-
- if ( !current_user_can('edit_post', $post_id) )
- die( __('You are not allowed to delete this post.') );
-
- if ( $post->post_status == 'attachment' ) {
- if ( ! wp_delete_attachment($post_id) )
- die( __('Error in deleting...') );
- } else {
- if ( !wp_delete_post($post_id) )
- die( __('Error in deleting...') );
- }
-
- $sendback = $_SERVER['HTTP_REFERER'];
- if (strstr($sendback, 'post.php')) $sendback = get_settings('siteurl') .'/wp-admin/post.php';
- elseif (strstr($sendback, 'attachments.php')) $sendback = get_settings('siteurl') .'/wp-admin/attachments.php';
- $sendback = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $sendback);
- header ('Location: ' . $sendback);
- break;
-
-case 'editcomment':
- $title = __('Edit Comment');
- $parent_file = 'edit.php';
- require_once ('admin-header.php');
-
- get_currentuserinfo();
-
- $comment = (int) $_GET['comment'];
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'javascript:history.go(-1)'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post.') );
-
- $comment = get_comment_to_edit($comment);
-
- include('edit-form-comment.php');
-
- break;
-
-case 'confirmdeletecomment':
-
- require_once('./admin-header.php');
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to delete comments on this post.') );
-
- echo "<div class='wrap'>\n";
- echo "<p>" . __('<strong>Caution:</strong> You are about to delete the following comment:') . "</p>\n";
- echo "<table border='0'>\n";
- echo "<tr><td>" . __('Author:') . "</td><td>$comment->comment_author</td></tr>\n";
- echo "<tr><td>" . __('E-mail:') . "</td><td>$comment->comment_author_email</td></tr>\n";
- echo "<tr><td>". __('URL:') . "</td><td>$comment->comment_author_url</td></tr>\n";
- echo "<tr><td>". __('Comment:') . "</td><td>$comment->comment_content</td></tr>\n";
- echo "</table>\n";
- echo "<p>" . __('Are you sure you want to do that?') . "</p>\n";
-
- echo "<form action='".get_settings('siteurl')."/wp-admin/post.php' method='get'>\n";
- echo "<input type='hidden' name='action' value='deletecomment' />\n";
- echo "<input type='hidden' name='p' value='$p' />\n";
- echo "<input type='hidden' name='comment' value='{$comment->comment_ID}' />\n";
- echo "<input type='hidden' name='noredir' value='1' />\n";
- echo "<input type='submit' value='" . __('Yes') . "' />";
- echo " ";
- echo "<input type='button' value='" . __('No') . "' onclick=\"self.location='". get_settings('siteurl') ."/wp-admin/edit.php?p=$p&c=1#comments';\" />\n";
- echo "</form>\n";
- echo "</div>\n";
-
- break;
-
-case 'deletecomment':
-
- check_admin_referer();
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
- if (isset($_GET['noredir'])) {
- $noredir = true;
- } else {
- $noredir = false;
- }
-
- $postdata = get_post($p) or die(sprintf(__('Oops, no post with this ID. <a href="%s">Go back</a>!'), 'edit.php'));