$post_ID = (int) $post_data['post_ID'];
$post = get_post( $post_ID );
$post_data['post_type'] = $post->post_type;
+ $post_data['post_mime_type'] = $post->post_mime_type;
$ptype = get_post_type_object($post_data['post_type']);
if ( !current_user_can( $ptype->cap->edit_post, $post_ID ) ) {
continue;
if ( $meta->post_id != $post_ID )
continue;
+ if ( is_protected_meta( $value['key'] ) )
+ continue;
update_meta( $key, $value['key'], $value['value'] );
}
}
continue;
if ( $meta->post_id != $post_ID )
continue;
+ if ( is_protected_meta( $meta->meta_key ) )
+ continue;
delete_meta( $key );
}
}
return new WP_Error( 'edit_posts', __( 'You are not allowed to create posts or drafts on this site.' ) );
}
+ $_POST['post_mime_type'] = '';
+
// Check for autosave collisions
// Does this need to be updated? ~ Mark
$temp_id = false;
global $wpdb;
$post_ID = (int) $post_ID;
- $protected = array( '_wp_attached_file', '_wp_attachment_metadata', '_wp_old_slug', '_wp_page_template' );
-
$metakeyselect = isset($_POST['metakeyselect']) ? stripslashes( trim( $_POST['metakeyselect'] ) ) : '';
$metakeyinput = isset($_POST['metakeyinput']) ? stripslashes( trim( $_POST['metakeyinput'] ) ) : '';
$metavalue = isset($_POST['metavalue']) ? maybe_serialize( stripslashes_deep( $_POST['metavalue'] ) ) : '';
if ( $metakeyinput)
$metakey = $metakeyinput; // default
- if ( in_array($metakey, $protected) )
+ if ( is_protected_meta( $metakey ) )
return false;
wp_cache_delete($post_ID, 'post_meta');
function update_meta( $meta_id, $meta_key, $meta_value ) {
global $wpdb;
- $protected = array( '_wp_attached_file', '_wp_attachment_metadata', '_wp_old_slug', '_wp_page_template' );
-
$meta_key = stripslashes($meta_key);
- if ( in_array($meta_key, $protected) )
+ if ( is_protected_meta( $meta_key ) )
return false;
if ( '' === trim( $meta_value ) )
$q['m'] = isset( $q['m'] ) ? (int) $q['m'] : 0;
$q['cat'] = isset( $q['cat'] ) ? (int) $q['cat'] : 0;
$q['post_type'] = 'attachment';
- $q['post_status'] = isset( $q['status'] ) && 'trash' == $q['status'] ? 'trash' : 'inherit';
+ $post_type = get_post_type_object( 'attachment' );
+ $states = array( 'inherit' );
+ if ( current_user_can( $post_type->cap->read_private_posts ) )
+ $states[] = 'private';
+
+ $q['post_status'] = isset( $q['status'] ) && 'trash' == $q['status'] ? 'trash' : $states;
$media_per_page = (int) get_user_option( 'upload_per_page' );
if ( empty( $media_per_page ) || $media_per_page < 1 )
$media_per_page = 20;