PageRenderTime 53ms CodeModel.GetById 20ms RepoModel.GetById 1ms app.codeStats 0ms

/blog/wp-includes/functions.php

https://bitbucket.org/sergiohzlz/reportaprod
PHP | 3625 lines | 1989 code | 354 blank | 1282 comment | 400 complexity | 243157634e0e8a2d9f965644f8846346 MD5 | raw file
Possible License(s): GPL-2.0, GPL-3.0, AGPL-1.0, LGPL-2.1

Large files files are truncated, but you can click here to view the full file

  1. <?php
  2. /**
  3. * Main WordPress API
  4. *
  5. * @package WordPress
  6. */
  7. require( ABSPATH . WPINC . '/option.php' );
  8. /**
  9. * Converts given date string into a different format.
  10. *
  11. * $format should be either a PHP date format string, e.g. 'U' for a Unix
  12. * timestamp, or 'G' for a Unix timestamp assuming that $date is GMT.
  13. *
  14. * If $translate is true then the given date and format string will
  15. * be passed to date_i18n() for translation.
  16. *
  17. * @since 0.71
  18. *
  19. * @param string $format Format of the date to return.
  20. * @param string $date Date string to convert.
  21. * @param bool $translate Whether the return date should be translated. Default is true.
  22. * @return string|int Formatted date string, or Unix timestamp.
  23. */
  24. function mysql2date( $format, $date, $translate = true ) {
  25. if ( empty( $date ) )
  26. return false;
  27. if ( 'G' == $format )
  28. return strtotime( $date . ' +0000' );
  29. $i = strtotime( $date );
  30. if ( 'U' == $format )
  31. return $i;
  32. if ( $translate )
  33. return date_i18n( $format, $i );
  34. else
  35. return date( $format, $i );
  36. }
  37. /**
  38. * Retrieve the current time based on specified type.
  39. *
  40. * The 'mysql' type will return the time in the format for MySQL DATETIME field.
  41. * The 'timestamp' type will return the current timestamp.
  42. *
  43. * If $gmt is set to either '1' or 'true', then both types will use GMT time.
  44. * if $gmt is false, the output is adjusted with the GMT offset in the WordPress option.
  45. *
  46. * @since 1.0.0
  47. *
  48. * @param string $type Either 'mysql' or 'timestamp'.
  49. * @param int|bool $gmt Optional. Whether to use GMT timezone. Default is false.
  50. * @return int|string String if $type is 'gmt', int if $type is 'timestamp'.
  51. */
  52. function current_time( $type, $gmt = 0 ) {
  53. switch ( $type ) {
  54. case 'mysql':
  55. return ( $gmt ) ? gmdate( 'Y-m-d H:i:s' ) : gmdate( 'Y-m-d H:i:s', ( time() + ( get_option( 'gmt_offset' ) * 3600 ) ) );
  56. break;
  57. case 'timestamp':
  58. return ( $gmt ) ? time() : time() + ( get_option( 'gmt_offset' ) * 3600 );
  59. break;
  60. }
  61. }
  62. /**
  63. * Retrieve the date in localized format, based on timestamp.
  64. *
  65. * If the locale specifies the locale month and weekday, then the locale will
  66. * take over the format for the date. If it isn't, then the date format string
  67. * will be used instead.
  68. *
  69. * @since 0.71
  70. *
  71. * @param string $dateformatstring Format to display the date.
  72. * @param int $unixtimestamp Optional. Unix timestamp.
  73. * @param bool $gmt Optional, default is false. Whether to convert to GMT for time.
  74. * @return string The date, translated if locale specifies it.
  75. */
  76. function date_i18n( $dateformatstring, $unixtimestamp = false, $gmt = false ) {
  77. global $wp_locale;
  78. $i = $unixtimestamp;
  79. if ( false === $i ) {
  80. if ( ! $gmt )
  81. $i = current_time( 'timestamp' );
  82. else
  83. $i = time();
  84. // we should not let date() interfere with our
  85. // specially computed timestamp
  86. $gmt = true;
  87. }
  88. // store original value for language with untypical grammars
  89. // see http://core.trac.wordpress.org/ticket/9396
  90. $req_format = $dateformatstring;
  91. $datefunc = $gmt? 'gmdate' : 'date';
  92. if ( ( !empty( $wp_locale->month ) ) && ( !empty( $wp_locale->weekday ) ) ) {
  93. $datemonth = $wp_locale->get_month( $datefunc( 'm', $i ) );
  94. $datemonth_abbrev = $wp_locale->get_month_abbrev( $datemonth );
  95. $dateweekday = $wp_locale->get_weekday( $datefunc( 'w', $i ) );
  96. $dateweekday_abbrev = $wp_locale->get_weekday_abbrev( $dateweekday );
  97. $datemeridiem = $wp_locale->get_meridiem( $datefunc( 'a', $i ) );
  98. $datemeridiem_capital = $wp_locale->get_meridiem( $datefunc( 'A', $i ) );
  99. $dateformatstring = ' '.$dateformatstring;
  100. $dateformatstring = preg_replace( "/([^\\\])D/", "\\1" . backslashit( $dateweekday_abbrev ), $dateformatstring );
  101. $dateformatstring = preg_replace( "/([^\\\])F/", "\\1" . backslashit( $datemonth ), $dateformatstring );
  102. $dateformatstring = preg_replace( "/([^\\\])l/", "\\1" . backslashit( $dateweekday ), $dateformatstring );
  103. $dateformatstring = preg_replace( "/([^\\\])M/", "\\1" . backslashit( $datemonth_abbrev ), $dateformatstring );
  104. $dateformatstring = preg_replace( "/([^\\\])a/", "\\1" . backslashit( $datemeridiem ), $dateformatstring );
  105. $dateformatstring = preg_replace( "/([^\\\])A/", "\\1" . backslashit( $datemeridiem_capital ), $dateformatstring );
  106. $dateformatstring = substr( $dateformatstring, 1, strlen( $dateformatstring ) -1 );
  107. }
  108. $timezone_formats = array( 'P', 'I', 'O', 'T', 'Z', 'e' );
  109. $timezone_formats_re = implode( '|', $timezone_formats );
  110. if ( preg_match( "/$timezone_formats_re/", $dateformatstring ) ) {
  111. $timezone_string = get_option( 'timezone_string' );
  112. if ( $timezone_string ) {
  113. $timezone_object = timezone_open( $timezone_string );
  114. $date_object = date_create( null, $timezone_object );
  115. foreach( $timezone_formats as $timezone_format ) {
  116. if ( false !== strpos( $dateformatstring, $timezone_format ) ) {
  117. $formatted = date_format( $date_object, $timezone_format );
  118. $dateformatstring = ' '.$dateformatstring;
  119. $dateformatstring = preg_replace( "/([^\\\])$timezone_format/", "\\1" . backslashit( $formatted ), $dateformatstring );
  120. $dateformatstring = substr( $dateformatstring, 1, strlen( $dateformatstring ) -1 );
  121. }
  122. }
  123. }
  124. }
  125. $j = @$datefunc( $dateformatstring, $i );
  126. // allow plugins to redo this entirely for languages with untypical grammars
  127. $j = apply_filters('date_i18n', $j, $req_format, $i, $gmt);
  128. return $j;
  129. }
  130. /**
  131. * Convert integer number to format based on the locale.
  132. *
  133. * @since 2.3.0
  134. *
  135. * @param int $number The number to convert based on locale.
  136. * @param int $decimals Precision of the number of decimal places.
  137. * @return string Converted number in string format.
  138. */
  139. function number_format_i18n( $number, $decimals = 0 ) {
  140. global $wp_locale;
  141. $formatted = number_format( $number, absint( $decimals ), $wp_locale->number_format['decimal_point'], $wp_locale->number_format['thousands_sep'] );
  142. return apply_filters( 'number_format_i18n', $formatted );
  143. }
  144. /**
  145. * Convert number of bytes largest unit bytes will fit into.
  146. *
  147. * It is easier to read 1kB than 1024 bytes and 1MB than 1048576 bytes. Converts
  148. * number of bytes to human readable number by taking the number of that unit
  149. * that the bytes will go into it. Supports TB value.
  150. *
  151. * Please note that integers in PHP are limited to 32 bits, unless they are on
  152. * 64 bit architecture, then they have 64 bit size. If you need to place the
  153. * larger size then what PHP integer type will hold, then use a string. It will
  154. * be converted to a double, which should always have 64 bit length.
  155. *
  156. * Technically the correct unit names for powers of 1024 are KiB, MiB etc.
  157. * @link http://en.wikipedia.org/wiki/Byte
  158. *
  159. * @since 2.3.0
  160. *
  161. * @param int|string $bytes Number of bytes. Note max integer size for integers.
  162. * @param int $decimals Precision of number of decimal places. Deprecated.
  163. * @return bool|string False on failure. Number string on success.
  164. */
  165. function size_format( $bytes, $decimals = 0 ) {
  166. $quant = array(
  167. // ========================= Origin ====
  168. 'TB' => 1099511627776, // pow( 1024, 4)
  169. 'GB' => 1073741824, // pow( 1024, 3)
  170. 'MB' => 1048576, // pow( 1024, 2)
  171. 'kB' => 1024, // pow( 1024, 1)
  172. 'B ' => 1, // pow( 1024, 0)
  173. );
  174. foreach ( $quant as $unit => $mag )
  175. if ( doubleval($bytes) >= $mag )
  176. return number_format_i18n( $bytes / $mag, $decimals ) . ' ' . $unit;
  177. return false;
  178. }
  179. /**
  180. * Get the week start and end from the datetime or date string from mysql.
  181. *
  182. * @since 0.71
  183. *
  184. * @param string $mysqlstring Date or datetime field type from mysql.
  185. * @param int $start_of_week Optional. Start of the week as an integer.
  186. * @return array Keys are 'start' and 'end'.
  187. */
  188. function get_weekstartend( $mysqlstring, $start_of_week = '' ) {
  189. $my = substr( $mysqlstring, 0, 4 ); // Mysql string Year
  190. $mm = substr( $mysqlstring, 8, 2 ); // Mysql string Month
  191. $md = substr( $mysqlstring, 5, 2 ); // Mysql string day
  192. $day = mktime( 0, 0, 0, $md, $mm, $my ); // The timestamp for mysqlstring day.
  193. $weekday = date( 'w', $day ); // The day of the week from the timestamp
  194. if ( !is_numeric($start_of_week) )
  195. $start_of_week = get_option( 'start_of_week' );
  196. if ( $weekday < $start_of_week )
  197. $weekday += 7;
  198. $start = $day - 86400 * ( $weekday - $start_of_week ); // The most recent week start day on or before $day
  199. $end = $start + 604799; // $start + 7 days - 1 second
  200. return compact( 'start', 'end' );
  201. }
  202. /**
  203. * Unserialize value only if it was serialized.
  204. *
  205. * @since 2.0.0
  206. *
  207. * @param string $original Maybe unserialized original, if is needed.
  208. * @return mixed Unserialized data can be any type.
  209. */
  210. function maybe_unserialize( $original ) {
  211. if ( is_serialized( $original ) ) // don't attempt to unserialize data that wasn't serialized going in
  212. return @unserialize( $original );
  213. return $original;
  214. }
  215. /**
  216. * Check value to find if it was serialized.
  217. *
  218. * If $data is not an string, then returned value will always be false.
  219. * Serialized data is always a string.
  220. *
  221. * @since 2.0.5
  222. *
  223. * @param mixed $data Value to check to see if was serialized.
  224. * @return bool False if not serialized and true if it was.
  225. */
  226. function is_serialized( $data ) {
  227. // if it isn't a string, it isn't serialized
  228. if ( ! is_string( $data ) )
  229. return false;
  230. $data = trim( $data );
  231. if ( 'N;' == $data )
  232. return true;
  233. $length = strlen( $data );
  234. if ( $length < 4 )
  235. return false;
  236. if ( ':' !== $data[1] )
  237. return false;
  238. $lastc = $data[$length-1];
  239. if ( ';' !== $lastc && '}' !== $lastc )
  240. return false;
  241. $token = $data[0];
  242. switch ( $token ) {
  243. case 's' :
  244. if ( '"' !== $data[$length-2] )
  245. return false;
  246. case 'a' :
  247. case 'O' :
  248. return (bool) preg_match( "/^{$token}:[0-9]+:/s", $data );
  249. case 'b' :
  250. case 'i' :
  251. case 'd' :
  252. return (bool) preg_match( "/^{$token}:[0-9.E-]+;\$/", $data );
  253. }
  254. return false;
  255. }
  256. /**
  257. * Check whether serialized data is of string type.
  258. *
  259. * @since 2.0.5
  260. *
  261. * @param mixed $data Serialized data
  262. * @return bool False if not a serialized string, true if it is.
  263. */
  264. function is_serialized_string( $data ) {
  265. // if it isn't a string, it isn't a serialized string
  266. if ( !is_string( $data ) )
  267. return false;
  268. $data = trim( $data );
  269. $length = strlen( $data );
  270. if ( $length < 4 )
  271. return false;
  272. elseif ( ':' !== $data[1] )
  273. return false;
  274. elseif ( ';' !== $data[$length-1] )
  275. return false;
  276. elseif ( $data[0] !== 's' )
  277. return false;
  278. elseif ( '"' !== $data[$length-2] )
  279. return false;
  280. else
  281. return true;
  282. }
  283. /**
  284. * Serialize data, if needed.
  285. *
  286. * @since 2.0.5
  287. *
  288. * @param mixed $data Data that might be serialized.
  289. * @return mixed A scalar data
  290. */
  291. function maybe_serialize( $data ) {
  292. if ( is_array( $data ) || is_object( $data ) )
  293. return serialize( $data );
  294. // Double serialization is required for backward compatibility.
  295. // See http://core.trac.wordpress.org/ticket/12930
  296. if ( is_serialized( $data ) )
  297. return serialize( $data );
  298. return $data;
  299. }
  300. /**
  301. * Retrieve post title from XMLRPC XML.
  302. *
  303. * If the title element is not part of the XML, then the default post title from
  304. * the $post_default_title will be used instead.
  305. *
  306. * @package WordPress
  307. * @subpackage XMLRPC
  308. * @since 0.71
  309. *
  310. * @global string $post_default_title Default XMLRPC post title.
  311. *
  312. * @param string $content XMLRPC XML Request content
  313. * @return string Post title
  314. */
  315. function xmlrpc_getposttitle( $content ) {
  316. global $post_default_title;
  317. if ( preg_match( '/<title>(.+?)<\/title>/is', $content, $matchtitle ) ) {
  318. $post_title = $matchtitle[1];
  319. } else {
  320. $post_title = $post_default_title;
  321. }
  322. return $post_title;
  323. }
  324. /**
  325. * Retrieve the post category or categories from XMLRPC XML.
  326. *
  327. * If the category element is not found, then the default post category will be
  328. * used. The return type then would be what $post_default_category. If the
  329. * category is found, then it will always be an array.
  330. *
  331. * @package WordPress
  332. * @subpackage XMLRPC
  333. * @since 0.71
  334. *
  335. * @global string $post_default_category Default XMLRPC post category.
  336. *
  337. * @param string $content XMLRPC XML Request content
  338. * @return string|array List of categories or category name.
  339. */
  340. function xmlrpc_getpostcategory( $content ) {
  341. global $post_default_category;
  342. if ( preg_match( '/<category>(.+?)<\/category>/is', $content, $matchcat ) ) {
  343. $post_category = trim( $matchcat[1], ',' );
  344. $post_category = explode( ',', $post_category );
  345. } else {
  346. $post_category = $post_default_category;
  347. }
  348. return $post_category;
  349. }
  350. /**
  351. * XMLRPC XML content without title and category elements.
  352. *
  353. * @package WordPress
  354. * @subpackage XMLRPC
  355. * @since 0.71
  356. *
  357. * @param string $content XMLRPC XML Request content
  358. * @return string XMLRPC XML Request content without title and category elements.
  359. */
  360. function xmlrpc_removepostdata( $content ) {
  361. $content = preg_replace( '/<title>(.+?)<\/title>/si', '', $content );
  362. $content = preg_replace( '/<category>(.+?)<\/category>/si', '', $content );
  363. $content = trim( $content );
  364. return $content;
  365. }
  366. /**
  367. * Check content for video and audio links to add as enclosures.
  368. *
  369. * Will not add enclosures that have already been added and will
  370. * remove enclosures that are no longer in the post. This is called as
  371. * pingbacks and trackbacks.
  372. *
  373. * @package WordPress
  374. * @since 1.5.0
  375. *
  376. * @uses $wpdb
  377. *
  378. * @param string $content Post Content
  379. * @param int $post_ID Post ID
  380. */
  381. function do_enclose( $content, $post_ID ) {
  382. global $wpdb;
  383. //TODO: Tidy this ghetto code up and make the debug code optional
  384. include_once( ABSPATH . WPINC . '/class-IXR.php' );
  385. $post_links = array();
  386. $pung = get_enclosed( $post_ID );
  387. $ltrs = '\w';
  388. $gunk = '/#~:.?+=&%@!\-';
  389. $punc = '.:?\-';
  390. $any = $ltrs . $gunk . $punc;
  391. preg_match_all( "{\b http : [$any] +? (?= [$punc] * [^$any] | $)}x", $content, $post_links_temp );
  392. foreach ( $pung as $link_test ) {
  393. if ( !in_array( $link_test, $post_links_temp[0] ) ) { // link no longer in post
  394. $mids = $wpdb->get_col( $wpdb->prepare("SELECT meta_id FROM $wpdb->postmeta WHERE post_id = %d AND meta_key = 'enclosure' AND meta_value LIKE (%s)", $post_ID, like_escape( $link_test ) . '%') );
  395. foreach ( $mids as $mid )
  396. delete_metadata_by_mid( 'post', $mid );
  397. }
  398. }
  399. foreach ( (array) $post_links_temp[0] as $link_test ) {
  400. if ( !in_array( $link_test, $pung ) ) { // If we haven't pung it already
  401. $test = @parse_url( $link_test );
  402. if ( false === $test )
  403. continue;
  404. if ( isset( $test['query'] ) )
  405. $post_links[] = $link_test;
  406. elseif ( isset($test['path']) && ( $test['path'] != '/' ) && ($test['path'] != '' ) )
  407. $post_links[] = $link_test;
  408. }
  409. }
  410. foreach ( (array) $post_links as $url ) {
  411. if ( $url != '' && !$wpdb->get_var( $wpdb->prepare( "SELECT post_id FROM $wpdb->postmeta WHERE post_id = %d AND meta_key = 'enclosure' AND meta_value LIKE (%s)", $post_ID, like_escape( $url ) . '%' ) ) ) {
  412. if ( $headers = wp_get_http_headers( $url) ) {
  413. $len = isset( $headers['content-length'] ) ? (int) $headers['content-length'] : 0;
  414. $type = isset( $headers['content-type'] ) ? $headers['content-type'] : '';
  415. $allowed_types = array( 'video', 'audio' );
  416. // Check to see if we can figure out the mime type from
  417. // the extension
  418. $url_parts = @parse_url( $url );
  419. if ( false !== $url_parts ) {
  420. $extension = pathinfo( $url_parts['path'], PATHINFO_EXTENSION );
  421. if ( !empty( $extension ) ) {
  422. foreach ( get_allowed_mime_types( ) as $exts => $mime ) {
  423. if ( preg_match( '!^(' . $exts . ')$!i', $extension ) ) {
  424. $type = $mime;
  425. break;
  426. }
  427. }
  428. }
  429. }
  430. if ( in_array( substr( $type, 0, strpos( $type, "/" ) ), $allowed_types ) ) {
  431. add_post_meta( $post_ID, 'enclosure', "$url\n$len\n$mime\n" );
  432. }
  433. }
  434. }
  435. }
  436. }
  437. /**
  438. * Perform a HTTP HEAD or GET request.
  439. *
  440. * If $file_path is a writable filename, this will do a GET request and write
  441. * the file to that path.
  442. *
  443. * @since 2.5.0
  444. *
  445. * @param string $url URL to fetch.
  446. * @param string|bool $file_path Optional. File path to write request to.
  447. * @param int $red (private) The number of Redirects followed, Upon 5 being hit, returns false.
  448. * @return bool|string False on failure and string of headers if HEAD request.
  449. */
  450. function wp_get_http( $url, $file_path = false, $red = 1 ) {
  451. @set_time_limit( 60 );
  452. if ( $red > 5 )
  453. return false;
  454. $options = array();
  455. $options['redirection'] = 5;
  456. if ( false == $file_path )
  457. $options['method'] = 'HEAD';
  458. else
  459. $options['method'] = 'GET';
  460. $response = wp_remote_request($url, $options);
  461. if ( is_wp_error( $response ) )
  462. return false;
  463. $headers = wp_remote_retrieve_headers( $response );
  464. $headers['response'] = wp_remote_retrieve_response_code( $response );
  465. // WP_HTTP no longer follows redirects for HEAD requests.
  466. if ( 'HEAD' == $options['method'] && in_array($headers['response'], array(301, 302)) && isset( $headers['location'] ) ) {
  467. return wp_get_http( $headers['location'], $file_path, ++$red );
  468. }
  469. if ( false == $file_path )
  470. return $headers;
  471. // GET request - write it to the supplied filename
  472. $out_fp = fopen($file_path, 'w');
  473. if ( !$out_fp )
  474. return $headers;
  475. fwrite( $out_fp, wp_remote_retrieve_body( $response ) );
  476. fclose($out_fp);
  477. clearstatcache();
  478. return $headers;
  479. }
  480. /**
  481. * Retrieve HTTP Headers from URL.
  482. *
  483. * @since 1.5.1
  484. *
  485. * @param string $url
  486. * @param bool $deprecated Not Used.
  487. * @return bool|string False on failure, headers on success.
  488. */
  489. function wp_get_http_headers( $url, $deprecated = false ) {
  490. if ( !empty( $deprecated ) )
  491. _deprecated_argument( __FUNCTION__, '2.7' );
  492. $response = wp_remote_head( $url );
  493. if ( is_wp_error( $response ) )
  494. return false;
  495. return wp_remote_retrieve_headers( $response );
  496. }
  497. /**
  498. * Whether today is a new day.
  499. *
  500. * @since 0.71
  501. * @uses $day Today
  502. * @uses $previousday Previous day
  503. *
  504. * @return int 1 when new day, 0 if not a new day.
  505. */
  506. function is_new_day() {
  507. global $currentday, $previousday;
  508. if ( $currentday != $previousday )
  509. return 1;
  510. else
  511. return 0;
  512. }
  513. /**
  514. * Build URL query based on an associative and, or indexed array.
  515. *
  516. * This is a convenient function for easily building url queries. It sets the
  517. * separator to '&' and uses _http_build_query() function.
  518. *
  519. * @see _http_build_query() Used to build the query
  520. * @link http://us2.php.net/manual/en/function.http-build-query.php more on what
  521. * http_build_query() does.
  522. *
  523. * @since 2.3.0
  524. *
  525. * @param array $data URL-encode key/value pairs.
  526. * @return string URL encoded string
  527. */
  528. function build_query( $data ) {
  529. return _http_build_query( $data, null, '&', '', false );
  530. }
  531. // from php.net (modified by Mark Jaquith to behave like the native PHP5 function)
  532. function _http_build_query($data, $prefix=null, $sep=null, $key='', $urlencode=true) {
  533. $ret = array();
  534. foreach ( (array) $data as $k => $v ) {
  535. if ( $urlencode)
  536. $k = urlencode($k);
  537. if ( is_int($k) && $prefix != null )
  538. $k = $prefix.$k;
  539. if ( !empty($key) )
  540. $k = $key . '%5B' . $k . '%5D';
  541. if ( $v === null )
  542. continue;
  543. elseif ( $v === FALSE )
  544. $v = '0';
  545. if ( is_array($v) || is_object($v) )
  546. array_push($ret,_http_build_query($v, '', $sep, $k, $urlencode));
  547. elseif ( $urlencode )
  548. array_push($ret, $k.'='.urlencode($v));
  549. else
  550. array_push($ret, $k.'='.$v);
  551. }
  552. if ( null === $sep )
  553. $sep = ini_get('arg_separator.output');
  554. return implode($sep, $ret);
  555. }
  556. /**
  557. * Retrieve a modified URL query string.
  558. *
  559. * You can rebuild the URL and append a new query variable to the URL query by
  560. * using this function. You can also retrieve the full URL with query data.
  561. *
  562. * Adding a single key & value or an associative array. Setting a key value to
  563. * an empty string removes the key. Omitting oldquery_or_uri uses the $_SERVER
  564. * value. Additional values provided are expected to be encoded appropriately
  565. * with urlencode() or rawurlencode().
  566. *
  567. * @since 1.5.0
  568. *
  569. * @param mixed $param1 Either newkey or an associative_array
  570. * @param mixed $param2 Either newvalue or oldquery or uri
  571. * @param mixed $param3 Optional. Old query or uri
  572. * @return string New URL query string.
  573. */
  574. function add_query_arg() {
  575. $ret = '';
  576. if ( is_array( func_get_arg(0) ) ) {
  577. if ( @func_num_args() < 2 || false === @func_get_arg( 1 ) )
  578. $uri = $_SERVER['REQUEST_URI'];
  579. else
  580. $uri = @func_get_arg( 1 );
  581. } else {
  582. if ( @func_num_args() < 3 || false === @func_get_arg( 2 ) )
  583. $uri = $_SERVER['REQUEST_URI'];
  584. else
  585. $uri = @func_get_arg( 2 );
  586. }
  587. if ( $frag = strstr( $uri, '#' ) )
  588. $uri = substr( $uri, 0, -strlen( $frag ) );
  589. else
  590. $frag = '';
  591. if ( preg_match( '|^https?://|i', $uri, $matches ) ) {
  592. $protocol = $matches[0];
  593. $uri = substr( $uri, strlen( $protocol ) );
  594. } else {
  595. $protocol = '';
  596. }
  597. if ( strpos( $uri, '?' ) !== false ) {
  598. $parts = explode( '?', $uri, 2 );
  599. if ( 1 == count( $parts ) ) {
  600. $base = '?';
  601. $query = $parts[0];
  602. } else {
  603. $base = $parts[0] . '?';
  604. $query = $parts[1];
  605. }
  606. } elseif ( !empty( $protocol ) || strpos( $uri, '=' ) === false ) {
  607. $base = $uri . '?';
  608. $query = '';
  609. } else {
  610. $base = '';
  611. $query = $uri;
  612. }
  613. wp_parse_str( $query, $qs );
  614. $qs = urlencode_deep( $qs ); // this re-URL-encodes things that were already in the query string
  615. if ( is_array( func_get_arg( 0 ) ) ) {
  616. $kayvees = func_get_arg( 0 );
  617. $qs = array_merge( $qs, $kayvees );
  618. } else {
  619. $qs[func_get_arg( 0 )] = func_get_arg( 1 );
  620. }
  621. foreach ( (array) $qs as $k => $v ) {
  622. if ( $v === false )
  623. unset( $qs[$k] );
  624. }
  625. $ret = build_query( $qs );
  626. $ret = trim( $ret, '?' );
  627. $ret = preg_replace( '#=(&|$)#', '$1', $ret );
  628. $ret = $protocol . $base . $ret . $frag;
  629. $ret = rtrim( $ret, '?' );
  630. return $ret;
  631. }
  632. /**
  633. * Removes an item or list from the query string.
  634. *
  635. * @since 1.5.0
  636. *
  637. * @param string|array $key Query key or keys to remove.
  638. * @param bool $query When false uses the $_SERVER value.
  639. * @return string New URL query string.
  640. */
  641. function remove_query_arg( $key, $query=false ) {
  642. if ( is_array( $key ) ) { // removing multiple keys
  643. foreach ( $key as $k )
  644. $query = add_query_arg( $k, false, $query );
  645. return $query;
  646. }
  647. return add_query_arg( $key, false, $query );
  648. }
  649. /**
  650. * Walks the array while sanitizing the contents.
  651. *
  652. * @since 0.71
  653. *
  654. * @param array $array Array to used to walk while sanitizing contents.
  655. * @return array Sanitized $array.
  656. */
  657. function add_magic_quotes( $array ) {
  658. foreach ( (array) $array as $k => $v ) {
  659. if ( is_array( $v ) ) {
  660. $array[$k] = add_magic_quotes( $v );
  661. } else {
  662. $array[$k] = addslashes( $v );
  663. }
  664. }
  665. return $array;
  666. }
  667. /**
  668. * HTTP request for URI to retrieve content.
  669. *
  670. * @since 1.5.1
  671. * @uses wp_remote_get()
  672. *
  673. * @param string $uri URI/URL of web page to retrieve.
  674. * @return bool|string HTTP content. False on failure.
  675. */
  676. function wp_remote_fopen( $uri ) {
  677. $parsed_url = @parse_url( $uri );
  678. if ( !$parsed_url || !is_array( $parsed_url ) )
  679. return false;
  680. $options = array();
  681. $options['timeout'] = 10;
  682. $response = wp_remote_get( $uri, $options );
  683. if ( is_wp_error( $response ) )
  684. return false;
  685. return wp_remote_retrieve_body( $response );
  686. }
  687. /**
  688. * Set up the WordPress query.
  689. *
  690. * @since 2.0.0
  691. *
  692. * @param string $query_vars Default WP_Query arguments.
  693. */
  694. function wp( $query_vars = '' ) {
  695. global $wp, $wp_query, $wp_the_query;
  696. $wp->main( $query_vars );
  697. if ( !isset($wp_the_query) )
  698. $wp_the_query = $wp_query;
  699. }
  700. /**
  701. * Retrieve the description for the HTTP status.
  702. *
  703. * @since 2.3.0
  704. *
  705. * @param int $code HTTP status code.
  706. * @return string Empty string if not found, or description if found.
  707. */
  708. function get_status_header_desc( $code ) {
  709. global $wp_header_to_desc;
  710. $code = absint( $code );
  711. if ( !isset( $wp_header_to_desc ) ) {
  712. $wp_header_to_desc = array(
  713. 100 => 'Continue',
  714. 101 => 'Switching Protocols',
  715. 102 => 'Processing',
  716. 200 => 'OK',
  717. 201 => 'Created',
  718. 202 => 'Accepted',
  719. 203 => 'Non-Authoritative Information',
  720. 204 => 'No Content',
  721. 205 => 'Reset Content',
  722. 206 => 'Partial Content',
  723. 207 => 'Multi-Status',
  724. 226 => 'IM Used',
  725. 300 => 'Multiple Choices',
  726. 301 => 'Moved Permanently',
  727. 302 => 'Found',
  728. 303 => 'See Other',
  729. 304 => 'Not Modified',
  730. 305 => 'Use Proxy',
  731. 306 => 'Reserved',
  732. 307 => 'Temporary Redirect',
  733. 400 => 'Bad Request',
  734. 401 => 'Unauthorized',
  735. 402 => 'Payment Required',
  736. 403 => 'Forbidden',
  737. 404 => 'Not Found',
  738. 405 => 'Method Not Allowed',
  739. 406 => 'Not Acceptable',
  740. 407 => 'Proxy Authentication Required',
  741. 408 => 'Request Timeout',
  742. 409 => 'Conflict',
  743. 410 => 'Gone',
  744. 411 => 'Length Required',
  745. 412 => 'Precondition Failed',
  746. 413 => 'Request Entity Too Large',
  747. 414 => 'Request-URI Too Long',
  748. 415 => 'Unsupported Media Type',
  749. 416 => 'Requested Range Not Satisfiable',
  750. 417 => 'Expectation Failed',
  751. 422 => 'Unprocessable Entity',
  752. 423 => 'Locked',
  753. 424 => 'Failed Dependency',
  754. 426 => 'Upgrade Required',
  755. 500 => 'Internal Server Error',
  756. 501 => 'Not Implemented',
  757. 502 => 'Bad Gateway',
  758. 503 => 'Service Unavailable',
  759. 504 => 'Gateway Timeout',
  760. 505 => 'HTTP Version Not Supported',
  761. 506 => 'Variant Also Negotiates',
  762. 507 => 'Insufficient Storage',
  763. 510 => 'Not Extended'
  764. );
  765. }
  766. if ( isset( $wp_header_to_desc[$code] ) )
  767. return $wp_header_to_desc[$code];
  768. else
  769. return '';
  770. }
  771. /**
  772. * Set HTTP status header.
  773. *
  774. * @since 2.0.0
  775. * @uses apply_filters() Calls 'status_header' on status header string, HTTP
  776. * HTTP code, HTTP code description, and protocol string as separate
  777. * parameters.
  778. *
  779. * @param int $header HTTP status code
  780. * @return unknown
  781. */
  782. function status_header( $header ) {
  783. $text = get_status_header_desc( $header );
  784. if ( empty( $text ) )
  785. return false;
  786. $protocol = $_SERVER["SERVER_PROTOCOL"];
  787. if ( 'HTTP/1.1' != $protocol && 'HTTP/1.0' != $protocol )
  788. $protocol = 'HTTP/1.0';
  789. $status_header = "$protocol $header $text";
  790. if ( function_exists( 'apply_filters' ) )
  791. $status_header = apply_filters( 'status_header', $status_header, $header, $text, $protocol );
  792. return @header( $status_header, true, $header );
  793. }
  794. /**
  795. * Gets the header information to prevent caching.
  796. *
  797. * The several different headers cover the different ways cache prevention is handled
  798. * by different browsers
  799. *
  800. * @since 2.8.0
  801. *
  802. * @uses apply_filters()
  803. * @return array The associative array of header names and field values.
  804. */
  805. function wp_get_nocache_headers() {
  806. $headers = array(
  807. 'Expires' => 'Wed, 11 Jan 1984 05:00:00 GMT',
  808. 'Last-Modified' => gmdate( 'D, d M Y H:i:s' ) . ' GMT',
  809. 'Cache-Control' => 'no-cache, must-revalidate, max-age=0',
  810. 'Pragma' => 'no-cache',
  811. );
  812. if ( function_exists('apply_filters') ) {
  813. $headers = (array) apply_filters('nocache_headers', $headers);
  814. }
  815. return $headers;
  816. }
  817. /**
  818. * Sets the headers to prevent caching for the different browsers.
  819. *
  820. * Different browsers support different nocache headers, so several headers must
  821. * be sent so that all of them get the point that no caching should occur.
  822. *
  823. * @since 2.0.0
  824. * @uses wp_get_nocache_headers()
  825. */
  826. function nocache_headers() {
  827. $headers = wp_get_nocache_headers();
  828. foreach( $headers as $name => $field_value )
  829. @header("{$name}: {$field_value}");
  830. }
  831. /**
  832. * Set the headers for caching for 10 days with JavaScript content type.
  833. *
  834. * @since 2.1.0
  835. */
  836. function cache_javascript_headers() {
  837. $expiresOffset = 864000; // 10 days
  838. header( "Content-Type: text/javascript; charset=" . get_bloginfo( 'charset' ) );
  839. header( "Vary: Accept-Encoding" ); // Handle proxies
  840. header( "Expires: " . gmdate( "D, d M Y H:i:s", time() + $expiresOffset ) . " GMT" );
  841. }
  842. /**
  843. * Retrieve the number of database queries during the WordPress execution.
  844. *
  845. * @since 2.0.0
  846. *
  847. * @return int Number of database queries
  848. */
  849. function get_num_queries() {
  850. global $wpdb;
  851. return $wpdb->num_queries;
  852. }
  853. /**
  854. * Whether input is yes or no. Must be 'y' to be true.
  855. *
  856. * @since 1.0.0
  857. *
  858. * @param string $yn Character string containing either 'y' or 'n'
  859. * @return bool True if yes, false on anything else
  860. */
  861. function bool_from_yn( $yn ) {
  862. return ( strtolower( $yn ) == 'y' );
  863. }
  864. /**
  865. * Loads the feed template from the use of an action hook.
  866. *
  867. * If the feed action does not have a hook, then the function will die with a
  868. * message telling the visitor that the feed is not valid.
  869. *
  870. * It is better to only have one hook for each feed.
  871. *
  872. * @since 2.1.0
  873. * @uses $wp_query Used to tell if the use a comment feed.
  874. * @uses do_action() Calls 'do_feed_$feed' hook, if a hook exists for the feed.
  875. */
  876. function do_feed() {
  877. global $wp_query;
  878. $feed = get_query_var( 'feed' );
  879. // Remove the pad, if present.
  880. $feed = preg_replace( '/^_+/', '', $feed );
  881. if ( $feed == '' || $feed == 'feed' )
  882. $feed = get_default_feed();
  883. $hook = 'do_feed_' . $feed;
  884. if ( !has_action($hook) ) {
  885. $message = sprintf( __( 'ERROR: %s is not a valid feed template.' ), esc_html($feed));
  886. wp_die( $message, '', array( 'response' => 404 ) );
  887. }
  888. do_action( $hook, $wp_query->is_comment_feed );
  889. }
  890. /**
  891. * Load the RDF RSS 0.91 Feed template.
  892. *
  893. * @since 2.1.0
  894. */
  895. function do_feed_rdf() {
  896. load_template( ABSPATH . WPINC . '/feed-rdf.php' );
  897. }
  898. /**
  899. * Load the RSS 1.0 Feed Template.
  900. *
  901. * @since 2.1.0
  902. */
  903. function do_feed_rss() {
  904. load_template( ABSPATH . WPINC . '/feed-rss.php' );
  905. }
  906. /**
  907. * Load either the RSS2 comment feed or the RSS2 posts feed.
  908. *
  909. * @since 2.1.0
  910. *
  911. * @param bool $for_comments True for the comment feed, false for normal feed.
  912. */
  913. function do_feed_rss2( $for_comments ) {
  914. if ( $for_comments )
  915. load_template( ABSPATH . WPINC . '/feed-rss2-comments.php' );
  916. else
  917. load_template( ABSPATH . WPINC . '/feed-rss2.php' );
  918. }
  919. /**
  920. * Load either Atom comment feed or Atom posts feed.
  921. *
  922. * @since 2.1.0
  923. *
  924. * @param bool $for_comments True for the comment feed, false for normal feed.
  925. */
  926. function do_feed_atom( $for_comments ) {
  927. if ($for_comments)
  928. load_template( ABSPATH . WPINC . '/feed-atom-comments.php');
  929. else
  930. load_template( ABSPATH . WPINC . '/feed-atom.php' );
  931. }
  932. /**
  933. * Display the robots.txt file content.
  934. *
  935. * The echo content should be with usage of the permalinks or for creating the
  936. * robots.txt file.
  937. *
  938. * @since 2.1.0
  939. * @uses do_action() Calls 'do_robotstxt' hook for displaying robots.txt rules.
  940. */
  941. function do_robots() {
  942. header( 'Content-Type: text/plain; charset=utf-8' );
  943. do_action( 'do_robotstxt' );
  944. $output = "User-agent: *\n";
  945. $public = get_option( 'blog_public' );
  946. if ( '0' == $public ) {
  947. $output .= "Disallow: /\n";
  948. } else {
  949. $site_url = parse_url( site_url() );
  950. $path = ( !empty( $site_url['path'] ) ) ? $site_url['path'] : '';
  951. $output .= "Disallow: $path/wp-admin/\n";
  952. $output .= "Disallow: $path/wp-includes/\n";
  953. }
  954. echo apply_filters('robots_txt', $output, $public);
  955. }
  956. /**
  957. * Test whether blog is already installed.
  958. *
  959. * The cache will be checked first. If you have a cache plugin, which saves the
  960. * cache values, then this will work. If you use the default WordPress cache,
  961. * and the database goes away, then you might have problems.
  962. *
  963. * Checks for the option siteurl for whether WordPress is installed.
  964. *
  965. * @since 2.1.0
  966. * @uses $wpdb
  967. *
  968. * @return bool Whether blog is already installed.
  969. */
  970. function is_blog_installed() {
  971. global $wpdb;
  972. // Check cache first. If options table goes away and we have true cached, oh well.
  973. if ( wp_cache_get( 'is_blog_installed' ) )
  974. return true;
  975. $suppress = $wpdb->suppress_errors();
  976. if ( ! defined( 'WP_INSTALLING' ) ) {
  977. $alloptions = wp_load_alloptions();
  978. }
  979. // If siteurl is not set to autoload, check it specifically
  980. if ( !isset( $alloptions['siteurl'] ) )
  981. $installed = $wpdb->get_var( "SELECT option_value FROM $wpdb->options WHERE option_name = 'siteurl'" );
  982. else
  983. $installed = $alloptions['siteurl'];
  984. $wpdb->suppress_errors( $suppress );
  985. $installed = !empty( $installed );
  986. wp_cache_set( 'is_blog_installed', $installed );
  987. if ( $installed )
  988. return true;
  989. // If visiting repair.php, return true and let it take over.
  990. if ( defined( 'WP_REPAIRING' ) )
  991. return true;
  992. $suppress = $wpdb->suppress_errors();
  993. // Loop over the WP tables. If none exist, then scratch install is allowed.
  994. // If one or more exist, suggest table repair since we got here because the options
  995. // table could not be accessed.
  996. $wp_tables = $wpdb->tables();
  997. foreach ( $wp_tables as $table ) {
  998. // The existence of custom user tables shouldn't suggest an insane state or prevent a clean install.
  999. if ( defined( 'CUSTOM_USER_TABLE' ) && CUSTOM_USER_TABLE == $table )
  1000. continue;
  1001. if ( defined( 'CUSTOM_USER_META_TABLE' ) && CUSTOM_USER_META_TABLE == $table )
  1002. continue;
  1003. if ( ! $wpdb->get_results( "DESCRIBE $table;" ) )
  1004. continue;
  1005. // One or more tables exist. We are insane.
  1006. wp_load_translations_early();
  1007. // Die with a DB error.
  1008. $wpdb->error = sprintf( __( 'One or more database tables are unavailable. The database may need to be <a href="%s">repaired</a>.' ), 'maint/repair.php?referrer=is_blog_installed' );
  1009. dead_db();
  1010. }
  1011. $wpdb->suppress_errors( $suppress );
  1012. wp_cache_set( 'is_blog_installed', false );
  1013. return false;
  1014. }
  1015. /**
  1016. * Retrieve URL with nonce added to URL query.
  1017. *
  1018. * @package WordPress
  1019. * @subpackage Security
  1020. * @since 2.0.4
  1021. *
  1022. * @param string $actionurl URL to add nonce action
  1023. * @param string $action Optional. Nonce action name
  1024. * @return string URL with nonce action added.
  1025. */
  1026. function wp_nonce_url( $actionurl, $action = -1 ) {
  1027. $actionurl = str_replace( '&amp;', '&', $actionurl );
  1028. return esc_html( add_query_arg( '_wpnonce', wp_create_nonce( $action ), $actionurl ) );
  1029. }
  1030. /**
  1031. * Retrieve or display nonce hidden field for forms.
  1032. *
  1033. * The nonce field is used to validate that the contents of the form came from
  1034. * the location on the current site and not somewhere else. The nonce does not
  1035. * offer absolute protection, but should protect against most cases. It is very
  1036. * important to use nonce field in forms.
  1037. *
  1038. * The $action and $name are optional, but if you want to have better security,
  1039. * it is strongly suggested to set those two parameters. It is easier to just
  1040. * call the function without any parameters, because validation of the nonce
  1041. * doesn't require any parameters, but since crackers know what the default is
  1042. * it won't be difficult for them to find a way around your nonce and cause
  1043. * damage.
  1044. *
  1045. * The input name will be whatever $name value you gave. The input value will be
  1046. * the nonce creation value.
  1047. *
  1048. * @package WordPress
  1049. * @subpackage Security
  1050. * @since 2.0.4
  1051. *
  1052. * @param string $action Optional. Action name.
  1053. * @param string $name Optional. Nonce name.
  1054. * @param bool $referer Optional, default true. Whether to set the referer field for validation.
  1055. * @param bool $echo Optional, default true. Whether to display or return hidden form field.
  1056. * @return string Nonce field.
  1057. */
  1058. function wp_nonce_field( $action = -1, $name = "_wpnonce", $referer = true , $echo = true ) {
  1059. $name = esc_attr( $name );
  1060. $nonce_field = '<input type="hidden" id="' . $name . '" name="' . $name . '" value="' . wp_create_nonce( $action ) . '" />';
  1061. if ( $referer )
  1062. $nonce_field .= wp_referer_field( false );
  1063. if ( $echo )
  1064. echo $nonce_field;
  1065. return $nonce_field;
  1066. }
  1067. /**
  1068. * Retrieve or display referer hidden field for forms.
  1069. *
  1070. * The referer link is the current Request URI from the server super global. The
  1071. * input name is '_wp_http_referer', in case you wanted to check manually.
  1072. *
  1073. * @package WordPress
  1074. * @subpackage Security
  1075. * @since 2.0.4
  1076. *
  1077. * @param bool $echo Whether to echo or return the referer field.
  1078. * @return string Referer field.
  1079. */
  1080. function wp_referer_field( $echo = true ) {
  1081. $ref = esc_attr( $_SERVER['REQUEST_URI'] );
  1082. $referer_field = '<input type="hidden" name="_wp_http_referer" value="'. $ref . '" />';
  1083. if ( $echo )
  1084. echo $referer_field;
  1085. return $referer_field;
  1086. }
  1087. /**
  1088. * Retrieve or display original referer hidden field for forms.
  1089. *
  1090. * The input name is '_wp_original_http_referer' and will be either the same
  1091. * value of {@link wp_referer_field()}, if that was posted already or it will
  1092. * be the current page, if it doesn't exist.
  1093. *
  1094. * @package WordPress
  1095. * @subpackage Security
  1096. * @since 2.0.4
  1097. *
  1098. * @param bool $echo Whether to echo the original http referer
  1099. * @param string $jump_back_to Optional, default is 'current'. Can be 'previous' or page you want to jump back to.
  1100. * @return string Original referer field.
  1101. */
  1102. function wp_original_referer_field( $echo = true, $jump_back_to = 'current' ) {
  1103. $jump_back_to = ( 'previous' == $jump_back_to ) ? wp_get_referer() : $_SERVER['REQUEST_URI'];
  1104. $ref = ( wp_get_original_referer() ) ? wp_get_original_referer() : $jump_back_to;
  1105. $orig_referer_field = '<input type="hidden" name="_wp_original_http_referer" value="' . esc_attr( stripslashes( $ref ) ) . '" />';
  1106. if ( $echo )
  1107. echo $orig_referer_field;
  1108. return $orig_referer_field;
  1109. }
  1110. /**
  1111. * Retrieve referer from '_wp_http_referer' or HTTP referer. If it's the same
  1112. * as the current request URL, will return false.
  1113. *
  1114. * @package WordPress
  1115. * @subpackage Security
  1116. * @since 2.0.4
  1117. *
  1118. * @return string|bool False on failure. Referer URL on success.
  1119. */
  1120. function wp_get_referer() {
  1121. $ref = false;
  1122. if ( ! empty( $_REQUEST['_wp_http_referer'] ) )
  1123. $ref = $_REQUEST['_wp_http_referer'];
  1124. else if ( ! empty( $_SERVER['HTTP_REFERER'] ) )
  1125. $ref = $_SERVER['HTTP_REFERER'];
  1126. if ( $ref && $ref !== $_SERVER['REQUEST_URI'] )
  1127. return $ref;
  1128. return false;
  1129. }
  1130. /**
  1131. * Retrieve original referer that was posted, if it exists.
  1132. *
  1133. * @package WordPress
  1134. * @subpackage Security
  1135. * @since 2.0.4
  1136. *
  1137. * @return string|bool False if no original referer or original referer if set.
  1138. */
  1139. function wp_get_original_referer() {
  1140. if ( !empty( $_REQUEST['_wp_original_http_referer'] ) )
  1141. return $_REQUEST['_wp_original_http_referer'];
  1142. return false;
  1143. }
  1144. /**
  1145. * Recursive directory creation based on full path.
  1146. *
  1147. * Will attempt to set permissions on folders.
  1148. *
  1149. * @since 2.0.1
  1150. *
  1151. * @param string $target Full path to attempt to create.
  1152. * @return bool Whether the path was created. True if path already exists.
  1153. */
  1154. function wp_mkdir_p( $target ) {
  1155. // from php.net/mkdir user contributed notes
  1156. $target = str_replace( '//', '/', $target );
  1157. // safe mode fails with a trailing slash under certain PHP versions.
  1158. $target = rtrim($target, '/'); // Use rtrim() instead of untrailingslashit to avoid formatting.php dependency.
  1159. if ( empty($target) )
  1160. $target = '/';
  1161. if ( file_exists( $target ) )
  1162. return @is_dir( $target );
  1163. // Attempting to create the directory may clutter up our display.
  1164. if ( @mkdir( $target ) ) {
  1165. $stat = @stat( dirname( $target ) );
  1166. $dir_perms = $stat['mode'] & 0007777; // Get the permission bits.
  1167. @chmod( $target, $dir_perms );
  1168. return true;
  1169. } elseif ( is_dir( dirname( $target ) ) ) {
  1170. return false;
  1171. }
  1172. // If the above failed, attempt to create the parent node, then try again.
  1173. if ( ( $target != '/' ) && ( wp_mkdir_p( dirname( $target ) ) ) )
  1174. return wp_mkdir_p( $target );
  1175. return false;
  1176. }
  1177. /**
  1178. * Test if a give filesystem path is absolute ('/foo/bar', 'c:\windows').
  1179. *
  1180. * @since 2.5.0
  1181. *
  1182. * @param string $path File path
  1183. * @return bool True if path is absolute, false is not absolute.
  1184. */
  1185. function path_is_absolute( $path ) {
  1186. // this is definitive if true but fails if $path does not exist or contains a symbolic link
  1187. if ( realpath($path) == $path )
  1188. return true;
  1189. if ( strlen($path) == 0 || $path[0] == '.' )
  1190. return false;
  1191. // windows allows absolute paths like this
  1192. if ( preg_match('#^[a-zA-Z]:\\\\#', $path) )
  1193. return true;
  1194. // a path starting with / or \ is absolute; anything else is relative
  1195. return ( $path[0] == '/' || $path[0] == '\\' );
  1196. }
  1197. /**
  1198. * Join two filesystem paths together (e.g. 'give me $path relative to $base').
  1199. *
  1200. * If the $path is absolute, then it the full path is returned.
  1201. *
  1202. * @since 2.5.0
  1203. *
  1204. * @param string $base
  1205. * @param string $path
  1206. * @return string The path with the base or absolute path.
  1207. */
  1208. function path_join( $base, $path ) {
  1209. if ( path_is_absolute($path) )
  1210. return $path;
  1211. return rtrim($base, '/') . '/' . ltrim($path, '/');
  1212. }
  1213. /**
  1214. * Determines a writable directory for temporary files.
  1215. * Function's preference is to WP_CONTENT_DIR followed by the return value of <code>sys_get_temp_dir()</code>, before finally defaulting to /tmp/
  1216. *
  1217. * In the event that this function does not find a writable location, It may be overridden by the <code>WP_TEMP_DIR</code> constant in your <code>wp-config.php</code> file.
  1218. *
  1219. * @since 2.5.0
  1220. *
  1221. * @return string Writable temporary directory
  1222. */
  1223. function get_temp_dir() {
  1224. static $temp;
  1225. if ( defined('WP_TEMP_DIR') )
  1226. return trailingslashit(WP_TEMP_DIR);
  1227. if ( $temp )
  1228. return trailingslashit($temp);
  1229. $temp = WP_CONTENT_DIR . '/';
  1230. if ( is_dir($temp) && @is_writable($temp) )
  1231. return $temp;
  1232. if ( function_exists('sys_get_temp_dir') ) {
  1233. $temp = sys_get_temp_dir();
  1234. if ( @is_writable($temp) )
  1235. return trailingslashit($temp);
  1236. }
  1237. $temp = ini_get('upload_tmp_dir');
  1238. if ( is_dir($temp) && @is_writable($temp) )
  1239. return trailingslashit($temp);
  1240. $temp = '/tmp/';
  1241. return $temp;
  1242. }
  1243. /**
  1244. * Get an array containing the current upload directory's path and url.
  1245. *
  1246. * Checks the 'upload_path' option, which should be from the web root folder,
  1247. * and if it isn't empty it will be used. If it is empty, then the path will be
  1248. * 'WP_CONTENT_DIR/uploads'. If the 'UPLOADS' constant is defined, then it will
  1249. * override the 'upload_path' option and 'WP_CONTENT_DIR/uploads' path.
  1250. *
  1251. * The upload URL path is set either by the 'upload_url_path' option or by using
  1252. * the 'WP_CONTENT_URL' constant and appending '/uploads' to the path.
  1253. *
  1254. * If the 'uploads_use_yearmonth_folders' is set to true (checkbox if checked in
  1255. * the administration settings panel), then the time will be used. The format
  1256. * will be year first and then month.
  1257. *
  1258. * If the path couldn't be created, then an error will be returned with the key
  1259. * 'error' containing the error message. The error suggests that the parent
  1260. * directory is not writable by the server.
  1261. *
  1262. * On success, the returned array will have many indices:
  1263. * 'path' - base directory and sub directory or full path to upload directory.
  1264. * 'url' - base url and sub directory or absolute URL to upload directory.
  1265. * 'subdir' - sub directory if uploads use year/month folders option is on.
  1266. * 'basedir' - path without subdir.
  1267. * 'baseurl' - URL path without subdir.
  1268. * 'error' - set to false.
  1269. *
  1270. * @since 2.0.0
  1271. * @uses apply_filters() Calls 'upload_dir' on returned array.
  1272. *
  1273. * @param string $time Optional. Time formatted in 'yyyy/mm'.
  1274. * @return array See above for description.
  1275. */
  1276. function wp_upload_dir( $time = null ) {
  1277. global $switched;
  1278. $siteurl = get_option( 'siteurl' );
  1279. $upload_path = get_option( 'upload_path' );
  1280. $upload_path = trim($upload_path);
  1281. $main_override = is_multisite() && defined( 'MULTISITE' ) && is_main_site();
  1282. if ( empty($upload_path) ) {
  1283. $dir = WP_CONTENT_DIR . '/uploads';
  1284. } else {
  1285. $dir = $upload_path;
  1286. if ( 'wp-content/uploads' == $upload_path ) {
  1287. $dir = WP_CONTENT_DIR . '/uploads';
  1288. } elseif ( 0 !== strpos($dir, ABSPATH) ) {
  1289. // $dir is absolute, $upload_path is (maybe) relative to ABSPATH
  1290. $dir = path_join( ABSPATH, $dir );
  1291. }
  1292. }
  1293. if ( !$url = get_option( 'upload_url_path' ) ) {
  1294. if ( empty($upload_path) || ( 'wp-content/uploads' == $upload_path ) || ( $upload_path == $dir ) )
  1295. $url = WP_CONTENT_URL . '/uploads';
  1296. else
  1297. $url = trailingslashit( $siteurl ) . $upload_path;
  1298. }
  1299. if ( defined('UPLOADS') && !$main_override && ( !isset( $switched ) || $switched === false ) ) {
  1300. $dir = ABSPATH . UPLOADS;
  1301. $url = trailingslashit( $siteurl ) . UPLOADS;
  1302. }
  1303. if ( is_multisite() && !$main_override && ( !isset( $switched ) || $switched === false ) ) {
  1304. if ( defined( 'BLOGUPLOADDIR' ) )
  1305. $dir = untrailingslashit(BLOGUPLOADDIR);
  1306. $url = str_replace( UPLOADS, 'files', $url );
  1307. }
  1308. $bdir = $dir;
  1309. $burl = $url;
  1310. $subdir = '';
  1311. if ( get_option( 'uploads_use_yearmonth_folders' ) ) {
  1312. // Generate the yearly and monthly dirs
  1313. if ( !$time )
  1314. $time = current_time( 'mysql' );
  1315. $y = substr( $time, 0, 4 );
  1316. $m = substr( $time, 5, 2 );
  1317. $subdir = "/$y/$m";
  1318. }
  1319. $dir .= $subdir;
  1320. $url .= $subdir;
  1321. $uploads = apply_filters( 'upload_dir', array( 'path' => $dir, 'url' => $url, 'subdir' => $subdir, 'basedir' => $bdir, 'baseurl' => $burl, 'error' => false ) );
  1322. // Make sure we have an uploads dir
  1323. if ( ! wp_mkdir_p( $uploads['path'] ) ) {
  1324. $message = sprintf( __( 'Unable to create directory %s. Is its parent directory writable by the server?' ), $uploads['path'] );
  1325. return array( 'error' => $message );
  1326. }
  1327. return $uploads;
  1328. }
  1329. /**
  1330. * Get a filename that is sanitized and unique for the given directory.
  1331. *
  1332. * If the filename is not unique, then a number will be added to the filename
  1333. * before the extension, and will continue adding numbers until the filename is
  1334. * unique.
  1335. *
  1336. * The callback is passed three parameters, the first one is the directory, the
  1337. * second is the filename, and the third is the extension.
  1338. *
  1339. * @since 2.5.0
  1340. *
  1341. * @param string $dir
  1342. * @param string $filename
  1343. * @param mixed $unique_filename_callback Callback.
  1344. * @return string New filename, if given wasn't unique.
  1345. */
  1346. function wp_unique_filename( $dir, $filename, $unique_filename_callback = null ) {
  1347. // sanitize the file name before we begin processing
  1348. $filename = sanitize_file_name($filename);
  1349. // separate the filename into a name and extension
  1350. $info = pathinfo($filename);
  1351. $ext = !empty($info['extension']) ? '.' . $info['extension'] : '';
  1352. $name = basename($filename, $ext);
  1353. // edge case: if file is named '.ext', treat as an empty name
  1354. if ( $name === $ext )
  1355. $name = '';
  1356. // Increment the file number until we have a unique file to save in $dir. Use callback if supplied.
  1357. if ( $unique_filename_callback && is_callable( $unique_filename_callback ) ) {
  1358. $filename = call_user_func( $unique_filename_callback, $dir, $name, $ext );
  1359. } else {
  1360. $number = '';
  1361. // change '.ext' to lower case
  1362. if ( $ext && strtolower($ext) != $ext ) {
  1363. $ext2 = strtolower($ext);
  1364. $filename2 = preg_replace( '|' . preg_quote($ext) . '$|', $ext2, $filename );
  1365. // check for both lower and upper case extension or image sub-sizes may be overwritten
  1366. while ( file_exists($dir . "/$filename") || file_exists($dir . "/$filename2") ) {
  1367. $new_number = $number + 1;
  1368. $filename = str_replace( "$number$ext", "$new_number$ext", $filename );
  1369. $filename2 = str_replace( "$number$ext2", "$new_number$ext2", $filename2 );
  1370. $number = $new_number;
  1371. }
  1372. return $filename2;
  1373. }
  1374. while ( file_exists( $dir . "/$filename" ) ) {
  1375. if ( '' == "$number$ext" )
  1376. $filename = $filename . ++$number . $ext;
  1377. else
  1378. $filename = str_replace( "$number$ext", ++$number . $ext, $filename );
  1379. }
  1380. }
  1381. return $filename;
  1382. }
  1383. /**
  1384. * Create a file in the upload folder with given content.
  1385. *
  1386. * If there is an error, then the key 'error' will exist with the error message.
  1387. * If success, then the key 'file' will have the unique file path, the 'url' key
  1388. * will have the link to the new file. and the 'error' key will be set to false.
  1389. *
  1390. * This function will not move an uploaded file to the upload folder. It will
  1391. * create a new file with the content in $bits parameter. If you move the upload
  1392. * file, read the content of the uploaded file, and then you can give the
  1393. * filename and content to this function, which will add it to the upload
  1394. * folder.
  1395. *
  1396. * The permissions will be set on the new file automatically by this function.
  1397. *
  1398. * @since 2.0.0
  1399. *
  1400. * @param string $name
  1401. * @param null $deprecated Never used. Set to null.
  1402. * @param mixed $bits File content
  1403. * @param string $time Optional. Time formatted in 'yyyy/mm'.
  1404. * @return array
  1405. */
  1406. function wp_upload_bits( $name, $deprecated, $bits, $time = null ) {
  1407. if ( !empty( $deprecated ) )
  1408. _deprecated_argument( __FUNCTION__, '2.0' );
  1409. if ( empty( $name ) )
  1410. return array( 'error' => __( 'Empty filename' ) );
  1411. $wp_filetype = wp_check_filetype( $name );
  1412. if ( !$wp_filetype['ext'] )
  1413. return array( 'error' => __( 'Invalid file type' ) );
  1414. $upload = wp_upload_dir( $time );
  1415. if ( $upload['error'] !== false )
  1416. return $upload;
  1417. $upload_bits_error = apply_filters( 'wp_upload_bits', array( 'name' => $name, 'bits' => $bits, 'time' => $time ) );
  1418. if ( !is_array( $upload_bits_error ) ) {
  1419. $upload[ 'error' ] = $upload_bits_error;
  1420. return $upload;
  1421. }
  1422. $filename = wp_unique_filename( $upload['path'], $name );
  1423. $new_file = $upload['path'] . "/$filename";
  1424. if ( ! wp_mkdir_p( dirname( $new_file ) ) ) {
  1425. $message = sprintf( __( 'Unable to create directory %s. Is its parent directory writable by the server?' ), dirname( $new_file ) );
  1426. return array( 'error' => $message );
  1427. }
  1428. $ifp = @ fopen( $new_file, 'wb' );
  1429. if ( ! $ifp )
  1430. return array( 'error' => sprintf( __( 'Could not write file %s' ), $new_file ) );
  1431. @fwrite( $ifp, $bits );
  1432. fclose( $ifp );
  1433. clearstatcache();
  1434. // Set correct file permissions
  1435. $stat = @ stat( dirname( $new_file ) );
  1436. $perms = $stat['mode'] & 0007777;
  1437. $perms = $perms & 0000666;
  1438. @ chmod( $new_file, $perms );
  1439. clearstatcache();
  1440. // Compute the URL
  1441. $url = $upload['url'] . "/$filename";
  1442. return array( 'file' => $new_file, 'url' => $url, 'error' => false );
  1443. }
  1444. /**
  1445. * Retrieve the file type based on the extension name.
  1446. *
  1447. * @package WordPress
  1448. * @since 2.5.0
  1449. * @uses apply_filters() Calls 'ext2type' hook on default supported types.
  1450. *
  1451. * @param string $ext The extension to search.
  1452. * @return string|null The file type, example: audio, video, document, spreadsheet, etc. Null if not found.
  1453. */
  1454. function wp_ext2type( $ext ) {
  1455. $ext2type = apply_filters( 'ext2type', array(
  1456. 'audio' => array( 'aac', 'ac3', 'aif', 'aiff', 'm3a', 'm4a', 'm4b', 'mka', 'mp1', 'mp2', 'mp3', 'ogg', 'oga', 'ram', 'wav', 'wma' ),
  1457. 'video' => array( 'asf', 'avi', 'divx', 'dv', 'flv', 'm4v', 'mkv', 'mov', 'mp4', 'mpeg', 'mpg', 'mpv', 'ogm', 'ogv', 'qt', 'rm', 'vob', 'wmv' ),
  1458. 'document' => array( 'doc', 'docx', 'docm', 'dotm', 'odt', 'pages', 'pdf', 'rtf', 'wp', 'wpd' ),
  1459. 'spreadsheet' => array( 'numbers', 'ods', 'xls',

Large files files are truncated, but you can click here to view the full file