]> scripts.mit.edu Git - autoinstalls/wordpress.git/blobdiff - wp-admin/install.php
scripts.mit.edu / autoinstalls / wordpress.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
WordPress 3.9-scripts
[autoinstalls/wordpress.git] / wp-admin / install.php
diff --git a/wp-admin/install.php b/wp-admin/install.php
index 2ff4f172c07153d6f19d9ea488463684c95a1948..d29c8098730ce44d4788e33a7e74a9d63ab17af9 100644 (file)
--- a/wp-admin/install.php
+++ b/wp-admin/install.php
@@ -16,7 +16,7 @@ if ( false ) {
        <title>Error: PHP is not running</title>
 </head>
 <body class="wp-core-ui">
-       <h1 id="logo"><a href="http://wordpress.org/">WordPress</a></h1>
+       <h1 id="logo"><a href="https://wordpress.org/">WordPress</a></h1>
        <h2>Error: PHP is not running</h2>
        <p>WordPress requires that your web server is running PHP. Your server does not have PHP installed, or PHP is turned off.</p>
 </body>
@@ -36,10 +36,10 @@ define( 'WP_INSTALLING', true );
 require_once( dirname( dirname( __FILE__ ) ) . '/wp-load.php' );
 
 /** Load WordPress Administration Upgrade API */
-require_once( dirname( __FILE__ ) . '/includes/upgrade.php' );
+require_once( ABSPATH . 'wp-admin/includes/upgrade.php' );
 
 /** Load wpdb */
-require_once(dirname(dirname(__FILE__)) . '/wp-includes/wp-db.php');
+require_once( ABSPATH . 'wp-includes/wp-db.php' );
 
 $step = isset( $_GET['step'] ) ? (int) $_GET['step'] : 0;
 
@@ -47,8 +47,6 @@ $step = isset( $_GET['step'] ) ? (int) $_GET['step'] : 0;
  * Display install header.
  *
  * @since 2.5.0
- * @package WordPress
- * @subpackage Installer
  */
 function display_header() {
        header( 'Content-Type: text/html; charset=utf-8' );
@@ -56,6 +54,7 @@ function display_header() {
 <!DOCTYPE html>
 <html xmlns="http://www.w3.org/1999/xhtml" <?php language_attributes(); ?>>
 <head>
+       <meta name="viewport" content="width=device-width" />
        <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
        <title><?php _e( 'WordPress &rsaquo; Installation' ); ?></title>
        <?php
@@ -63,7 +62,7 @@ function display_header() {
        ?>
 </head>
 <body class="wp-core-ui<?php if ( is_rtl() ) echo ' rtl'; ?>">
-<h1 id="logo"><a href="<?php esc_attr_e( 'http://wordpress.org/' ); ?>"><?php _e( 'WordPress' ); ?></a></h1>
+<h1 id="logo"><a href="<?php echo esc_url( __( 'https://wordpress.org/' ) ); ?>"><?php _e( 'WordPress' ); ?></a></h1>
 
 <?php
 } // end display_header()
@@ -72,8 +71,6 @@ function display_header() {
  * Display installer setup form.
  *
  * @since 2.8.0
- * @package WordPress
- * @subpackage Installer
  */
 function display_setup_form( $error = null ) {
        global $wpdb;
@@ -84,14 +81,14 @@ function display_setup_form( $error = null ) {
        if ( ! empty( $_POST ) )
                $blog_public = isset( $_POST['blog_public'] );
 
-       $weblog_title = isset( $_POST['weblog_title'] ) ? trim( stripslashes( $_POST['weblog_title'] ) ) : '';
-       $user_name = isset($_POST['user_name']) ? trim( stripslashes( $_POST['user_name'] ) ) : 'admin';
-       $admin_password = isset($_POST['admin_password']) ? trim( stripslashes( $_POST['admin_password'] ) ) : '';
-       $admin_email  = isset( $_POST['admin_email']  ) ? trim( stripslashes( $_POST['admin_email'] ) ) : '';
+       $weblog_title = isset( $_POST['weblog_title'] ) ? trim( wp_unslash( $_POST['weblog_title'] ) ) : '';
+       $user_name = isset($_POST['user_name']) ? trim( wp_unslash( $_POST['user_name'] ) ) : '';
+       $admin_password = isset($_POST['admin_password']) ? trim( wp_unslash( $_POST['admin_password'] ) ) : '';
+       $admin_email  = isset( $_POST['admin_email']  ) ? trim( wp_unslash( $_POST['admin_email'] ) ) : '';
 
        if ( ! is_null( $error ) ) {
 ?>
-<p class="message"><?php printf( __( '<strong>ERROR</strong>: %s' ), $error ); ?></p>
+<p class="message"><?php echo $error; ?></p>
 <?php } ?>
 <form id="setup" method="post" action="install.php?step=2">
        <table class="form-table">
@@ -100,11 +97,12 @@ function display_setup_form( $error = null ) {
                        <td><input name="weblog_title" type="text" id="weblog_title" size="25" value="<?php echo esc_attr( $weblog_title ); ?>" /></td>
                </tr>
                <tr>
-                       <th scope="row"><label for="user_name"><?php _e('Username'); ?></label></th>
+                       <th scope="row"><label for="user_login"><?php _e('Username'); ?></label></th>
                        <td>
                        <?php
                        if ( $user_table ) {
                                _e('User(s) already exists.');
+                               echo '<input name="user_name" type="hidden" value="admin" />';
                        } else {
                                ?><input name="user_name" type="text" id="user_login" size="25" value="<?php echo esc_attr( sanitize_user( $user_name, true ) ); ?>" />
                                <p><?php _e( 'Usernames can have only alphanumeric characters, spaces, underscores, hyphens, periods and the @ symbol.' ); ?></p>
@@ -122,7 +120,7 @@ function display_setup_form( $error = null ) {
                                <input name="admin_password" type="password" id="pass1" size="25" value="" />
                                <p><input name="admin_password2" type="password" id="pass2" size="25" value="" /></p>
                                <div id="pass-strength-result"><?php _e('Strength indicator'); ?></div>
-                               <p><?php _e('Hint: The password should be at least seven characters long. To make it stronger, use upper and lower case letters, numbers and symbols like ! " ? $ % ^ &amp; ).'); ?></p>
+                               <p><?php _e('Hint: The password should be at least seven characters long. To make it stronger, use upper and lower case letters, numbers, and symbols like ! " ? $ % ^ &amp; ).'); ?></p>
                        </td>
                </tr>
                <?php endif; ?>
@@ -189,38 +187,38 @@ switch($step) {
 
                display_header();
                // Fill in the data we gathered
-               $weblog_title = isset( $_POST['weblog_title'] ) ? trim( stripslashes( $_POST['weblog_title'] ) ) : '';
-               $user_name = isset($_POST['user_name']) ? trim( stripslashes( $_POST['user_name'] ) ) : 'admin';
-               $admin_password = isset($_POST['admin_password']) ? $_POST['admin_password'] : '';
-               $admin_password_check = isset($_POST['admin_password2']) ? $_POST['admin_password2'] : '';
-               $admin_email  = isset( $_POST['admin_email']  ) ?trim( stripslashes( $_POST['admin_email'] ) ) : '';
+               $weblog_title = isset( $_POST['weblog_title'] ) ? trim( wp_unslash( $_POST['weblog_title'] ) ) : '';
+               $user_name = isset($_POST['user_name']) ? trim( wp_unslash( $_POST['user_name'] ) ) : '';
+               $admin_password = isset($_POST['admin_password']) ? wp_unslash( $_POST['admin_password'] ) : '';
+               $admin_password_check = isset($_POST['admin_password2']) ? wp_unslash( $_POST['admin_password2'] ) : '';
+               $admin_email  = isset( $_POST['admin_email']  ) ?trim( wp_unslash( $_POST['admin_email'] ) ) : '';
                $public       = isset( $_POST['blog_public']  ) ? (int) $_POST['blog_public'] : 0;
                // check e-mail address
                $error = false;
                if ( empty( $user_name ) ) {
                        // TODO: poka-yoke
-                       display_setup_form( __('you must provide a valid username.') );
+                       display_setup_form( __( 'Please provide a valid username.' ) );
                        $error = true;
                } elseif ( $user_name != sanitize_user( $user_name, true ) ) {
-                       display_setup_form( __('the username you provided has invalid characters.') );
+                       display_setup_form( __( 'The username you provided has invalid characters.' ) );
                        $error = true;
                } elseif ( $admin_password != $admin_password_check ) {
                        // TODO: poka-yoke
-                       display_setup_form( __( 'your passwords do not match. Please try again' ) );
+                       display_setup_form( __( 'Your passwords do not match. Please try again.' ) );
                        $error = true;
                } else if ( empty( $admin_email ) ) {
                        // TODO: poka-yoke
-                       display_setup_form( __( 'you must provide an e-mail address.' ) );
+                       display_setup_form( __( 'You must provide an email address.' ) );
                        $error = true;
                } elseif ( ! is_email( $admin_email ) ) {
                        // TODO: poka-yoke
-                       display_setup_form( __( 'that isn&#8217;t a valid e-mail address. E-mail addresses look like: <code>username@example.com</code>' ) );
+                       display_setup_form( __( 'Sorry, that isn&#8217;t a valid email address. Email addresses look like <code>username@example.com</code>.' ) );
                        $error = true;
                }
 
                if ( $error === false ) {
                        $wpdb->show_errors();
-                       $result = wp_install($weblog_title, $user_name, $admin_email, $public, '', $admin_password);
+                       $result = wp_install($weblog_title, $user_name, $admin_email, $public, '', wp_slash( $admin_password ) );
                        extract( $result, EXTR_SKIP );
 ?>
 
@@ -249,8 +247,10 @@ switch($step) {
                }
                break;
 }
+if ( !wp_is_mobile() ) {
 ?>
 <script type="text/javascript">var t = document.getElementById('weblog_title'); if (t){ t.focus(); }</script>
+<?php } ?>
 <?php wp_print_scripts( 'user-profile' ); ?>
 </body>
 </html>
WordPress autoinstaller for phpBB