Clickx 23

home *** CD-ROM | disk | FTP | other *** search

/ Clickx 23 / Clickx 23.iso / DATA / wordpress / wp-admin / post.php < prev next >

Wrap

PHP Script | 2005-08-14 | 27.2 KB | 795 lines

<?php require_once('admin.php'); $wpvarstoreset = array('action', 'safe_mode', 'withcomments', 'posts', 'content', 'edited_post_title', 'comment_error', 'profile', 'trackback_url', 'excerpt', 'showcomments', 'commentstart', 'commentend', 'commentorder' ); for ($i=0; $i<count($wpvarstoreset); $i += 1) { $wpvar = $wpvarstoreset[$i]; if (!isset($$wpvar)) { if (empty($_POST["$wpvar"])) { if (empty($_GET["$wpvar"])) { $$wpvar = ''; } else { $$wpvar = $_GET["$wpvar"]; } } else { $$wpvar = $_POST["$wpvar"]; } } } if (isset($_POST['deletepost'])) { $action = "delete"; } // Fix submenu highlighting for pages. if (false !== strpos($_SERVER['HTTP_REFERER'], 'edit-pages.php')) $submenu_file = 'page-new.php'; $editing = true; switch($action) { case 'post': if ( !user_can_create_draft($user_ID) ) die( __('You are not allowed to create posts or drafts on this blog.') ); $post_pingback = (int) $_POST['post_pingback']; $content = apply_filters('content_save_pre', $_POST['content']); $excerpt = apply_filters('excerpt_save_pre', $_POST['excerpt']); $post_title = apply_filters('title_save_pre', $_POST['post_title']); $post_categories = apply_filters('category_save_pre', $_POST['post_category']); $post_status = apply_filters('status_save_pre', $_POST['post_status']); $post_name = apply_filters('name_save_pre', $_POST['post_name']); $post_parent = 0; $menu_order = 0; if ( isset($_POST['parent_id']) ) $post_parent = (int) $_POST['parent_id']; if ( isset($_POST['menu_order']) ) $menu_order = (int) $_POST['menu_order']; if (! empty($_POST['post_author_override'])) { $post_author = (int) $_POST['post_author_override']; } else if (! empty($_POST['post_author'])) { $post_author = (int) $_POST['post_author']; } else { $post_author = (int) $_POST['user_ID']; } if ( !user_can_edit_user($user_ID, $post_author) ) die( __('You cannot post as this user.') ); if ( empty($post_status) ) $post_status = 'draft'; // Double-check if ( 'publish' == $post_status && (!user_can_create_post($user_ID)) ) $post_status = 'draft'; $comment_status = $_POST['comment_status']; if ( empty($comment_status) ) { if ( !isset($_POST['advanced_view']) ) $comment_status = get_option('default_comment_status'); else $comment_status = 'closed'; } $ping_status = $_POST['ping_status']; if ( empty($ping_status) ) { if ( !isset($_POST['advanced_view']) ) $ping_status = get_option('default_ping_status'); else $ping_status = 'closed'; } $post_password = $_POST['post_password']; $trackback = $_POST['trackback_url']; $trackback = preg_replace('|\s+|', "\n", $trackback); if (user_can_set_post_date($user_ID) && (!empty($_POST['edit_date']))) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; $ss = ($ss > 59) ? $ss - 60 : $ss; $now = "$aa-$mm-$jj $hh:$mn:$ss"; $now_gmt = get_gmt_from_date("$aa-$mm-$jj $hh:$mn:$ss"); } else { $now = current_time('mysql'); $now_gmt = current_time('mysql', 1); } // What to do based on which button they pressed if ('' != $_POST['saveasdraft']) $post_status = 'draft'; if ('' != $_POST['saveasprivate']) $post_status = 'private'; if ('' != $_POST['publish']) $post_status = 'publish'; if ('' != $_POST['advanced']) $post_status = 'draft'; if ('' != $_POST['savepage']) $post_status = 'static'; $id_result = $wpdb->get_row("SHOW TABLE STATUS LIKE '$wpdb->posts'"); $post_ID = $id_result->Auto_increment; if ( empty($post_name) ) { if ( 'draft' != $post_status ) $post_name = sanitize_title($post_title, $post_ID); } else { $post_name = sanitize_title($post_name, $post_ID); } if ('publish' == $post_status) { $post_name_check = $wpdb->get_var("SELECT post_name FROM $wpdb->posts WHERE post_name = '$post_name' AND post_status = 'publish' AND ID != '$post_ID' LIMIT 1"); if ($post_name_check) { $suffix = 2; while ($post_name_check) { $alt_post_name = $post_name . "-$suffix"; $post_name_check = $wpdb->get_var("SELECT post_name FROM $wpdb->posts WHERE post_name = '$alt_post_name' AND post_status = 'publish' AND ID != '$post_ID' LIMIT 1"); $suffix++; } $post_name = $alt_post_name; } } $postquery ="INSERT INTO $wpdb->posts (ID, post_author, post_date, post_date_gmt, post_content, post_title, post_excerpt, post_status, comment_status, ping_status, post_password, post_name, to_ping, post_modified, post_modified_gmt, post_parent, menu_order) VALUES ('$post_ID', '$post_author', '$now', '$now_gmt', '$content', '$post_title', '$excerpt', '$post_status', '$comment_status', '$ping_status', '$post_password', '$post_name', '$trackback', '$now', '$now_gmt', '$post_parent', '$menu_order') "; $result = $wpdb->query($postquery); if (!empty($_POST['mode'])) { switch($_POST['mode']) { case 'bookmarklet': $location = 'bookmarklet.php?a=b'; break; case 'sidebar': $location = 'sidebar.php?a=b'; break; default: $location = 'post.php'; break; } } else { $location = 'post.php?posted=true'; } if ( 'static' == $_POST['post_status'] ) $location = "page-new.php?saved=true"; if ( '' != $_POST['advanced'] || isset($_POST['save']) ) $location = "post.php?action=edit&post=$post_ID"; header("Location: $location"); // Send user on their way while we keep working // Insert categories // Check to make sure there is a category, if not just set it to some default if (!$post_categories) $post_categories[] = get_option('default_category'); foreach ($post_categories as $post_category) { // Double check it's not there already $exists = $wpdb->get_row("SELECT * FROM $wpdb->post2cat WHERE post_id = $post_ID AND category_id = $post_category"); if (!$exists) { $wpdb->query(" INSERT INTO $wpdb->post2cat (post_id, category_id) VALUES ($post_ID, $post_category) "); } } add_meta($post_ID); $wpdb->query("UPDATE $wpdb->posts SET guid = '" . get_permalink($post_ID) . "' WHERE ID = '$post_ID'"); do_action('save_post', $post_ID); if ('publish' == $post_status) { do_action('publish_post', $post_ID); if ($post_pingback) register_shutdown_function('pingback', $content, $post_ID); register_shutdown_function('do_enclose', $content, $post_ID ); register_shutdown_function('do_trackbacks', $post_ID); } if ($post_status == 'static') { generate_page_rewrite_rules(); add_post_meta($post_ID, '_wp_page_template', $_POST['page_template'], true); } require_once('admin-header.php'); exit(); break; case 'edit': $title = __('Edit'); require_once('admin-header.php'); $post = $post_ID = $p = (int) $_GET['post']; if ( !user_can_edit_post($user_ID, $post_ID) ) die ( __('You are not allowed to edit this post.') ); $postdata = &get_post($post_ID); $content = $postdata->post_content; $content = format_to_edit($content); $content = apply_filters('content_edit_pre', $content); $excerpt = $postdata->post_excerpt; $excerpt = format_to_edit($excerpt); $excerpt = apply_filters('excerpt_edit_pre', $excerpt); $edited_post_title = format_to_edit($postdata->post_title); $edited_post_title = apply_filters('title_edit_pre', $edited_post_title); $post_status = $postdata->post_status; $comment_status = $postdata->comment_status; $ping_status = $postdata->ping_status; $post_password = $postdata->post_password; $to_ping = $postdata->to_ping; $pinged = $postdata->pinged; $post_name = $postdata->post_name; $post_parent = $postdata->post_parent; $post_author = $postdata->post_author; $menu_order = $postdata->menu_order; if( 'private' == $postdata->post_status && $postdata->post_author != $user_ID ) die ( __('You are not allowed to view other users\' private posts.') ); if ($post_status == 'static') { $page_template = get_post_meta($post_ID, '_wp_page_template', true); include('edit-page-form.php'); } else { include('edit-form-advanced.php'); } $post = &$postdata; ?> <div id='preview' class='wrap'> <h2><?php _e('Post Preview (updated when post is saved)'); ?></h2> <h3 class="storytitle" id="post-<?php the_ID(); ?>"><a href="<?php the_permalink() ?>" rel="bookmark" title="<?php printf(__("Permanent Link: %s"), get_the_title()); ?>"><?php the_title(); ?></a></h3> <div class="meta"><?php _e("Filed under:"); ?> <?php the_category(','); ?> — <?php the_author() ?> @ <?php the_time() ?></div> <div class="storycontent"> <?php $content = apply_filters('the_content', $post->post_content); echo $content; ?> </div> </div> <?php break; case 'editpost': // die(var_dump('<pre>', $_POST)); if (!isset($blog_ID)) { $blog_ID = 1; } $post_ID = (int) $_POST['post_ID']; if (!user_can_edit_post($user_ID, $post_ID, $blog_ID)) die( __('You are not allowed to edit this post.') ); $post_categories = $_POST['post_category']; if (!$post_categories) $post_categories[] = 1; $content = apply_filters('content_save_pre', $_POST['content']); $excerpt = apply_filters('excerpt_save_pre', $_POST['excerpt']); $post_title = $_POST['post_title']; $prev_status = $_POST['prev_status']; $post_status = $_POST['post_status']; $menu_order = (int) $_POST['menu_order']; if (! empty($_POST['post_author_override'])) { $post_author = (int) $_POST['post_author_override']; } else if (! empty($_POST['post_author'])) { $post_author = (int) $_POST['post_author']; } else { $post_author = (int) $_POST['user_ID']; } if ( !user_can_edit_user($user_ID, $post_author) ) die( __('You cannot post as this user.') ); $comment_status = $_POST['comment_status']; if (empty($comment_status)) $comment_status = 'closed'; //if (!$_POST['comment_status']) $comment_status = get_settings('default_comment_status'); $ping_status = $_POST['ping_status']; if (empty($ping_status)) $ping_status = 'closed'; //if (!$_POST['ping_status']) $ping_status = get_settings('default_ping_status'); $post_password = $_POST['post_password']; $post_name = $_POST['post_name']; $post_parent = 0; if (isset($_POST['parent_id'])) { $post_parent = (int) $_POST['parent_id']; } $trackback = $_POST['trackback_url']; // Format trackbacks $trackback = preg_replace('|\s+|', '\n', $trackback); if (isset($_POST['publish'])) $post_status = 'publish'; // Double-check if ( 'publish' == $post_status && (!user_can_create_post($user_ID)) ) $post_status = 'draft'; if ( empty($post_name) ) { if ( 'draft' != $post_status ) $post_name = sanitize_title($post_title, $post_ID); } else { $post_name = sanitize_title($post_name, $post_ID); } if ('publish' == $post_status) { $post_name_check = $wpdb->get_var("SELECT post_name FROM $wpdb->posts WHERE post_name = '$post_name' AND post_status = 'publish' AND ID != '$post_ID' LIMIT 1"); if ($post_name_check) { $suffix = 2; while ($post_name_check) { $alt_post_name = $post_name . "-$suffix"; $post_name_check = $wpdb->get_var("SELECT post_name FROM $wpdb->posts WHERE post_name = '$alt_post_name' AND post_status = 'publish' AND ID != '$post_ID' LIMIT 1"); $suffix++; } $post_name = $alt_post_name; } } if (user_can_edit_post_date($user_ID, $post_ID) && (!empty($_POST['edit_date']))) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; $ss = ($ss > 59) ? $ss - 60 : $ss; $datemodif = ", post_date = '$aa-$mm-$jj $hh:$mn:$ss'"; $datemodif_gmt = ", post_date_gmt = '".get_gmt_from_date("$aa-$mm-$jj $hh:$mn:$ss")."'"; } else { $datemodif = ''; $datemodif_gmt = ''; } $now = current_time('mysql'); $now_gmt = current_time('mysql', 1); $result = $wpdb->query(" UPDATE $wpdb->posts SET post_content = '$content', post_excerpt = '$excerpt', post_title = '$post_title'" .$datemodif_gmt .$datemodif.", post_status = '$post_status', comment_status = '$comment_status', ping_status = '$ping_status', post_author = '$post_author', post_password = '$post_password', post_name = '$post_name', to_ping = '$trackback', post_modified = '$now', post_modified_gmt = '$now_gmt', menu_order = '$menu_order', post_parent = '$post_parent' WHERE ID = $post_ID "); if ($_POST['save']) { $location = $_SERVER['HTTP_REFERER']; } elseif ($_POST['updatemeta']) { $location = $_SERVER['HTTP_REFERER'] . '&message=2#postcustom'; } elseif ($_POST['deletemeta']) { $location = $_SERVER['HTTP_REFERER'] . '&message=3#postcustom'; } elseif (isset($_POST['referredby']) && $_POST['referredby'] != $_SERVER['HTTP_REFERER']) { $location = $_POST['referredby']; if ( $_POST['referredby'] == 'redo' ) $location = get_permalink( $post_ID ); } else { $location = 'post.php'; } header ('Location: ' . $location); // Send user on their way while we keep working // Meta Stuff if ($_POST['meta']) : foreach ($_POST['meta'] as $key => $value) : update_meta($key, $value['key'], $value['value']); endforeach; endif; if ($_POST['deletemeta']) : foreach ($_POST['deletemeta'] as $key => $value) : delete_meta($key); endforeach; endif; add_meta($post_ID); // Now it's category time! // First the old categories $old_categories = $wpdb->get_col("SELECT category_id FROM $wpdb->post2cat WHERE post_id = $post_ID"); // Delete any? foreach ($old_categories as $old_cat) { if (!in_array($old_cat, $post_categories)) // If a category was there before but isn't now $wpdb->query("DELETE FROM $wpdb->post2cat WHERE category_id = $old_cat AND post_id = $post_ID LIMIT 1"); } // Add any? foreach ($post_categories as $new_cat) { if (!in_array($new_cat, $old_categories)) $wpdb->query("INSERT INTO $wpdb->post2cat (post_id, category_id) VALUES ($post_ID, $new_cat)"); } if ($prev_status != 'publish' && $post_status == 'publish') do_action('private_to_published', $post_ID); do_action('edit_post', $post_ID); if ($post_status == 'publish') { do_action('publish_post', $post_ID); register_shutdown_function('do_trackbacks', $post_ID); register_shutdown_function('do_enclose', $content, $post_ID ); if ( get_option('default_pingback_flag') ) register_shutdown_function('pingback', $content, $post_ID); } if ($post_status == 'static') { generate_page_rewrite_rules(); if ( ! update_post_meta($post_ID, '_wp_page_template', $_POST['page_template'])) { add_post_meta($post_ID, '_wp_page_template', $_POST['page_template'], true); } } exit(); break; case 'delete': check_admin_referer(); $post_id = (isset($_GET['post'])) ? intval($_GET['post']) : intval($_POST['post_ID']); if (!user_can_delete_post($user_ID, $post_id)) { die( __('You are not allowed to delete this post.') ); } if (! wp_delete_post($post_id)) die( __('Error in deleting...') ); $sendback = $_SERVER['HTTP_REFERER']; if (strstr($sendback, 'post.php')) $sendback = get_settings('siteurl') .'/wp-admin/post.php'; $sendback = preg_replace('|[^a-z0-9-~+_.?#=&;,/:]|i', '', $sendback); header ('Location: ' . $sendback); generate_page_rewrite_rules(); do_action('delete_post', $post_id); break; case 'editcomment': $title = __('Edit Comment'); $parent_file = 'edit.php'; require_once ('admin-header.php'); get_currentuserinfo(); $comment = (int) $_GET['comment']; $commentdata = get_commentdata($comment, 1, true) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'javascript:history.go(-1)')); if (!user_can_edit_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to edit comments on this post.') ); } $content = $commentdata['comment_content']; $content = format_to_edit($content); $content = apply_filters('comment_edit_pre', $content); $comment_status = $commentdata['comment_approved']; include('edit-form-comment.php'); break; case 'confirmdeletecomment': require_once('./admin-header.php'); $comment = (int) $_GET['comment']; $p = (int) $_GET['p']; $commentdata = get_commentdata($comment, 1, true) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php')); if (!user_can_delete_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to delete comments on this post.') ); } echo "<div class=\"wrap\">\n"; echo "<p>" . __('<strong>Caution:</strong> You are about to delete the following comment:') . "</p>\n"; echo "<table border=\"0\">\n"; echo "<tr><td>" . __('Author:') . "</td><td>" . $commentdata["comment_author"] . "</td></tr>\n"; echo "<tr><td>" . __('E-mail:') . "</td><td>" . $commentdata["comment_author_email"] . "</td></tr>\n"; echo "<tr><td>". __('URL:') . "</td><td>" . $commentdata["comment_author_url"] . "</td></tr>\n"; echo "<tr><td>". __('Comment:') . "</td><td>" . stripslashes($commentdata["comment_content"]) . "</td></tr>\n"; echo "</table>\n"; echo "<p>" . __('Are you sure you want to do that?') . "</p>\n"; echo "<form action='".get_settings('siteurl')."/wp-admin/post.php' method='get'>\n"; echo "<input type=\"hidden\" name=\"action\" value=\"deletecomment\" />\n"; echo "<input type=\"hidden\" name=\"p\" value=\"$p\" />\n"; echo "<input type=\"hidden\" name=\"comment\" value=\"$comment\" />\n"; echo "<input type=\"hidden\" name=\"noredir\" value=\"1\" />\n"; echo "<input type=\"submit\" value=\"" . __('Yes') . "\" />"; echo " "; echo "<input type=\"button\" value=\"" . __('No') . "\" onclick=\"self.location='". get_settings('siteurl') ."/wp-admin/edit.php?p=$p&c=1#comments';\" />\n"; echo "</form>\n"; echo "</div>\n"; break; case 'deletecomment': check_admin_referer(); $comment = (int) $_GET['comment']; $p = (int) $_GET['p']; if (isset($_GET['noredir'])) { $noredir = true; } else { $noredir = false; } $postdata = get_post($p) or die(sprintf(__('Oops, no post with this ID. <a href="%s">Go back</a>!'), 'edit.php')); $commentdata = get_commentdata($comment, 1, true) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'post.php')); if (!user_can_delete_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to edit comments on this post.') ); } wp_set_comment_status($comment, "delete"); do_action('delete_comment', $comment); if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) { header('Location: ' . $_SERVER['HTTP_REFERER']); } else { header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments'); } break; case 'unapprovecomment': require_once('./admin-header.php'); check_admin_referer(); $comment = (int) $_GET['comment']; $p = (int) $_GET['p']; if (isset($_GET['noredir'])) { $noredir = true; } else { $noredir = false; } $commentdata = get_commentdata($comment) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php')); if (!user_can_edit_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to edit comments on this post, so you cannot disapprove this comment.') ); } wp_set_comment_status($comment, "hold"); if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) { header('Location: ' . $_SERVER['HTTP_REFERER']); } else { header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments'); } break; case 'mailapprovecomment': $comment = (int) $_GET['comment']; $commentdata = get_commentdata($comment, 1, true) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php')); if (!user_can_edit_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to edit comments on this post, so you cannot approve this comment.') ); } if ('1' != $commentdata['comment_approved']) { wp_set_comment_status($comment, 'approve'); if (true == get_option('comments_notify')) wp_notify_postauthor($comment); } header('Location: ' . get_option('siteurl') . '/wp-admin/moderation.php?approved=1'); break; case 'approvecomment': $comment = (int) $_GET['comment']; $p = (int) $_GET['p']; if (isset($_GET['noredir'])) { $noredir = true; } else { $noredir = false; } $commentdata = get_commentdata($comment) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php')); if (!user_can_edit_post_comments($user_ID, $commentdata['comment_post_ID'])) { die( __('You are not allowed to edit comments on this post, so you cannot approve this comment.') ); } wp_set_comment_status($comment, "approve"); if (get_settings("comments_notify") == true) { wp_notify_postauthor($comment); } if (($_SERVER['HTTP_REFERER'] != "") && (false == $noredir)) { header('Location: ' . $_SERVER['HTTP_REFERER']); } else { header('Location: '. get_settings('siteurl') .'/wp-admin/edit.php?p='.$p.'&c=1#comments'); } break; case 'editedcomment': $comment_ID = (int) $_POST['comment_ID']; $comment_post_ID = (int) $_POST['comment_post_ID']; $newcomment_author = $_POST['newcomment_author']; $newcomment_author_email = $_POST['newcomment_author_email']; $newcomment_author_url = $_POST['newcomment_author_url']; $comment_status = $_POST['comment_status']; if (!user_can_edit_post_comments($user_ID, $comment_post_ID)) { die( __('You are not allowed to edit comments on this post, so you cannot edit this comment.') ); } if (user_can_edit_post_date($user_ID, $post_ID) && (!empty($_POST['edit_date']))) { $aa = $_POST['aa']; $mm = $_POST['mm']; $jj = $_POST['jj']; $hh = $_POST['hh']; $mn = $_POST['mn']; $ss = $_POST['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; $ss = ($ss > 59) ? $ss - 60 : $ss; $datemodif = ", comment_date = '$aa-$mm-$jj $hh:$mn:$ss'"; } else { $datemodif = ''; } $content = apply_filters('comment_save_pre', $_POST['content']); $result = $wpdb->query(" UPDATE $wpdb->comments SET comment_content = '$content', comment_author = '$newcomment_author', comment_author_email = '$newcomment_author_email', comment_approved = '$comment_status', comment_author_url = '$newcomment_author_url'".$datemodif." WHERE comment_ID = $comment_ID" ); $referredby = $_POST['referredby']; if (!empty($referredby)) { header('Location: ' . $referredby); } else { header ("Location: edit.php?p=$comment_post_ID&c=1#comments"); } do_action('edit_comment', $comment_ID); break; default: $title = __('Create New Post'); require_once ('./admin-header.php'); ?> <?php if ( isset($_GET['posted']) ) : ?> <div class="updated"><p><?php printf(__('Post saved. <a href="%s">View site »</a>'), get_bloginfo('home')); ?></p></div> <?php endif; ?> <?php if (user_can_create_draft($user_ID)) { $action = 'post'; get_currentuserinfo(); $drafts = $wpdb->get_results("SELECT ID, post_title FROM $wpdb->posts WHERE post_status = 'draft' AND post_author = $user_ID"); if ($drafts) { ?> <div class="wrap"> <p><strong><?php _e('Your Drafts:') ?></strong> <?php $i = 0; foreach ($drafts as $draft) { if (0 != $i) echo ', '; $draft->post_title = stripslashes($draft->post_title); if ($draft->post_title == '') $draft->post_title = sprintf(__('Post # %s'), $draft->ID); echo "<a href='post.php?action=edit&post=$draft->ID' title='" . __('Edit this draft') . "'>$draft->post_title</a>"; ++$i; } ?>.</p> </div> <?php } //set defaults $post_status = 'draft'; $comment_status = get_settings('default_comment_status'); $ping_status = get_settings('default_ping_status'); $post_pingback = get_settings('default_pingback_flag'); $default_post_cat = get_settings('default_category'); $content = wp_specialchars($content); $content = apply_filters('default_content', $content); $edited_post_title = apply_filters('default_title', $edited_post_title); $excerpt = apply_filters('default_excerpt', $excerpt); if (get_settings('advanced_edit')) { include('edit-form-advanced.php'); } else { include('edit-form.php'); } ?> <div class="wrap"> <?php _e('<h3>WordPress bookmarklet</h3> <p>You can drag the following link to your links bar or add it to your bookmarks and when you "Press it" it will open up a popup window with information and a link to the site you’re currently browsing so you can make a quick post about it. Try it out:</p>') ?> <p> <?php $bookmarklet_height= (get_settings('use_trackback')) ? 480 : 440; if ($is_NS4 || $is_gecko) { ?> <a href="javascript:if(navigator.userAgent.indexOf('Safari') >= 0){Q=getSelection();}else{Q=document.selection?document.selection.createRange().text:document.getSelection();}void(window.open('<?php echo get_settings('siteurl') ?>/wp-admin/bookmarklet.php?text='+encodeURIComponent(Q)+'&popupurl='+encodeURIComponent(location.href)+'&popuptitle='+encodeURIComponent(document.title),'<?php _e('WordPress bookmarklet') ?>','scrollbars=yes,width=600,height=460,left=100,top=150,status=yes'));"><?php printf(__('Press It - %s'), wp_specialchars(get_settings('blogname'))); ?></a> <?php } else if ($is_winIE) { ?> <a href="javascript:Q='';if(top.frames.length==0)Q=document.selection.createRange().text;void(btw=window.open('<?php echo get_settings('siteurl') ?>/wp-admin/bookmarklet.php?text='+encodeURIComponent(Q)+'<?php echo $bookmarklet_tbpb ?>&popupurl='+encodeURIComponent(location.href)+'&popuptitle='+encodeURIComponent(document.title),'bookmarklet','scrollbars=yes,width=600,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));btw.focus();"><?php printf(__('Press it - %s'), get_settings('blogname')); ?></a> <script type="text/javascript">  </script> <br /> <br /> <?php _e('One-click bookmarklet:') ?><br /> <a href="javascript:oneclickbookmarklet(0);"><?php _e('click here') ?></a> <?php } else if ($is_opera) { ?> <a href="javascript:void(window.open('<?php echo get_settings('siteurl'); ?>/wp-admin/bookmarklet.php?popupurl='+escape(location.href)+'&popuptitle='+escape(document.title)+'<?php echo $bookmarklet_tbpb ?>','bookmarklet','scrollbars=yes,width=600,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));"><?php printf(__('Press it - %s'), get_settings('blogname')); ?></a> <?php } else if ($is_macIE) { ?> <a href="javascript:Q='';if(top.frames.length==0);void(btw=window.open('<?php echo get_settings('siteurl'); ?>/wp-admin/bookmarklet.php?text='+escape(document.getSelection())+'&popupurl='+escape(location.href)+'&popuptitle='+escape(document.title)+'<?php echo $bookmarklet_tbpb ?>','bookmarklet','scrollbars=yes,width=600,height=<?php echo $bookmarklet_height ?>,left=100,top=150,status=yes'));btw.focus();"><?php printf(__('Press it - %s'), get_settings('blogname')); ?></a> <?php } ?> </p> </div> <?php } else { ?> <div class="wrap"> <p><?php printf(__('Since you’re a newcomer, you’ll have to wait for an admin to raise your level to 1, in order to be authorized to post.<br /> You can also <a href="mailto:%s?subject=Promotion?">e-mail the admin</a> to ask for a promotion.<br /> When you’re promoted, just reload this page and you’ll be able to blog. :)'), get_settings('admin_email')); ?> </p> </div> <?php } break; } // end switch /* </Edit> */ include('admin-footer.php'); ?>