| <?php |
| require_once('admin.php'); |
| |
| $parent_file = 'edit.php'; |
| $submenu_file = 'edit-pages.php'; |
| |
| wp_reset_vars(array('action')); |
| |
| function redirect_page($page_ID) { |
| $referredby = ''; |
| if ( !empty($_POST['referredby']) ) { |
| $referredby = preg_replace('|https?://[^/]+|i', '', $_POST['referredby']); |
| $referredby = remove_query_arg('_wp_original_http_referer', $referredby); |
| } |
| $referer = preg_replace('|https?://[^/]+|i', '', wp_get_referer()); |
| |
| if ( 'post' == $_POST['originalaction'] && !empty($_POST['mode']) && 'bookmarklet' == $_POST['mode'] ) { |
| $location = $_POST['referredby']; |
| } elseif ( 'post' == $_POST['originalaction'] && !empty($_POST['mode']) && 'sidebar' == $_POST['mode'] ) { |
| $location = 'sidebar.php?a=b'; |
| } elseif ( isset($_POST['save']) && ( empty($referredby) || $referredby == $referer || 'redo' != $referredby ) ) { |
| if ( $_POST['_wp_original_http_referer'] && strpos( $_POST['_wp_original_http_referer'], '/wp-admin/page.php') === false && strpos( $_POST['_wp_original_http_referer'], '/wp-admin/page-new.php') === false ) |
| $location = add_query_arg( '_wp_original_http_referer', urlencode( stripslashes( $_POST['_wp_original_http_referer'] ) ), "page.php?action=edit&post=$page_ID&message=1" ); |
| else |
| $location = "page.php?action=edit&post=$page_ID&message=4"; |
| } elseif ($_POST['addmeta']) { |
| $location = add_query_arg( 'message', 2, wp_get_referer() ); |
| $location = explode('#', $location); |
| $location = $location[0] . '#postcustom'; |
| } elseif ($_POST['deletemeta']) { |
| $location = add_query_arg( 'message', 3, wp_get_referer() ); |
| $location = explode('#', $location); |
| $location = $location[0] . '#postcustom'; |
| } elseif (!empty($referredby) && $referredby != $referer) { |
| $location = $_POST['referredby']; |
| $location = remove_query_arg('_wp_original_http_referer', $location); |
| if ( false !== strpos($location, 'edit-pages.php') ) |
| $location = add_query_arg('posted', $page_ID, $location); |
| elseif ( false !== strpos($location, 'wp-admin') ) |
| $location = "page-new.php?posted=$page_ID"; |
| } elseif ( isset($_POST['publish']) ) { |
| $location = "page-new.php?posted=$page_ID"; |
| } elseif ($action == 'editattachment') { |
| $location = 'attachments.php'; |
| } else { |
| $location = "page.php?action=edit&post=$page_ID&message=4"; |
| } |
| |
| wp_redirect($location); |
| } |
| |
| if (isset($_POST['deletepost'])) { |
| $action = "delete"; |
| } |
| |
| switch($action) { |
| case 'post': |
| check_admin_referer('add-page'); |
| $page_ID = write_post(); |
| |
| redirect_page($page_ID); |
| |
| exit(); |
| break; |
| |
| case 'edit': |
| $title = __('Edit'); |
| $editing = true; |
| $page_ID = $post_ID = $p = (int) $_GET['post']; |
| $post = get_post_to_edit($page_ID); |
| |
| if ( empty($post->ID) ) wp_die( __("You attempted to edit a page that doesn't exist. Perhaps it was deleted?") ); |
| |
| if ( 'page' != $post->post_type ) { |
| wp_redirect( get_edit_post_link( $post_ID, 'url' ) ); |
| exit(); |
| } |
| |
| wp_enqueue_script('page'); |
| if ( user_can_richedit() ) |
| wp_enqueue_script('editor'); |
| add_thickbox(); |
| wp_enqueue_script('media-upload'); |
| wp_enqueue_script('word-count'); |
| |
| if ( current_user_can('edit_page', $page_ID) ) { |
| if ( $last = wp_check_post_lock( $post->ID ) ) { |
| $last_user = get_userdata( $last ); |
| $last_user_name = $last_user ? $last_user->display_name : __('Somebody'); |
| $message = sprintf( __( 'Warning: %s is currently editing this page' ), wp_specialchars( $last_user_name ) ); |
| $message = str_replace( "'", "\'", "<div class='error'><p>$message</p></div>" ); |
| add_action('admin_notices', create_function( '', "echo '$message';" ) ); |
| } else { |
| wp_set_post_lock( $post->ID ); |
| wp_enqueue_script('autosave'); |
| } |
| } |
| |
| require_once('admin-header.php'); |
| |
| if ( !current_user_can('edit_page', $page_ID) ) |
| die ( __('You are not allowed to edit this page.') ); |
| |
| include('edit-page-form.php'); |
| break; |
| |
| case 'editattachment': |
| $page_id = $post_ID = (int) $_POST['post_ID']; |
| check_admin_referer('update-attachment_' . $page_id); |
| |
| // Don't let these be changed |
| unset($_POST['guid']); |
| $_POST['post_type'] = 'attachment'; |
| |
| // Update the thumbnail filename |
| $newmeta = wp_get_attachment_metadata( $page_id, true ); |
| $newmeta['thumb'] = $_POST['thumb']; |
| |
| wp_update_attachment_metadata( $newmeta ); |
| |
| case 'editpost': |
| $page_ID = (int) $_POST['post_ID']; |
| check_admin_referer('update-page_' . $page_ID); |
| |
| $page_ID = edit_post(); |
| |
| redirect_page($page_ID); |
| |
| exit(); |
| break; |
| |
| case 'delete': |
| $page_id = (isset($_GET['post'])) ? intval($_GET['post']) : intval($_POST['post_ID']); |
| check_admin_referer('delete-page_' . $page_id); |
| |
| $page = & get_post($page_id); |
| |
| if ( !current_user_can('delete_page', $page_id) ) |
| wp_die( __('You are not allowed to delete this page.') ); |
| |
| if ( $page->post_type == 'attachment' ) { |
| if ( ! wp_delete_attachment($page_id) ) |
| wp_die( __('Error in deleting...') ); |
| } else { |
| if ( !wp_delete_post($page_id) ) |
| wp_die( __('Error in deleting...') ); |
| } |
| |
| $sendback = wp_get_referer(); |
| if (strpos($sendback, 'page.php') !== false) $sendback = admin_url('page.php'); |
| elseif (strpos($sendback, 'attachments.php') !== false) $sendback = admin_url('attachments.php'); |
| $sendback = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $sendback); |
| wp_redirect($sendback); |
| exit(); |
| break; |
| |
| default: |
| wp_redirect('edit-pages.php'); |
| exit(); |
| break; |
| } // end switch |
| include('admin-footer.php'); |
| ?> |
