+if ( isset( $_GET['action'] ) ) {
+ do_action( 'wpmuadminedit' , '' );
+
+ switch ( $_GET['action'] ) {
+ case 'updateblog':
+ // No longer used.
+ break;
+
+ case 'deleteblog':
+ check_admin_referer('deleteblog');
+ if ( ! ( current_user_can( 'manage_sites' ) && current_user_can( 'delete_sites' ) ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ if ( $id != '0' && $id != $current_site->blog_id && current_user_can( 'delete_site', $id ) ) {
+ wpmu_delete_blog( $id, true );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'delete' ), wp_get_referer() ) );
+ } else {
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'not_deleted' ), wp_get_referer() ) );
+ }
+
+ exit();
+ break;
+
+ case 'allblogs':
+ if ( ( isset( $_POST['action'] ) || isset( $_POST['action2'] ) ) && isset( $_POST['allblogs'] ) ) {
+ check_admin_referer( 'bulk-sites' );
+
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ $doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
+ $blogfunction = '';
+
+ foreach ( (array) $_POST['allblogs'] as $key => $val ) {
+ if ( $val != '0' && $val != $current_site->blog_id ) {
+ switch ( $doaction ) {
+ case 'delete':
+ if ( ! current_user_can( 'delete_site', $val ) )
+ wp_die( __( 'You are not allowed to delete the site.' ) );
+ $blogfunction = 'all_delete';
+ wpmu_delete_blog( $val, true );
+ break;
+
+ case 'spam':
+ $blogfunction = 'all_spam';
+ update_blog_status( $val, 'spam', '1' );
+ set_time_limit( 60 );
+ break;
+
+ case 'notspam':
+ $blogfunction = 'all_notspam';
+ update_blog_status( $val, 'spam', '0' );
+ set_time_limit( 60 );
+ break;
+ }
+ } else {
+ wp_die( __( 'You are not allowed to change the current site.' ) );
+ }
+ }
+
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => $blogfunction ), wp_get_referer() ) );
+ } else {
+ wp_redirect( network_admin_url( 'sites.php' ) );
+ }
+ exit();
+ break;
+
+ case 'archiveblog':
+ check_admin_referer( 'archiveblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'archived', '1' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'archive' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'unarchiveblog':
+ check_admin_referer( 'unarchiveblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'archived', '0' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unarchive' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'activateblog':
+ check_admin_referer( 'activateblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'deleted', '0' );
+ do_action( 'activate_blog', $id );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'activate' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'deactivateblog':
+ check_admin_referer( 'deactivateblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ do_action( 'deactivate_blog', $id );
+ update_blog_status( $id, 'deleted', '1' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'deactivate' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'unspamblog':
+ check_admin_referer( 'unspamblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'spam', '0' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unspam' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'spamblog':
+ check_admin_referer( 'spamblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'spam', '1' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'spam' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'unmatureblog':
+ check_admin_referer( 'unmatureblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'mature', '0' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unmature' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ case 'matureblog':
+ check_admin_referer( 'matureblog' );
+ if ( ! current_user_can( 'manage_sites' ) )
+ wp_die( __( 'You do not have permission to access this page.' ) );
+
+ update_blog_status( $id, 'mature', '1' );
+ wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'mature' ), wp_get_referer() ) );
+ exit();
+ break;
+
+ // Common
+ case 'confirm':
+ check_admin_referer( 'confirm' );
+ if ( !headers_sent() ) {
+ nocache_headers();
+ header( 'Content-Type: text/html; charset=utf-8' );
+ }
+ if ( $current_site->blog_id == $id )
+ wp_die( __( 'You are not allowed to change the current site.' ) );
+ ?>
+ <!DOCTYPE html>
+ <html xmlns="http://www.w3.org/1999/xhtml" <?php language_attributes(); ?>>
+ <head>
+ <title><?php _e( 'WordPress › Confirm your action' ); ?></title>
+
+ <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+ <?php
+ wp_admin_css( 'install', true );
+ wp_admin_css( 'ie', true );
+ ?>
+ </head>
+ <body>
+ <h1 id="logo"><img alt="WordPress" src="<?php echo esc_attr( admin_url( 'images/wordpress-logo.png?ver=20120216' ) ); ?>" /></h1>
+ <form action="sites.php?action=<?php echo esc_attr( $_GET['action2'] ) ?>" method="post">
+ <input type="hidden" name="action" value="<?php echo esc_attr( $_GET['action2'] ) ?>" />
+ <input type="hidden" name="id" value="<?php echo esc_attr( $id ); ?>" />
+ <input type="hidden" name="_wp_http_referer" value="<?php echo esc_attr( wp_get_referer() ); ?>" />
+ <?php wp_nonce_field( $_GET['action2'], '_wpnonce', false ); ?>
+ <p><?php echo esc_html( stripslashes( $_GET['msg'] ) ); ?></p>
+ <?php submit_button( __('Confirm'), 'button' ); ?>
+ </form>
+ </body>
+ </html>
+ <?php
+ exit();
+ break;
+ }
+}
+