X-Git-Url: https://scripts.mit.edu/gitweb/autoinstalls/wordpress.git/blobdiff_plain/96bc8e88cf39086a9e0a883b8e2c311fe82a5e97..c81aba3d563f7459dc79140e4c5be67bcf506b92:/wp-admin/network/sites.php
diff --git a/wp-admin/network/sites.php b/wp-admin/network/sites.php
index 95902ebb..e0e7e1e9 100644
--- a/wp-admin/network/sites.php
+++ b/wp-admin/network/sites.php
@@ -8,21 +8,21 @@
*/
/** Load WordPress Administration Bootstrap */
-require_once( './admin.php' );
+require_once( dirname( __FILE__ ) . '/admin.php' );
if ( ! is_multisite() )
wp_die( __( 'Multisite support is not enabled.' ) );
if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
+ wp_die( __( 'You do not have permission to access this page.' ), 403 );
-$wp_list_table = _get_list_table('WP_MS_Sites_List_Table');
+$wp_list_table = _get_list_table( 'WP_MS_Sites_List_Table' );
$pagenum = $wp_list_table->get_pagenum();
$title = __( 'Sites' );
$parent_file = 'sites.php';
-add_screen_option( 'per_page', array('label' => _x( 'Sites', 'sites per page (screen options)' )) );
+add_screen_option( 'per_page' );
get_current_screen()->add_help_tab( array(
'id' => 'overview',
@@ -42,46 +42,102 @@ get_current_screen()->add_help_tab( array(
get_current_screen()->set_help_sidebar(
'
' . __('For more information:') . '
' .
- '' . __('Documentation on Site Management') . '
' .
- '' . __('Support Forums') . '
'
+ '' . __('Documentation on Site Management') . '
' .
+ '' . __('Support Forums') . '
'
);
+get_current_screen()->set_screen_reader_content( array(
+ 'heading_pagination' => __( 'Sites list navigation' ),
+ 'heading_list' => __( 'Sites list' ),
+) );
+
$id = isset( $_REQUEST['id'] ) ? intval( $_REQUEST['id'] ) : 0;
if ( isset( $_GET['action'] ) ) {
- do_action( 'wpmuadminedit' , '' );
+ /** This action is documented in wp-admin/network/edit.php */
+ do_action( 'wpmuadminedit' );
+
+ // A list of valid actions and their associated messaging for confirmation output.
+ $manage_actions = array(
+ 'activateblog' => __( 'You are about to activate the site %s' ),
+ 'deactivateblog' => __( 'You are about to deactivate the site %s' ),
+ 'unarchiveblog' => __( 'You are about to unarchive the site %s.' ),
+ 'archiveblog' => __( 'You are about to archive the site %s.' ),
+ 'unspamblog' => __( 'You are about to unspam the site %s.' ),
+ 'spamblog' => __( 'You are about to mark the site %s as spam.' ),
+ 'deleteblog' => __( 'You are about to delete the site %s.' ),
+ 'unmatureblog' => __( 'You are about to mark the site %s as mature.' ),
+ 'matureblog' => __( 'You are about to mark the site %s as not mature.' ),
+ );
+
+ if ( 'confirm' === $_GET['action'] ) {
+ // The action2 parameter contains the action being taken on the site.
+ $site_action = $_GET['action2'];
+
+ if ( ! array_key_exists( $site_action, $manage_actions ) ) {
+ wp_die( __( 'The requested action is not valid.' ) );
+ }
+
+ // The mature/unmature UI exists only as external code. Check the "confirm" nonce for backward compatibility.
+ if ( 'matureblog' === $site_action || 'unmatureblog' === $site_action ) {
+ check_admin_referer( 'confirm' );
+ } else {
+ check_admin_referer( $site_action . '_' . $id );
+ }
+
+ if ( ! headers_sent() ) {
+ nocache_headers();
+ header( 'Content-Type: text/html; charset=utf-8' );
+ }
+
+ if ( $current_site->blog_id == $id ) {
+ wp_die( __( 'You are not allowed to change the current site.' ) );
+ }
+
+ $site_details = get_blog_details( $id );
+ $site_address = untrailingslashit( $site_details->domain . $site_details->path );
+
+ require_once( ABSPATH . 'wp-admin/admin-header.php' );
+ ?>
+
+ 403 ) );
+ $updated_action = 'not_deleted';
if ( $id != '0' && $id != $current_site->blog_id && current_user_can( 'delete_site', $id ) ) {
wpmu_delete_blog( $id, true );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'delete' ), wp_get_referer() ) );
- } else {
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'not_deleted' ), wp_get_referer() ) );
+ $updated_action = 'delete';
}
-
- exit();
break;
case 'allblogs':
if ( ( isset( $_POST['action'] ) || isset( $_POST['action2'] ) ) && isset( $_POST['allblogs'] ) ) {
- check_admin_referer( 'bulk-sites' );
-
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- if ( $_GET['action'] != -1 || $_POST['action2'] != -1 )
- $doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
-
- $blogfunction = '';
+ $doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
foreach ( (array) $_POST['allblogs'] as $key => $val ) {
if ( $val != '0' && $val != $current_site->blog_id ) {
@@ -89,158 +145,81 @@ if ( isset( $_GET['action'] ) ) {
case 'delete':
if ( ! current_user_can( 'delete_site', $val ) )
wp_die( __( 'You are not allowed to delete the site.' ) );
- $blogfunction = 'all_delete';
+
+ $updated_action = 'all_delete';
wpmu_delete_blog( $val, true );
break;
case 'spam':
- $blogfunction = 'all_spam';
- update_blog_status( $val, 'spam', '1' );
- set_time_limit( 60 );
- break;
-
case 'notspam':
- $blogfunction = 'all_notspam';
- update_blog_status( $val, 'spam', '0' );
- set_time_limit( 60 );
+ $updated_action = ( 'spam' === $doaction ) ? 'all_spam' : 'all_notspam';
+ update_blog_status( $val, 'spam', ( 'spam' === $doaction ) ? '1' : '0' );
break;
}
} else {
wp_die( __( 'You are not allowed to change the current site.' ) );
}
}
-
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => $blogfunction ), wp_get_referer() ) );
} else {
wp_redirect( network_admin_url( 'sites.php' ) );
+ exit();
}
- exit();
break;
case 'archiveblog':
- check_admin_referer( 'archiveblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'archived', '1' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'archive' ), wp_get_referer() ) );
- exit();
- break;
-
case 'unarchiveblog':
- check_admin_referer( 'unarchiveblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'archived', '0' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unarchive' ), wp_get_referer() ) );
- exit();
+ update_blog_status( $id, 'archived', ( 'archiveblog' === $_GET['action'] ) ? '1' : '0' );
break;
case 'activateblog':
- check_admin_referer( 'activateblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
update_blog_status( $id, 'deleted', '0' );
+
+ /**
+ * Fires after a network site is activated.
+ *
+ * @since MU
+ *
+ * @param string $id The ID of the activated site.
+ */
do_action( 'activate_blog', $id );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'activate' ), wp_get_referer() ) );
- exit();
break;
case 'deactivateblog':
- check_admin_referer( 'deactivateblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
+ /**
+ * Fires before a network site is deactivated.
+ *
+ * @since MU
+ *
+ * @param string $id The ID of the site being deactivated.
+ */
do_action( 'deactivate_blog', $id );
update_blog_status( $id, 'deleted', '1' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'deactivate' ), wp_get_referer() ) );
- exit();
break;
case 'unspamblog':
- check_admin_referer( 'unspamblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'spam', '0' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unspam' ), wp_get_referer() ) );
- exit();
- break;
-
case 'spamblog':
- check_admin_referer( 'spamblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'spam', '1' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'spam' ), wp_get_referer() ) );
- exit();
+ update_blog_status( $id, 'spam', ( 'spamblog' === $_GET['action'] ) ? '1' : '0' );
break;
case 'unmatureblog':
- check_admin_referer( 'unmatureblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'mature', '0' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'unmature' ), wp_get_referer() ) );
- exit();
- break;
-
case 'matureblog':
- check_admin_referer( 'matureblog' );
- if ( ! current_user_can( 'manage_sites' ) )
- wp_die( __( 'You do not have permission to access this page.' ) );
-
- update_blog_status( $id, 'mature', '1' );
- wp_safe_redirect( add_query_arg( array( 'updated' => 'true', 'action' => 'mature' ), wp_get_referer() ) );
- exit();
+ update_blog_status( $id, 'mature', ( 'matureblog' === $_GET['action'] ) ? '1' : '0' );
break;
+ }
- // Common
- case 'confirm':
- check_admin_referer( 'confirm' );
- if ( !headers_sent() ) {
- nocache_headers();
- header( 'Content-Type: text/html; charset=utf-8' );
- }
- if ( $current_site->blog_id == $id )
- wp_die( __( 'You are not allowed to change the current site.' ) );
- ?>
-
- >
-
-
-
-
-
-
-
-
-
-
-
- $updated_action ), wp_get_referer() ) );
+ exit();
}
}
$msg = '';
-if ( isset( $_REQUEST['updated'] ) && $_REQUEST['updated'] == 'true' && ! empty( $_REQUEST['action'] ) ) {
- switch ( $_REQUEST['action'] ) {
+if ( isset( $_GET['updated'] ) ) {
+ switch ( $_GET['updated'] ) {
case 'all_notspam':
$msg = __( 'Sites removed from spam.' );
break;
@@ -256,51 +235,63 @@ if ( isset( $_REQUEST['updated'] ) && $_REQUEST['updated'] == 'true' && ! empty(
case 'not_deleted':
$msg = __( 'You do not have permission to delete that site.' );
break;
- case 'archive':
+ case 'archiveblog':
$msg = __( 'Site archived.' );
break;
- case 'unarchive':
+ case 'unarchiveblog':
$msg = __( 'Site unarchived.' );
break;
- case 'activate':
+ case 'activateblog':
$msg = __( 'Site activated.' );
break;
- case 'deactivate':
+ case 'deactivateblog':
$msg = __( 'Site deactivated.' );
break;
- case 'unspam':
+ case 'unspamblog':
$msg = __( 'Site removed from spam.' );
break;
- case 'spam':
+ case 'spamblog':
$msg = __( 'Site marked as spam.' );
break;
default:
- $msg = apply_filters( 'network_sites_updated_message_' . $_REQUEST['action'] , __( 'Settings saved.' ) );
+ /**
+ * Filter a specific, non-default site-updated message in the Network admin.
+ *
+ * The dynamic portion of the hook name, `$_GET['updated']`, refers to the
+ * non-default site update action.
+ *
+ * @since 3.1.0
+ *
+ * @param string $msg The update message. Default 'Settings saved'.
+ */
+ $msg = apply_filters( 'network_sites_updated_message_' . $_GET['updated'], __( 'Settings saved.' ) );
break;
}
- if ( $msg )
- $msg = '';
+
+ if ( ! empty( $msg ) )
+ $msg = '';
}
$wp_list_table->prepare_items();
-require_once( '../admin-header.php' );
+require_once( ABSPATH . 'wp-admin/admin-header.php' );
?>
-
-
-
+
+
-
+
' . __( 'Search results for “%s”' ) . '', esc_html( $s ) );
} ?>
-
+
+
+
-
@@ -311,4 +302,4 @@ require_once( '../admin-header.php' );
+require_once( ABSPATH . 'wp-admin/admin-footer.php' ); ?>