP_User object if authentication passed, false otherwise
*/
- function login( $username, $password ) {
+ public function login( $username, $password ) {
/*
* Respect old get_option() filters left for back-compat when the 'enable_xmlrpc'
* option was deprecated in 3.5.0. Use the 'xmlrpc_enabled' hook instead.
* @param string $password User's password.
* @return bool Whether authentication passed.
*/
- function login_pass_ok( $username, $password ) {
+ public function login_pass_ok( $username, $password ) {
return (bool) $this->login( $username, $password );
}
* @param string|array $data Escape single string or array of strings.
* @return string|array Type matches $data and sanitized for the database.
*/
- function escape( &$data ) {
+ public function escape( &$data ) {
if ( ! is_array( $data ) )
return wp_slash( $data );
* @param int $post_id Post ID.
* @return array Custom fields, if exist.
*/
- function get_custom_fields($post_id) {
+ public function get_custom_fields($post_id) {
$post_id = (int) $post_id;
$custom_fields = array();
* @param int $post_id Post ID.
* @param array $fields Custom fields.
*/
- function set_custom_fields($post_id, $fields) {
+ public function set_custom_fields($post_id, $fields) {
$post_id = (int) $post_id;
foreach ( (array) $fields as $meta ) {
*
* @since 2.6.0
*/
- function initialise_blog_option_info() {
+ public function initialise_blog_option_info() {
global $wp_version;
$this->blog_options = array(
* @param array $args Method parameters. Contains:
* - username
* - password
- * @return array. Contains:
+ * @return array|IXR_Error Array contains:
* - 'isAdmin'
* - 'url'
* - 'blogid'
* - 'blogName'
* - 'xmlrpc' - url of xmlrpc endpoint
*/
- function wp_getUsersBlogs( $args ) {
+ public function wp_getUsersBlogs( $args ) {
// If this isn't on WPMU then just use blogger_getUsersBlogs
if ( !is_multisite() ) {
array_unshift( $args, 1 );
// Pull the categories info together.
$categories = array();
- foreach ( wp_get_post_categories( $page->ID ) as $cat_id ) {
- $categories[] = get_cat_name( $cat_id );
+ if ( is_object_in_taxonomy( 'page', 'category' ) ) {
+ foreach ( wp_get_post_categories( $page->ID ) as $cat_id ) {
+ $categories[] = get_cat_name( $cat_id );
+ }
}
// Get the author info.
*/
protected function _prepare_comment( $comment ) {
// Format page date.
- $comment_date = $this->_convert_date( $comment->comment_date );
$comment_date_gmt = $this->_convert_date_gmt( $comment->comment_date_gmt, $comment->comment_date );
- if ( '0' == $comment->comment_approved )
+ if ( '0' == $comment->comment_approved ) {
$comment_status = 'hold';
- else if ( 'spam' == $comment->comment_approved )
+ } elseif ( 'spam' == $comment->comment_approved ) {
$comment_status = 'spam';
- else if ( '1' == $comment->comment_approved )
+ } elseif ( '1' == $comment->comment_approved ) {
$comment_status = 'approve';
- else
+ } else {
$comment_status = $comment->comment_approved;
-
+ }
$_comment = array(
'date_created_gmt' => $comment_date_gmt,
'user_id' => $comment->user_id,
* @since 3.4.0
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $content_struct
* - terms_names - array, with taxonomy names as keys and arrays of term names as values
* - enclosure
* - any other fields supported by wp_insert_post()
- * @return string post_id
+ * @return string|IXR_Error post_id
*/
- function wp_newPost( $args ) {
+ public function wp_newPost( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$content_struct = $args[3];
if ( ! $user = $this->login( $username, $password ) )
return $this->error;
+ // convert the date field back to IXR form
+ if ( isset( $content_struct['post_date'] ) && ! ( $content_struct['post_date'] instanceof IXR_Date ) ) {
+ $content_struct['post_date'] = $this->_convert_date( $content_struct['post_date'] );
+ }
+
+ // ignore the existing GMT date if it is empty or a non-GMT date was supplied in $content_struct,
+ // since _insert_post will ignore the non-GMT date if the GMT date is set
+ if ( isset( $content_struct['post_date_gmt'] ) && ! ( $content_struct['post_date_gmt'] instanceof IXR_Date ) ) {
+ if ( $content_struct['post_date_gmt'] == '0000-00-00 00:00:00' || isset( $content_struct['post_date'] ) ) {
+ unset( $content_struct['post_date_gmt'] );
+ } else {
+ $content_struct['post_date_gmt'] = $this->_convert_date( $content_struct['post_date_gmt'] );
+ }
+ }
+
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'wp.newPost' );
return $count > 1;
}
+ private function _validate_boolean( $var ) {
+ if ( is_bool( $var ) ) {
+ return $var;
+ }
+
+ if ( is_string( $var ) && 'false' === strtolower( $var ) ) {
+ return false;
+ }
+
+ return (bool) $var;
+ }
+
+ /**
+ * Encapsulate the logic for sticking a post
+ * and determining if the user has permission to do so
+ *
+ * @since 4.3.0
+ * @access private
+ *
+ * @param array $post_data
+ * @param bool $update
+ * @return void|IXR_Error
+ */
+ private function _toggle_sticky( $post_data, $update = false ) {
+ $post_type = get_post_type_object( $post_data['post_type'] );
+
+ // Private and password-protected posts cannot be stickied.
+ if ( 'private' === $post_data['post_status'] || ! empty( $post_data['post_password'] ) ) {
+ // Error if the client tried to stick the post, otherwise, silently unstick.
+ if ( ! empty( $post_data['sticky'] ) ) {
+ return new IXR_Error( 401, __( 'Sorry, you cannot stick a private post.' ) );
+ }
+
+ if ( $update ) {
+ unstick_post( $post_data['ID'] );
+ }
+ } elseif ( isset( $post_data['sticky'] ) ) {
+ if ( ! current_user_can( $post_type->cap->edit_others_posts ) ) {
+ return new IXR_Error( 401, __( 'Sorry, you are not allowed to stick this post.' ) );
+ }
+
+ $sticky = $this->_validate_boolean( $post_data['sticky'] );
+ if ( $sticky ) {
+ stick_post( $post_data['ID'] );
+ } else {
+ unstick_post( $post_data['ID'] );
+ }
+ }
+ }
+
/**
* Helper method for wp_newPost and wp_editPost, containing shared logic.
*
* @uses wp_insert_post()
*
* @param WP_User $user The post author if post_author isn't set in $content_struct.
- * @param array $content_struct Post data to insert.
+ * @param array|IXR_Error $content_struct Post data to insert.
*/
protected function _insert_post( $user, $content_struct ) {
$defaults = array( 'post_status' => 'draft', 'post_type' => 'post', 'post_author' => 0,
$post_ID = $post_data['ID'];
if ( $post_data['post_type'] == 'post' ) {
- // Private and password-protected posts cannot be stickied.
- if ( $post_data['post_status'] == 'private' || ! empty( $post_data['post_password'] ) ) {
- // Error if the client tried to stick the post, otherwise, silently unstick.
- if ( ! empty( $post_data['sticky'] ) )
- return new IXR_Error( 401, __( 'Sorry, you cannot stick a private post.' ) );
- if ( $update )
- unstick_post( $post_ID );
- } elseif ( isset( $post_data['sticky'] ) ) {
- if ( ! current_user_can( $post_type->cap->edit_others_posts ) )
- return new IXR_Error( 401, __( 'Sorry, you are not allowed to stick this post.' ) );
- if ( $post_data['sticky'] )
- stick_post( $post_ID );
- else
- unstick_post( $post_ID );
+ $error = $this->_toggle_sticky( $post_data, $update );
+ if ( $error ) {
+ return $error;
}
}
* @since 3.4.0
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - int $post_id
* - array $content_struct
- * @return true on success
+ * @return bool|IXR_Error true on success
*/
- function wp_editPost( $args ) {
+ public function wp_editPost( $args ) {
if ( ! $this->minimum_args( $args, 5 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_id = (int) $args[3];
*
* @uses wp_delete_post()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - int $post_id
- * @return true on success
+ * @return bool|IXR_Error true on success
*/
- function wp_deletePost( $args ) {
+ public function wp_deletePost( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_id = (int) $args[3];
*
* @uses get_post()
* @param array $args Method parameters. Contains:
- * - int $post_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
+ * - int $post_id
* - array $fields optional
- * @return array contains (based on $fields parameter):
+ * @return array|IXR_Error Array contains (based on $fields parameter):
* - 'post_id'
* - 'post_title'
* - 'post_date'
* - 'tags'
* - 'enclosure'
*/
- function wp_getPost( $args ) {
+ public function wp_getPost( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_id = (int) $args[3];
* @see get_posts() for more on $filter values
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $filter optional
* - array $fields optional
- * @return array contains a collection of posts.
+ * @return array|IXR_Error Array contains a collection of posts.
*/
- function wp_getPosts( $args ) {
+ public function wp_getPosts( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$filter = isset( $args[3] ) ? $args[3] : array();
*
* @uses wp_insert_term()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $content_struct
* - 'parent'
* - 'description'
* - 'slug'
- * @return string term_id
+ * @return string|IXR_Error term_id
*/
- function wp_newTerm( $args ) {
+ public function wp_newTerm( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$content_struct = $args[3];
*
* @uses wp_update_term()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $term_id
* - 'parent'
* - 'description'
* - 'slug'
- * @return bool True, on success.
+ * @return bool|IXR_Error True, on success.
*/
- function wp_editTerm( $args ) {
+ public function wp_editTerm( $args ) {
if ( ! $this->minimum_args( $args, 5 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$term_id = (int) $args[3];
*
* @uses wp_delete_term()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $taxnomy_name
* - string $term_id
* @return boolean|IXR_Error If it suceeded true else a reason why not
*/
- function wp_deleteTerm( $args ) {
+ public function wp_deleteTerm( $args ) {
if ( ! $this->minimum_args( $args, 5 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$taxonomy = $args[3];
*
* @uses get_term()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $taxonomy
* - string $term_id
- * @return array contains:
+ * @return array|IXR_Error Array contains:
* - 'term_id'
* - 'name'
* - 'slug'
* - 'parent'
* - 'count'
*/
- function wp_getTerm( $args ) {
+ public function wp_getTerm( $args ) {
if ( ! $this->minimum_args( $args, 5 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$taxonomy = $args[3];
*
* @uses get_terms()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $taxonomy
* - array $filter optional
- * @return array terms
+ * @return array|IXR_Error terms
*/
- function wp_getTerms( $args ) {
+ public function wp_getTerms( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$taxonomy = $args[3];
*
* @uses get_taxonomy()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $taxonomy
- * @return array (@see get_taxonomy())
+ * @return array|IXR_Error (@see get_taxonomy())
*/
- function wp_getTaxonomy( $args ) {
+ public function wp_getTaxonomy( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$taxonomy = $args[3];
*
* @uses get_taxonomies()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* @return array taxonomies
*/
- function wp_getTaxonomies( $args ) {
+ public function wp_getTaxonomies( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$filter = isset( $args[3] ) ? $args[3] : array( 'public' => true );
*
* @uses get_userdata()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - int $user_id
* - array $fields optional
- * @return array contains (based on $fields parameter):
+ * @return array|IXR_Error Array contains (based on $fields parameter):
* - 'user_id'
* - 'username'
* - 'first_name'
* - 'display_name'
* - 'roles'
*/
- function wp_getUser( $args ) {
+ public function wp_getUser( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$user_id = (int) $args[3];
* @see wp_getUser() for more on $fields and return values
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $filter optional
* - array $fields optional
- * @return array users data
+ * @return array|IXR_Error users data
*/
- function wp_getUsers( $args ) {
+ public function wp_getUsers( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$filter = isset( $args[3] ) ? $args[3] : array();
*
* @uses get_userdata()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $fields optional
- * @return array (@see wp_getUser)
+ * @return array|IXR_Error (@see wp_getUser)
*/
- function wp_getProfile( $args ) {
+ public function wp_getProfile( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
*
* @uses wp_update_user()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $content_struct
* - 'nickname'
* - 'nicename'
* - 'bio'
- * @return bool True, on success.
+ * @return bool|IXR_Error True, on success.
*/
- function wp_editProfile( $args ) {
+ public function wp_editProfile( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$content_struct = $args[3];
* @since 2.2.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - page_id
* - username
* - password
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPage($args) {
+ public function wp_getPage($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$page_id = (int) $args[1];
$username = $args[2];
$password = $args[3];
}
// If the page doesn't exist indicate that.
else {
- return(new IXR_Error(404, __('Sorry, no such page.')));
+ return new IXR_Error( 404, __( 'Sorry, no such page.' ) );
}
}
* @since 2.2.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
* - num_pages
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPages($args) {
+ public function wp_getPages($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$num_pages = isset($args[3]) ? (int) $args[3] : 10;
$pages_struct[] = $this->_prepare_page( $page );
}
- return($pages_struct);
- }
- // If no pages were found return an error.
- else {
- return(array());
+ return $pages_struct;
}
+
+ return array();
}
/**
* @since 2.2.0
*
* @param array $args Method parameters. See {@link wp_xmlrpc_server::mw_newPost()}
- * @return unknown
+ * @return int|IXR_Error
*/
- function wp_newPage($args) {
+ public function wp_newPage($args) {
// Items not escaped here will be escaped in newPost.
$username = $this->escape($args[1]);
$password = $this->escape($args[2]);
- $page = $args[3];
- $publish = $args[4];
if ( !$user = $this->login($username, $password) )
return $this->error;
$args[3]["post_type"] = 'page';
// Let mw_newPost do all of the heavy lifting.
- return($this->mw_newPost($args));
+ return $this->mw_newPost( $args );
}
/**
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return bool True, if success.
+ * @return bool|IXR_Error True, if success.
*/
- function wp_deletePage($args) {
+ public function wp_deletePage($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$page_id = (int) $args[3];
// make sure it is a page and not a post.
$actual_page = get_post($page_id, ARRAY_A);
if ( !$actual_page || ($actual_page['post_type'] != 'page') )
- return(new IXR_Error(404, __('Sorry, no such page.')));
+ return new IXR_Error( 404, __( 'Sorry, no such page.' ) );
// Make sure the user can delete pages.
if ( !current_user_can('delete_page', $page_id) )
- return(new IXR_Error(401, __('Sorry, you do not have the right to delete this page.')));
+ return new IXR_Error( 401, __( 'Sorry, you do not have the right to delete this page.' ) );
// Attempt to delete the page.
$result = wp_delete_post($page_id);
if ( !$result )
- return(new IXR_Error(500, __('Failed to delete the page.')));
+ return new IXR_Error( 500, __( 'Failed to delete the page.' ) );
/**
* Fires after a page has been successfully deleted via XML-RPC.
*/
do_action( 'xmlrpc_call_success_wp_deletePage', $page_id, $args );
- return(true);
+ return true;
}
/**
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return unknown
+ * @return array|IXR_Error
*/
- function wp_editPage($args) {
+ public function wp_editPage($args) {
// Items not escaped here will be escaped in editPost.
- $blog_id = (int) $args[0];
$page_id = (int) $this->escape($args[1]);
$username = $this->escape($args[2]);
$password = $this->escape($args[3]);
// Get the page data and make sure it is a page.
$actual_page = get_post($page_id, ARRAY_A);
if ( !$actual_page || ($actual_page['post_type'] != 'page') )
- return(new IXR_Error(404, __('Sorry, no such page.')));
+ return new IXR_Error( 404, __( 'Sorry, no such page.' ) );
// Make sure the user is allowed to edit pages.
if ( !current_user_can('edit_page', $page_id) )
- return(new IXR_Error(401, __('Sorry, you do not have the right to edit this page.')));
+ return new IXR_Error( 401, __( 'Sorry, you do not have the right to edit this page.' ) );
// Mark this as content for a page.
$content['post_type'] = 'page';
);
// Let mw_editPost do all of the heavy lifting.
- return($this->mw_editPost($args));
+ return $this->mw_editPost( $args );
}
/**
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return unknown
+ * @return array|IXR_Error
*/
- function wp_getPageList($args) {
+ public function wp_getPageList($args) {
global $wpdb;
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
unset($page_list[$i]->post_status);
}
- return($page_list);
+ return $page_list;
}
/**
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getAuthors($args) {
+ public function wp_getAuthors($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
return $this->error;
if ( !current_user_can('edit_posts') )
- return(new IXR_Error(401, __('Sorry, you cannot edit posts on this site.')));
+ return new IXR_Error( 401, __( 'Sorry, you cannot edit posts on this site.' ) );
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'wp.getAuthors' );
* @since 2.7.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getTags( $args ) {
+ public function wp_getTags( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
if ( $all_tags = get_tags() ) {
foreach( (array) $all_tags as $tag ) {
+ $struct = array();
$struct['tag_id'] = $tag->term_id;
$struct['name'] = $tag->name;
$struct['count'] = $tag->count;
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return int Category ID.
+ * @return int|IXR_Error Category ID.
*/
- function wp_newCategory($args) {
+ public function wp_newCategory($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$category = $args[3];
// Make sure the user is allowed to add a category.
if ( !current_user_can('manage_categories') )
- return(new IXR_Error(401, __('Sorry, you do not have the right to add a category.')));
+ return new IXR_Error(401, __('Sorry, you do not have the right to add a category.'));
// If no slug was provided make it empty so that
// WordPress will generate one.
if ( 'term_exists' == $cat_id->get_error_code() )
return (int) $cat_id->get_error_data();
else
- return(new IXR_Error(500, __('Sorry, the new category failed.')));
+ return new IXR_Error(500, __('Sorry, the new category failed.'));
} elseif ( ! $cat_id ) {
- return(new IXR_Error(500, __('Sorry, the new category failed.')));
+ return new IXR_Error(500, __('Sorry, the new category failed.'));
}
/**
* @since 2.5.0
*
* @param array $args Method parameters.
- * @return mixed See {@link wp_delete_term()} for return info.
+ * @return bool|IXR_Error See {@link wp_delete_term()} for return info.
*/
- function wp_deleteCategory($args) {
+ public function wp_deleteCategory($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$category_id = (int) $args[3];
* @since 2.2.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_suggestCategories($args) {
+ public function wp_suggestCategories($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$category = $args[3];
return $this->error;
if ( !current_user_can( 'edit_posts' ) )
- return new IXR_Error( 401, __( 'Sorry, you must be able to edit posts to this site in order to view categories.' ) );
+ return new IXR_Error( 401, __( 'Sorry, you must be able to edit posts on this site in order to view categories.' ) );
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'wp.suggestCategories' );
);
}
- return($category_suggestions);
+ return $category_suggestions;
}
/**
* @since 2.7.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getComment($args) {
+ public function wp_getComment($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$comment_id = (int) $args[3];
/**
* Retrieve comments.
*
- * Besides the common blog_id, username, and password arguments, it takes a filter
+ * Besides the common blog_id (unused), username, and password arguments, it takes a filter
* array as last argument.
*
* Accepted 'filter' keys are 'status', 'post_id', 'offset', and 'number'.
* @since 2.7.0
*
* @param array $args Method parameters.
- * @return array. Contains a collection of comments. See {@link wp_xmlrpc_server::wp_getComment()} for a description of each item contents
+ * @return array|IXR_Error Contains a collection of comments. See {@link wp_xmlrpc_server::wp_getComment()} for a description of each item contents
*/
- function wp_getComments($args) {
+ public function wp_getComments($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$struct = isset( $args[3] ) ? $args[3] : array();
* @since 2.7.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
* - comment_id
- * @return mixed {@link wp_delete_comment()}
+ * @return bool|IXR_Error {@link wp_delete_comment()}
*/
- function wp_deleteComment($args) {
+ public function wp_deleteComment($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$comment_ID = (int) $args[3];
/**
* Edit comment.
*
- * Besides the common blog_id, username, and password arguments, it takes a
+ * Besides the common blog_id (unused), username, and password arguments, it takes a
* comment_id integer and a content_struct array as last argument.
*
* The allowed keys in the content_struct array are:
*
* @since 2.7.0
*
- * @param array $args. Contains:
- * - blog_id
+ * @param array $args Contains:
+ * - blog_id (unused)
* - username
* - password
* - comment_id
* - content_struct
- * @return bool True, on success.
+ * @return bool|IXR_Error True, on success.
*/
- function wp_editComment($args) {
+ public function wp_editComment($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$comment_ID = (int) $args[3];
* @since 2.7.0
*
* @param array $args Method parameters.
- * @return mixed {@link wp_new_comment()}
+ * @return int|IXR_Error {@link wp_new_comment()}
*/
- function wp_newComment($args) {
- global $wpdb;
-
+ public function wp_newComment($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post = $args[3];
if ( !$user ) {
$logged_in = false;
- if ( $allow_anon && get_option('comment_registration') )
+ if ( $allow_anon && get_option('comment_registration') ) {
return new IXR_Error( 403, __( 'You must be registered to comment' ) );
- else if ( !$allow_anon )
+ } elseif ( ! $allow_anon ) {
return $this->error;
+ }
} else {
$logged_in = true;
}
if ( ! get_post($post_id) )
return new IXR_Error( 404, __( 'Invalid post ID.' ) );
+ $comment = array();
$comment['comment_post_ID'] = $post_id;
if ( $logged_in ) {
* @since 2.7.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getCommentStatusList($args) {
+ public function wp_getCommentStatusList($args) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
* @since 2.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getCommentCount( $args ) {
+ public function wp_getCommentCount( $args ) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_id = (int) $args[3];
* @since 2.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPostStatusList( $args ) {
+ public function wp_getPostStatusList( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
* @since 2.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPageStatusList( $args ) {
+ public function wp_getPageStatusList( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
* @since 2.6.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPageTemplates( $args ) {
+ public function wp_getPageTemplates( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
* @since 2.6.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getOptions( $args ) {
+ public function wp_getOptions( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$options = isset( $args[3] ) ? (array) $args[3] : array();
* @param array $options Options to retrieve.
* @return array
*/
- function _getOptions($options) {
+ public function _getOptions($options) {
$data = array();
$can_manage = current_user_can( 'manage_options' );
foreach ( $options as $option ) {
* @since 2.6.0
*
* @param array $args Method parameters.
- * @return unknown
+ * @return array|IXR_Error
*/
- function wp_setOptions( $args ) {
+ public function wp_setOptions( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$options = (array) $args[3];
if ( !current_user_can( 'manage_options' ) )
return new IXR_Error( 403, __( 'You are not allowed to update options.' ) );
+ $option_names = array();
foreach ( $options as $o_name => $o_value ) {
$option_names[] = $o_name;
if ( !array_key_exists( $o_name, $this->blog_options ) )
* @since 3.1.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
* - attachment_id
- * @return array. Associative array containing:
+ * @return array|IXR_Error Associative array contains:
* - 'date_created_gmt'
* - 'parent'
* - 'link'
* - 'description'
* - 'metadata'
*/
- function wp_getMediaItem($args) {
+ public function wp_getMediaItem($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$attachment_id = (int) $args[3];
/**
* Retrieves a collection of media library items (or attachments)
*
- * Besides the common blog_id, username, and password arguments, it takes a filter
+ * Besides the common blog_id (unused), username, and password arguments, it takes a filter
* array as last argument.
*
* Accepted 'filter' keys are 'parent_id', 'mime_type', 'offset', and 'number'.
* @since 3.1.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
* - filter
- * @return array. Contains a collection of media items. See {@link wp_xmlrpc_server::wp_getMediaItem()} for a description of each item contents
+ * @return array|IXR_Error Contains a collection of media items. See {@link wp_xmlrpc_server::wp_getMediaItem()} for a description of each item contents
*/
- function wp_getMediaLibrary($args) {
+ public function wp_getMediaLibrary($args) {
$this->escape($args);
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$struct = isset( $args[3] ) ? $args[3] : array() ;
* @since 3.1.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPostFormats( $args ) {
+ public function wp_getPostFormats( $args ) {
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$formats = get_post_format_strings();
- # find out if they want a list of currently supports formats
+ // find out if they want a list of currently supports formats
if ( isset( $args[3] ) && is_array( $args[3] ) ) {
if ( $args[3]['show-supported'] ) {
if ( current_theme_supports( 'post-formats' ) ) {
$supported = get_theme_support( 'post-formats' );
+ $data = array();
$data['all'] = $formats;
$data['supported'] = $supported[0];
*
* @uses get_post_type_object()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - string $post_type_name
* - array $fields
- * @return array contains:
+ * @return array|IXR_Error Array contains:
* - 'labels'
* - 'description'
* - 'capability_type'
* - 'taxonomies'
* - 'supports'
*/
- function wp_getPostType( $args ) {
+ public function wp_getPostType( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_type_name = $args[3];
*
* @uses get_post_types()
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - array $filter
* - array $fields
- * @return array
+ * @return array|IXR_Error
*/
- function wp_getPostTypes( $args ) {
+ public function wp_getPostTypes( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$filter = isset( $args[3] ) ? $args[3] : array( 'public' => true );
* @see wp_getPost() for more on $fields
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - int $post_id
* - array $fields
- * @return array contains a collection of posts.
+ * @return array|IXR_Error contains a collection of posts.
*/
- function wp_getRevisions( $args ) {
+ public function wp_getRevisions( $args ) {
if ( ! $this->minimum_args( $args, 4 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$post_id = (int) $args[3];
* @uses wp_restore_post_revision()
*
* @param array $args Method parameters. Contains:
- * - int $blog_id
+ * - int $blog_id (unused)
* - string $username
* - string $password
* - int $post_id
- * @return bool false if there was an error restoring, true if success.
+ * @return bool|IXR_Error false if there was an error restoring, true if success.
*/
- function wp_restoreRevision( $args ) {
+ public function wp_restoreRevision( $args ) {
if ( ! $this->minimum_args( $args, 3 ) )
return $this->error;
$this->escape( $args );
- $blog_id = (int) $args[0];
$username = $args[1];
$password = $args[2];
$revision_id = (int) $args[3];
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function blogger_getUsersBlogs($args) {
+ public function blogger_getUsersBlogs($args) {
if ( is_multisite() )
return $this->_multisite_getUsersBlogs($args);
* Private function for retrieving a users blogs for multisite setups
*
* @access protected
+ *
+ * @return array|IXR_Error
*/
- function _multisite_getUsersBlogs($args) {
+ protected function _multisite_getUsersBlogs($args) {
$current_blog = get_blog_details();
$domain = $current_blog->domain;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function blogger_getUserInfo($args) {
+ public function blogger_getUserInfo($args) {
$this->escape($args);
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function blogger_getPost($args) {
+ public function blogger_getPost($args) {
$this->escape($args);
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function blogger_getRecentPosts($args) {
+ public function blogger_getRecentPosts($args) {
$this->escape($args);
// $args[0] = appkey - ignored
- $blog_ID = (int) $args[1]; /* though we don't use it yet */
$username = $args[2];
$password = $args[3];
if ( isset( $args[4] ) )
return $this->error;
}
+ $recent_posts = array();
foreach ($posts_list as $entry) {
if ( !current_user_can( 'edit_post', $entry['ID'] ) )
continue;
$content .= '<category>'.$categories.'</category>';
$content .= wp_unslash($entry['post_content']);
- $struct[] = array(
+ $recent_posts[] = array(
'userid' => $entry['post_author'],
'dateCreated' => $post_date,
'content' => $content,
'postid' => (string) $entry['ID'],
);
-
- }
-
- $recent_posts = array();
- for ( $j=0; $j<count($struct); $j++ ) {
- array_push($recent_posts, $struct[$j]);
}
return $recent_posts;
*
* @since 1.5.0
* @deprecated 3.5.0
+ * @return IXR_Error
*/
- function blogger_getTemplate($args) {
+ public function blogger_getTemplate($args) {
return new IXR_Error( 403, __('Sorry, that file cannot be edited.' ) );
}
*
* @since 1.5.0
* @deprecated 3.5.0
+ * @return IXR_Error
*/
- function blogger_setTemplate($args) {
+ public function blogger_setTemplate($args) {
return new IXR_Error( 403, __('Sorry, that file cannot be edited.' ) );
}
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return int
+ * @return int|IXR_Error
*/
- function blogger_newPost($args) {
+ public function blogger_newPost($args) {
$this->escape($args);
- $blog_ID = (int) $args[1]; /* though we don't use it yet */
$username = $args[2];
$password = $args[3];
$content = $args[4];
$post_date = current_time('mysql');
$post_date_gmt = current_time('mysql', 1);
- $post_data = compact('blog_ID', 'post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_title', 'post_category', 'post_status');
+ $post_data = compact('post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_title', 'post_category', 'post_status');
$post_ID = wp_insert_post($post_data);
if ( is_wp_error( $post_ID ) )
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return bool true when done.
+ * @return bool|IXR_Error true when done.
*/
- function blogger_editPost($args) {
+ public function blogger_editPost( $args ) {
$this->escape($args);
$username = $args[2];
$password = $args[3];
$content = $args[4];
- $publish = $args[5];
- if ( !$user = $this->login($username, $password) )
+ if ( ! $user = $this->login( $username, $password ) ) {
return $this->error;
+ }
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'blogger.editPost' );
- $actual_post = get_post($post_ID,ARRAY_A);
+ $actual_post = get_post( $post_ID, ARRAY_A );
- if ( !$actual_post || $actual_post['post_type'] != 'post' )
- return new IXR_Error(404, __('Sorry, no such post.'));
+ if ( ! $actual_post || $actual_post['post_type'] != 'post' ) {
+ return new IXR_Error( 404, __( 'Sorry, no such post.' ) );
+ }
$this->escape($actual_post);
- if ( !current_user_can('edit_post', $post_ID) )
+ if ( ! current_user_can( 'edit_post', $post_ID ) ) {
return new IXR_Error(401, __('Sorry, you do not have the right to edit this post.'));
+ }
+ if ( 'publish' == $actual_post['post_status'] && ! current_user_can( 'publish_posts' ) ) {
+ return new IXR_Error( 401, __( 'Sorry, you do not have the right to publish this post.' ) );
+ }
- extract($actual_post, EXTR_SKIP);
-
- if ( ('publish' == $post_status) && !current_user_can('publish_posts') )
- return new IXR_Error(401, __('Sorry, you do not have the right to publish this post.'));
-
- $post_title = xmlrpc_getposttitle($content);
- $post_category = xmlrpc_getpostcategory($content);
- $post_content = xmlrpc_removepostdata($content);
-
- $postdata = compact('ID', 'post_content', 'post_title', 'post_category', 'post_status', 'post_excerpt');
+ $postdata = array();
+ $postdata['ID'] = $actual_post['ID'];
+ $postdata['post_content'] = xmlrpc_removepostdata( $content );
+ $postdata['post_title'] = xmlrpc_getposttitle( $content );
+ $postdata['post_category'] = xmlrpc_getpostcategory( $content );
+ $postdata['post_status'] = $actual_post['post_status'];
+ $postdata['post_excerpt'] = $actual_post['post_excerpt'];
- $result = wp_update_post($postdata);
+ $result = wp_update_post( $postdata );
- if ( !$result )
+ if ( ! $result ) {
return new IXR_Error(500, __('For some strange yet very annoying reason, this post could not be edited.'));
-
- $this->attach_uploads( $ID, $post_content );
+ }
+ $this->attach_uploads( $actual_post['ID'], $postdata['post_content'] );
/**
* Fires after a post has been successfully updated via the XML-RPC Blogger API.
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return bool True when post is deleted.
+ * @return bool|IXR_Error True when post is deleted.
*/
- function blogger_deletePost($args) {
+ public function blogger_deletePost($args) {
$this->escape($args);
$post_ID = (int) $args[1];
$username = $args[2];
$password = $args[3];
- $publish = $args[4];
if ( !$user = $this->login($username, $password) )
return $this->error;
* @since 1.5.0
*
* @param array $args Method parameters. Contains:
- * - blog_id
+ * - blog_id (unused)
* - username
* - password
* - content_struct
* - publish
- * @return int
+ * @return int|IXR_Error
*/
- function mw_newPost($args) {
+ public function mw_newPost($args) {
$this->escape($args);
- $blog_ID = (int) $args[0];
$username = $args[1];
$password = $args[2];
$content_struct = $args[3];
switch ( $post_type ) {
case "post":
if ( !current_user_can( 'edit_others_posts' ) )
- return( new IXR_Error( 401, __( 'You are not allowed to create posts as this user.' ) ) );
+ return new IXR_Error( 401, __( 'You are not allowed to create posts as this user.' ) );
break;
case "page":
if ( !current_user_can( 'edit_others_pages' ) )
- return( new IXR_Error( 401, __( 'You are not allowed to create pages as this user.' ) ) );
+ return new IXR_Error( 401, __( 'You are not allowed to create pages as this user.' ) );
break;
default:
- return( new IXR_Error( 401, __( 'Invalid post type' ) ) );
- break;
+ return new IXR_Error( 401, __( 'Invalid post type' ) );
}
$author = get_userdata( $content_struct['wp_author_id'] );
if ( ! $author )
// Only posts can be sticky
if ( $post_type == 'post' && isset( $content_struct['sticky'] ) ) {
- if ( $content_struct['sticky'] == true )
- stick_post( $post_ID );
- elseif ( $content_struct['sticky'] == false )
- unstick_post( $post_ID );
+ $data = $postdata;
+ $data['sticky'] = $content_struct['sticky'];
+ $error = $this->_toggle_sticky( $data );
+ if ( $error ) {
+ return $error;
+ }
}
if ( isset($content_struct['custom_fields']) )
return strval($post_ID);
}
- function add_enclosure_if_new( $post_ID, $enclosure ) {
+ /**
+ * @param integer $post_ID
+ * @param array $enclosure
+ */
+ public function add_enclosure_if_new( $post_ID, $enclosure ) {
if ( is_array( $enclosure ) && isset( $enclosure['url'] ) && isset( $enclosure['length'] ) && isset( $enclosure['type'] ) ) {
$encstring = $enclosure['url'] . "\n" . $enclosure['length'] . "\n" . $enclosure['type'] . "\n";
$found = false;
* @param int $post_ID Post ID.
* @param string $post_content Post Content for attachment.
*/
- function attach_uploads( $post_ID, $post_content ) {
+ public function attach_uploads( $post_ID, $post_content ) {
global $wpdb;
// find any unattached files
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return bool True on success.
+ * @return bool|IXR_Error True on success.
*/
- function mw_editPost($args) {
+ public function mw_editPost($args) {
$this->escape($args);
}
$this->escape($postdata);
- extract($postdata, EXTR_SKIP);
+
+ $ID = $postdata['ID'];
+ $post_content = $postdata['post_content'];
+ $post_title = $postdata['post_title'];
+ $post_excerpt = $postdata['post_excerpt'];
+ $post_password = $postdata['post_password'];
+ $post_parent = $postdata['post_parent'];
+ $post_type = $postdata['post_type'];
+ $menu_order = $postdata['menu_order'];
// Let WordPress manage slug if none was provided.
- $post_name = "";
$post_name = $postdata['post_name'];
if ( isset($content_struct['wp_slug']) )
$post_name = $content_struct['wp_slug'];
if ( isset($content_struct['wp_page_order']) )
$menu_order = $content_struct['wp_page_order'];
+ $page_template = null;
if ( ! empty( $content_struct['wp_page_template'] ) && 'page' == $post_type )
$page_template = $content_struct['wp_page_template'];
$post_author = $postdata['post_author'];
// Only set the post_author if one is set.
- if ( isset($content_struct['wp_author_id']) && ($user->ID != $content_struct['wp_author_id']) ) {
- switch ( $post_type ) {
- case 'post':
- if ( !current_user_can('edit_others_posts') )
- return(new IXR_Error(401, __('You are not allowed to change the post author as this user.')));
- break;
- case 'page':
- if ( !current_user_can('edit_others_pages') )
- return(new IXR_Error(401, __('You are not allowed to change the page author as this user.')));
- break;
- default:
- return(new IXR_Error(401, __('Invalid post type')));
- break;
+ if ( isset( $content_struct['wp_author_id'] ) ) {
+ // Check permissions if attempting to switch author to or from another user.
+ if ( $user->ID != $content_struct['wp_author_id'] || $user->ID != $post_author ) {
+ switch ( $post_type ) {
+ case 'post':
+ if ( ! current_user_can( 'edit_others_posts' ) ) {
+ return new IXR_Error( 401, __( 'You are not allowed to change the post author as this user.' ) );
+ }
+ break;
+ case 'page':
+ if ( ! current_user_can( 'edit_others_pages' ) ) {
+ return new IXR_Error( 401, __( 'You are not allowed to change the page author as this user.' ) );
+ }
+ break;
+ default:
+ return new IXR_Error( 401, __( 'Invalid post type' ) );
+ break;
+ }
+ $post_author = $content_struct['wp_author_id'];
}
- $post_author = $content_struct['wp_author_id'];
}
if ( isset($content_struct['mt_allow_comments']) ) {
$tags_input = isset( $content_struct['mt_keywords'] ) ? $content_struct['mt_keywords'] : null;
- if ( ('publish' == $post_status) ) {
- if ( ( 'page' == $post_type ) && !current_user_can('publish_pages') )
- return new IXR_Error(401, __('Sorry, you do not have the right to publish this page.'));
- else if ( !current_user_can('publish_posts') )
- return new IXR_Error(401, __('Sorry, you do not have the right to publish this post.'));
+ if ( 'publish' == $post_status || 'private' == $post_status ) {
+ if ( 'page' == $post_type && ! current_user_can( 'publish_pages' ) ) {
+ return new IXR_Error( 401, __( 'Sorry, you do not have the right to publish this page.' ) );
+ } elseif ( ! current_user_can( 'publish_posts' ) ) {
+ return new IXR_Error( 401, __( 'Sorry, you do not have the right to publish this post.' ) );
+ }
}
if ( $post_more )
// Only posts can be sticky
if ( $post_type == 'post' && isset( $content_struct['sticky'] ) ) {
- if ( $content_struct['sticky'] == true )
- stick_post( $post_ID );
- elseif ( $content_struct['sticky'] == false )
- unstick_post( $post_ID );
+ $data = $newpost;
+ $data['sticky'] = $content_struct['sticky'];
+ $data['post_type'] = 'post';
+ $error = $this->_toggle_sticky( $data, true );
+ if ( $error ) {
+ return $error;
+ }
}
if ( isset($content_struct['custom_fields']) )
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mw_getPost($args) {
+ public function mw_getPost($args) {
$this->escape($args);
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mw_getRecentPosts($args) {
+ public function mw_getRecentPosts($args) {
$this->escape($args);
- $blog_ID = (int) $args[0];
$username = $args[1];
$password = $args[2];
if ( isset( $args[3] ) )
if ( !$posts_list )
return array();
- $struct = array();
+ $recent_posts = array();
foreach ($posts_list as $entry) {
if ( !current_user_can( 'edit_post', $entry['ID'] ) )
continue;
if ( empty( $post_format ) )
$post_format = 'standard';
- $struct[] = array(
+ $recent_posts[] = array(
'dateCreated' => $post_date,
'userid' => $entry['post_author'],
'postid' => (string) $entry['ID'],
'date_modified' => $post_modified,
'date_modified_gmt' => $post_modified_gmt,
'sticky' => ( $entry['post_type'] === 'post' && is_sticky( $entry['ID'] ) ),
+ 'wp_post_thumbnail' => get_post_thumbnail_id( $entry['ID'] )
);
-
- $entry_index = count( $struct ) - 1;
- $struct[ $entry_index ][ 'wp_post_thumbnail' ] = get_post_thumbnail_id( $entry['ID'] );
- }
-
- $recent_posts = array();
- for ( $j=0; $j<count($struct); $j++ ) {
- array_push($recent_posts, $struct[$j]);
}
return $recent_posts;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mw_getCategories($args) {
+ public function mw_getCategories($args) {
$this->escape($args);
- $blog_ID = (int) $args[0];
$username = $args[1];
$password = $args[2];
if ( $cats = get_categories(array('get' => 'all')) ) {
foreach ( $cats as $cat ) {
+ $struct = array();
$struct['categoryId'] = $cat->term_id;
$struct['parentId'] = $cat->parent;
$struct['description'] = $cat->name;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mw_newMediaObject($args) {
+ public function mw_newMediaObject($args) {
global $wpdb;
- $blog_ID = (int) $args[0];
$username = $this->escape($args[1]);
$password = $this->escape($args[2]);
$data = $args[3];
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mt_getRecentPostTitles($args) {
+ public function mt_getRecentPostTitles($args) {
$this->escape($args);
- $blog_ID = (int) $args[0];
$username = $args[1];
$password = $args[2];
if ( isset( $args[3] ) )
return $this->error;
}
- $struct = array();
+ $recent_posts = array();
foreach ($posts_list as $entry) {
if ( !current_user_can( 'edit_post', $entry['ID'] ) )
$post_date = $this->_convert_date( $entry['post_date'] );
$post_date_gmt = $this->_convert_date_gmt( $entry['post_date_gmt'], $entry['post_date'] );
- $struct[] = array(
+ $recent_posts[] = array(
'dateCreated' => $post_date,
'userid' => $entry['post_author'],
'postid' => (string) $entry['ID'],
'post_status' => $entry['post_status'],
'date_created_gmt' => $post_date_gmt
);
-
- }
-
- $recent_posts = array();
- for ( $j=0; $j<count($struct); $j++ ) {
- array_push($recent_posts, $struct[$j]);
}
return $recent_posts;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mt_getCategoryList($args) {
+ public function mt_getCategoryList($args) {
$this->escape($args);
- $blog_ID = (int) $args[0];
$username = $args[1];
$password = $args[2];
if ( $cats = get_categories(array('hide_empty' => 0, 'hierarchical' => 0)) ) {
foreach ( $cats as $cat ) {
+ $struct = array();
$struct['categoryId'] = $cat->term_id;
$struct['categoryName'] = $cat->name;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function mt_getPostCategories($args) {
+ public function mt_getPostCategories($args) {
$this->escape($args);
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return bool True on success.
+ * @return bool|IXR_Error True on success.
*/
- function mt_setPostCategories($args) {
+ public function mt_setPostCategories($args) {
$this->escape($args);
* @param array $args Method parameters.
* @return array
*/
- function mt_supportedMethods($args) {
+ public function mt_supportedMethods($args) {
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'mt.supportedMethods' );
*
* @param array $args Method parameters.
*/
- function mt_supportedTextFilters($args) {
+ public function mt_supportedTextFilters($args) {
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
do_action( 'xmlrpc_call', 'mt.supportedTextFilters' );
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return mixed
+ * @return array|IXR_Error
*/
- function mt_getTrackbackPings($args) {
+ public function mt_getTrackbackPings($args) {
global $wpdb;
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return int
+ * @return int|IXR_Error
*/
- function mt_publishPost($args) {
+ public function mt_publishPost($args) {
$this->escape($args);
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return string|IXR_Error
*/
- function pingback_ping($args) {
+ public function pingback_ping($args) {
global $wpdb;
/** This action is documented in wp-includes/class-wp-xmlrpc-server.php */
$pagelinkedfrom = $args[0];
$pagelinkedto = $args[1];
- $title = '';
-
$pagelinkedfrom = str_replace('&', '&', $pagelinkedfrom);
$pagelinkedto = str_replace('&', '&', $pagelinkedto);
$pagelinkedto = str_replace('&', '&', $pagelinkedto);
// if so, then let's use it and drop the old code.
$urltest = parse_url($pagelinkedto);
if ( $post_ID = url_to_postid($pagelinkedto) ) {
- $way = 'url_to_postid()';
- } elseif ( preg_match('#p/[0-9]{1,}#', $urltest['path'], $match) ) {
+ // $way
+ } elseif ( isset( $urltest['path'] ) && preg_match('#p/[0-9]{1,}#', $urltest['path'], $match) ) {
// the path defines the post_ID (archives/p/XXXX)
$blah = explode('/', $match[0]);
$post_ID = (int) $blah[1];
- $way = 'from the path';
} elseif ( isset( $urltest['query'] ) && preg_match('#p=[0-9]{1,}#', $urltest['query'], $match) ) {
// the querystring defines the post_ID (?p=XXXX)
$blah = explode('=', $match[0]);
$post_ID = (int) $blah[1];
- $way = 'from the querystring';
} elseif ( isset($urltest['fragment']) ) {
// an #anchor is there, it's either...
if ( intval($urltest['fragment']) ) {
// ...an integer #XXXX (simplest case)
$post_ID = (int) $urltest['fragment'];
- $way = 'from the fragment (numeric)';
} elseif ( preg_match('/post-[0-9]+/',$urltest['fragment']) ) {
// ...a post id in the form 'post-###'
$post_ID = preg_replace('/[^0-9]+/', '', $urltest['fragment']);
- $way = 'from the fragment (post-###)';
} elseif ( is_string($urltest['fragment']) ) {
// ...or a string #title, a little more complicated
$title = preg_replace('/[^a-z0-9]/i', '.', $urltest['fragment']);
- $sql = $wpdb->prepare("SELECT ID FROM $wpdb->posts WHERE post_title RLIKE %s", like_escape( $title ) );
+ $sql = $wpdb->prepare("SELECT ID FROM $wpdb->posts WHERE post_title RLIKE %s", $title );
if (! ($post_ID = $wpdb->get_var($sql)) ) {
// returning unknown error '0' is better than die()ing
return $this->pingback_error( 0, '' );
}
- $way = 'from the fragment (title)';
}
} else {
// TODO: Attempt to extract a post ID from the given URL
* @since 1.5.0
*
* @param array $args Method parameters.
- * @return array
+ * @return array|IXR_Error
*/
- function pingback_extensions_getPingbacks($args) {
+ public function pingback_extensions_getPingbacks($args) {
global $wpdb;
return $pingbacks;
}
+ /**
+ * @param integer $code
+ * @param string $message
+ */
protected function pingback_error( $code, $message ) {
/**
* Filter the XML-RPC pingback error return.
scripts.mit.edu / autoinstalls / wordpress.git / blobdiff