X-Git-Url: https://scripts.mit.edu/gitweb/autoinstalls/wordpress.git/blobdiff_plain/ff81ee6e8304a1982a3ec4f5b134764a29d502cf..refs/tags/wordpress-2.6.2:/wp-admin/post.php?action=edit;post=%3C%3Fphp%20echo%20%24_GET%5B%27posted%27%5D
diff --git a/wp-admin/post.php b/wp-admin/post.php
index 0f4187e9..0dfb8212 100644
--- a/wp-admin/post.php
+++ b/wp-admin/post.php
@@ -1,429 +1,174 @@
ID) ) wp_die( __("You attempted to edit a post that doesn't exist. Perhaps it was deleted?") );
+
+ if ( 'post' != $post->post_type ) {
+ wp_redirect( get_edit_post_link( $post->ID, 'url' ) );
+ exit();
+ }
+
+ wp_enqueue_script('post');
+ if ( user_can_richedit() )
+ wp_enqueue_script('editor');
+ add_thickbox();
+ wp_enqueue_script('media-upload');
+ wp_enqueue_script('word-count');
+
+ if ( current_user_can('edit_post', $post_ID) ) {
+ if ( $last = wp_check_post_lock( $post->ID ) ) {
+ $last_user = get_userdata( $last );
+ $last_user_name = $last_user ? $last_user->display_name : __('Somebody');
+ $message = sprintf( __( 'Warning: %s is currently editing this post' ), wp_specialchars( $last_user_name ) );
+ $message = str_replace( "'", "\'", "
" );
+ add_action('admin_notices', create_function( '', "echo '$message';" ) );
+ } else {
+ wp_set_post_lock( $post->ID );
+ wp_enqueue_script('autosave');
+ }
+ }
+
+ require_once('admin-header.php');
if ( !current_user_can('edit_post', $post_ID) )
die ( __('You are not allowed to edit this post.') );
$post = get_post_to_edit($post_ID);
-
- if ($post->post_status == 'static')
- include('edit-page-form.php');
- else
- include('edit-form-advanced.php');
-
- ?>
-
- post_status == 'attachment' ) {
+ if ( !current_user_can('delete_post', $post_id) )
+ wp_die( __('You are not allowed to delete this post.') );
+
+ if ( $post->post_type == 'attachment' ) {
if ( ! wp_delete_attachment($post_id) )
- die( __('Error in deleting...') );
+ wp_die( __('Error in deleting...') );
} else {
- if ( !wp_delete_post($post_id) )
- die( __('Error in deleting...') );
+ if ( !wp_delete_post($post_id) )
+ wp_die( __('Error in deleting...') );
}
- $sendback = $_SERVER['HTTP_REFERER'];
- if (strstr($sendback, 'post.php')) $sendback = get_settings('siteurl') .'/wp-admin/post.php';
- elseif (strstr($sendback, 'attachments.php')) $sendback = get_settings('siteurl') .'/wp-admin/attachments.php';
+ $sendback = wp_get_referer();
+ if (strpos($sendback, 'post.php') !== false) $sendback = admin_url('post-new.php');
+ elseif (strpos($sendback, 'attachments.php') !== false) $sendback = admin_url('attachments.php');
$sendback = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $sendback);
- header ('Location: ' . $sendback);
- break;
-
-case 'editcomment':
- $title = __('Edit Comment');
- $parent_file = 'edit.php';
- require_once ('admin-header.php');
-
- get_currentuserinfo();
-
- $comment = (int) $_GET['comment'];
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'javascript:history.go(-1)'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post.') );
-
- $comment = get_comment_to_edit($comment);
-
- include('edit-form-comment.php');
-
- break;
-
-case 'confirmdeletecomment':
-
- require_once('./admin-header.php');
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'edit.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to delete comments on this post.') );
-
- echo "\n";
- echo "
" . __('Caution: You are about to delete the following comment:') . "
\n";
- echo "
\n";
- echo "" . __('Author:') . " | $comment->comment_author |
\n";
- echo "" . __('E-mail:') . " | $comment->comment_author_email |
\n";
- echo "". __('URL:') . " | $comment->comment_author_url |
\n";
- echo "". __('Comment:') . " | $comment->comment_content |
\n";
- echo "
\n";
- echo "
" . __('Are you sure you want to do that?') . "
\n";
-
- echo "
\n";
- echo "
\n";
-
- break;
-
-case 'deletecomment':
-
- check_admin_referer();
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
- if (isset($_GET['noredir'])) {
- $noredir = true;
- } else {
- $noredir = false;
- }
-
- $postdata = get_post($p) or die(sprintf(__('Oops, no post with this ID. Go back!'), 'edit.php'));
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'post.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post.') );
-
- wp_set_comment_status($comment->comment_ID, "delete");
- do_action('delete_comment', $comment->comment_ID);
-
- if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) {
- header('Location: ' . $_SERVER['HTTP_REFERER']);
- } else {
- header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments');
- }
-
- break;
-
-case 'unapprovecomment':
-
- check_admin_referer();
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
- if (isset($_GET['noredir'])) {
- $noredir = true;
- } else {
- $noredir = false;
- }
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'edit.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post, so you cannot disapprove this comment.') );
-
- wp_set_comment_status($comment->comment_ID, "hold");
-
- if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) {
- header('Location: ' . $_SERVER['HTTP_REFERER']);
- } else {
- header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments');
- }
-
- break;
-
-case 'mailapprovecomment':
-
- $comment = (int) $_GET['comment'];
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'edit.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post, so you cannot approve this comment.') );
-
- if ('1' != $comment->comment_approved) {
- wp_set_comment_status($comment->comment_ID, 'approve');
- if (true == get_option('comments_notify'))
- wp_notify_postauthor($comment->comment_ID);
- }
-
- header('Location: ' . get_option('siteurl') . '/wp-admin/moderation.php?approved=1');
-
- break;
-
-case 'approvecomment':
-
- $comment = (int) $_GET['comment'];
- $p = (int) $_GET['p'];
- if (isset($_GET['noredir'])) {
- $noredir = true;
- } else {
- $noredir = false;
- }
-
- if ( ! $comment = get_comment($comment) )
- die(sprintf(__('Oops, no comment with this ID. Go back!'), 'edit.php'));
-
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- die( __('You are not allowed to edit comments on this post, so you cannot approve this comment.') );
-
- wp_set_comment_status($comment->comment_ID, "approve");
- if (get_settings("comments_notify") == true) {
- wp_notify_postauthor($comment->comment_ID);
- }
-
-
- if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) {
- header('Location: ' . $_SERVER['HTTP_REFERER']);
- } else {
- header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments');
- }
-
- break;
-
-case 'editedcomment':
-
- edit_comment();
-
- $referredby = $_POST['referredby'];
- if (!empty($referredby)) {
- header('Location: ' . $referredby);
- } else {
- header ("Location: edit.php?p=$comment_post_ID&c=1#comments");
- }
-
+ wp_redirect($sendback);
+ exit();
break;
default:
- $title = __('Create New Post');
- require_once ('./admin-header.php');
-?>
-
-View site »'), get_bloginfo('home') . '/'); ?>
-
-
-
-
- 15 ) $num_drafts = 15;
- for ( $i = 0; $i < $num_drafts; $i++ ) {
- $draft = $drafts[$i];
- if ( 0 != $i )
- echo ', ';
- $draft->post_title = stripslashes($draft->post_title);
- if ( empty($draft->post_title) )
- $draft->post_title = sprintf(__('Post # %s'), $draft->ID);
- echo "$draft->post_title";
- }
- ?>
-
- , »
-
- .
-
-
-
-'.__('WordPress bookmarklet').'
-
'.__('Right click on the following link and choose "Add to favorites" to create a posting shortcut.').'
'; ?>
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-You can also e-mail the admin to ask for a promotion.
-When you’re promoted, just reload this page and you’ll be able to blog. :)'), get_settings('admin_email')); ?>
-
-
- */
include('admin-footer.php');
?>