PageRenderTime 40ms CodeModel.GetById 17ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-includes/default-filters.php

https://bitbucket.org/julianelve/vendor-wordpress
PHP | 293 lines | 204 code | 42 blank | 47 comment | 7 complexity | 5e135e415427c491174e17cf95ca6995 MD5 | raw file
Possible License(s): AGPL-1.0, LGPL-2.1, GPL-2.0
  1. <?php
  2. /**
  3. * Sets up the default filters and actions for most
  4. * of the WordPress hooks.
  5. *
  6. * If you need to remove a default hook, this file will
  7. * give you the priority for which to use to remove the
  8. * hook.
  9. *
  10. * Not all of the default hooks are found in default-filters.php
  11. *
  12. * @package WordPress
  13. */
  14. // Strip, trim, kses, special chars for string saves
  15. foreach ( array( 'pre_term_name', 'pre_comment_author_name', 'pre_link_name', 'pre_link_target', 'pre_link_rel', 'pre_user_display_name', 'pre_user_first_name', 'pre_user_last_name', 'pre_user_nickname' ) as $filter ) {
  16. add_filter( $filter, 'sanitize_text_field' );
  17. add_filter( $filter, 'wp_filter_kses' );
  18. add_filter( $filter, '_wp_specialchars', 30 );
  19. }
  20. // Strip, kses, special chars for string display
  21. foreach ( array( 'term_name', 'comment_author_name', 'link_name', 'link_target', 'link_rel', 'user_display_name', 'user_first_name', 'user_last_name', 'user_nickname' ) as $filter ) {
  22. if ( is_admin() ) {
  23. // These are expensive. Run only on admin pages for defense in depth.
  24. add_filter( $filter, 'sanitize_text_field' );
  25. add_filter( $filter, 'wp_kses_data' );
  26. }
  27. add_filter( $filter, '_wp_specialchars', 30 );
  28. }
  29. // Kses only for textarea saves
  30. foreach ( array( 'pre_term_description', 'pre_link_description', 'pre_link_notes', 'pre_user_description' ) as $filter ) {
  31. add_filter( $filter, 'wp_filter_kses' );
  32. }
  33. // Kses only for textarea admin displays
  34. if ( is_admin() ) {
  35. foreach ( array( 'term_description', 'link_description', 'link_notes', 'user_description' ) as $filter ) {
  36. add_filter( $filter, 'wp_kses_data' );
  37. }
  38. add_filter( 'comment_text', 'wp_kses_post' );
  39. }
  40. // Email saves
  41. foreach ( array( 'pre_comment_author_email', 'pre_user_email' ) as $filter ) {
  42. add_filter( $filter, 'trim' );
  43. add_filter( $filter, 'sanitize_email' );
  44. add_filter( $filter, 'wp_filter_kses' );
  45. }
  46. // Email admin display
  47. foreach ( array( 'comment_author_email', 'user_email' ) as $filter ) {
  48. add_filter( $filter, 'sanitize_email' );
  49. if ( is_admin() )
  50. add_filter( $filter, 'wp_kses_data' );
  51. }
  52. // Save URL
  53. foreach ( array( 'pre_comment_author_url', 'pre_user_url', 'pre_link_url', 'pre_link_image',
  54. 'pre_link_rss', 'pre_post_guid' ) as $filter ) {
  55. add_filter( $filter, 'wp_strip_all_tags' );
  56. add_filter( $filter, 'esc_url_raw' );
  57. add_filter( $filter, 'wp_filter_kses' );
  58. }
  59. // Display URL
  60. foreach ( array( 'user_url', 'link_url', 'link_image', 'link_rss', 'comment_url', 'post_guid' ) as $filter ) {
  61. if ( is_admin() )
  62. add_filter( $filter, 'wp_strip_all_tags' );
  63. add_filter( $filter, 'esc_url' );
  64. if ( is_admin() )
  65. add_filter( $filter, 'wp_kses_data' );
  66. }
  67. // Slugs
  68. foreach ( array( 'pre_term_slug' ) as $filter ) {
  69. add_filter( $filter, 'sanitize_title' );
  70. }
  71. // Keys
  72. foreach ( array( 'pre_post_type', 'pre_post_status', 'pre_post_comment_status', 'pre_post_ping_status' ) as $filter ) {
  73. add_filter( $filter, 'sanitize_key' );
  74. }
  75. // Mime types
  76. add_filter( 'pre_post_mime_type', 'sanitize_mime_type' );
  77. add_filter( 'post_mime_type', 'sanitize_mime_type' );
  78. // Places to balance tags on input
  79. foreach ( array( 'content_save_pre', 'excerpt_save_pre', 'comment_save_pre', 'pre_comment_content' ) as $filter ) {
  80. add_filter( $filter, 'balanceTags', 50 );
  81. }
  82. // Format strings for display.
  83. foreach ( array( 'comment_author', 'term_name', 'link_name', 'link_description', 'link_notes', 'bloginfo', 'wp_title', 'widget_title' ) as $filter ) {
  84. add_filter( $filter, 'wptexturize' );
  85. add_filter( $filter, 'convert_chars' );
  86. add_filter( $filter, 'esc_html' );
  87. }
  88. // Format WordPress
  89. foreach ( array( 'the_content', 'the_title' ) as $filter )
  90. add_filter( $filter, 'capital_P_dangit', 11 );
  91. add_filter( 'comment_text', 'capital_P_dangit', 31 );
  92. // Format titles
  93. foreach ( array( 'single_post_title', 'single_cat_title', 'single_tag_title', 'single_month_title', 'nav_menu_attr_title', 'nav_menu_description' ) as $filter ) {
  94. add_filter( $filter, 'wptexturize' );
  95. add_filter( $filter, 'strip_tags' );
  96. }
  97. // Format text area for display.
  98. foreach ( array( 'term_description' ) as $filter ) {
  99. add_filter( $filter, 'wptexturize' );
  100. add_filter( $filter, 'convert_chars' );
  101. add_filter( $filter, 'wpautop' );
  102. add_filter( $filter, 'shortcode_unautop');
  103. }
  104. // Format for RSS
  105. foreach ( array( 'term_name_rss' ) as $filter ) {
  106. add_filter( $filter, 'convert_chars' );
  107. }
  108. // Pre save hierarchy
  109. add_filter( 'wp_insert_post_parent', 'wp_check_post_hierarchy_for_loops', 10, 2 );
  110. add_filter( 'wp_update_term_parent', 'wp_check_term_hierarchy_for_loops', 10, 3 );
  111. // Display filters
  112. add_filter( 'the_title', 'wptexturize' );
  113. add_filter( 'the_title', 'convert_chars' );
  114. add_filter( 'the_title', 'trim' );
  115. add_filter( 'the_content', 'wptexturize' );
  116. add_filter( 'the_content', 'convert_smilies' );
  117. add_filter( 'the_content', 'convert_chars' );
  118. add_filter( 'the_content', 'wpautop' );
  119. add_filter( 'the_content', 'shortcode_unautop' );
  120. add_filter( 'the_content', 'prepend_attachment' );
  121. add_filter( 'the_excerpt', 'wptexturize' );
  122. add_filter( 'the_excerpt', 'convert_smilies' );
  123. add_filter( 'the_excerpt', 'convert_chars' );
  124. add_filter( 'the_excerpt', 'wpautop' );
  125. add_filter( 'the_excerpt', 'shortcode_unautop');
  126. add_filter( 'get_the_excerpt', 'wp_trim_excerpt' );
  127. add_filter( 'comment_text', 'wptexturize' );
  128. add_filter( 'comment_text', 'convert_chars' );
  129. add_filter( 'comment_text', 'make_clickable', 9 );
  130. add_filter( 'comment_text', 'force_balance_tags', 25 );
  131. add_filter( 'comment_text', 'convert_smilies', 20 );
  132. add_filter( 'comment_text', 'wpautop', 30 );
  133. add_filter( 'comment_excerpt', 'convert_chars' );
  134. add_filter( 'list_cats', 'wptexturize' );
  135. add_filter( 'wp_sprintf', 'wp_sprintf_l', 10, 2 );
  136. // RSS filters
  137. add_filter( 'the_title_rss', 'strip_tags' );
  138. add_filter( 'the_title_rss', 'ent2ncr', 8 );
  139. add_filter( 'the_title_rss', 'esc_html' );
  140. add_filter( 'the_content_rss', 'ent2ncr', 8 );
  141. add_filter( 'the_excerpt_rss', 'convert_chars' );
  142. add_filter( 'the_excerpt_rss', 'ent2ncr', 8 );
  143. add_filter( 'comment_author_rss', 'ent2ncr', 8 );
  144. add_filter( 'comment_text_rss', 'ent2ncr', 8 );
  145. add_filter( 'comment_text_rss', 'esc_html' );
  146. add_filter( 'bloginfo_rss', 'ent2ncr', 8 );
  147. add_filter( 'the_author', 'ent2ncr', 8 );
  148. // Misc filters
  149. add_filter( 'option_ping_sites', 'privacy_ping_filter' );
  150. add_filter( 'option_blog_charset', '_wp_specialchars' ); // IMPORTANT: This must not be wp_specialchars() or esc_html() or it'll cause an infinite loop
  151. add_filter( 'option_home', '_config_wp_home' );
  152. add_filter( 'option_siteurl', '_config_wp_siteurl' );
  153. add_filter( 'tiny_mce_before_init', '_mce_set_direction' );
  154. add_filter( 'pre_kses', 'wp_pre_kses_less_than' );
  155. add_filter( 'sanitize_title', 'sanitize_title_with_dashes', 10, 3 );
  156. add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 3 );
  157. add_filter( 'comment_flood_filter', 'wp_throttle_comment_flood', 10, 3 );
  158. add_filter( 'pre_comment_content', 'wp_rel_nofollow', 15 );
  159. add_filter( 'comment_email', 'antispambot' );
  160. add_filter( 'option_tag_base', '_wp_filter_taxonomy_base' );
  161. add_filter( 'option_category_base', '_wp_filter_taxonomy_base' );
  162. add_filter( 'the_posts', '_close_comments_for_old_posts', 10, 2);
  163. add_filter( 'comments_open', '_close_comments_for_old_post', 10, 2 );
  164. add_filter( 'pings_open', '_close_comments_for_old_post', 10, 2 );
  165. add_filter( 'editable_slug', 'urldecode' );
  166. add_filter( 'editable_slug', 'esc_textarea' );
  167. add_filter( 'nav_menu_meta_box_object', '_wp_nav_menu_meta_box_object' );
  168. add_filter( 'pingback_ping_source_uri', 'pingback_ping_source_uri' );
  169. add_filter( 'xmlrpc_pingback_error', 'xmlrpc_pingback_error' );
  170. // Actions
  171. add_action( 'wp_head', 'wp_enqueue_scripts', 1 );
  172. add_action( 'wp_head', 'feed_links', 2 );
  173. add_action( 'wp_head', 'feed_links_extra', 3 );
  174. add_action( 'wp_head', 'rsd_link' );
  175. add_action( 'wp_head', 'wlwmanifest_link' );
  176. add_action( 'wp_head', 'adjacent_posts_rel_link_wp_head', 10, 0 );
  177. add_action( 'wp_head', 'locale_stylesheet' );
  178. add_action( 'publish_future_post', 'check_and_publish_future_post', 10, 1 );
  179. add_action( 'wp_head', 'noindex', 1 );
  180. add_action( 'wp_head', 'wp_print_styles', 8 );
  181. add_action( 'wp_head', 'wp_print_head_scripts', 9 );
  182. add_action( 'wp_head', 'wp_generator' );
  183. add_action( 'wp_head', 'rel_canonical' );
  184. add_action( 'wp_footer', 'wp_print_footer_scripts', 20 );
  185. add_action( 'wp_head', 'wp_shortlink_wp_head', 10, 0 );
  186. add_action( 'template_redirect', 'wp_shortlink_header', 11, 0 );
  187. add_action( 'wp_print_footer_scripts', '_wp_footer_scripts' );
  188. add_action( 'init', 'check_theme_switched', 99 );
  189. add_action( 'after_switch_theme', '_wp_sidebars_changed' );
  190. if ( isset( $_GET['replytocom'] ) )
  191. add_action( 'wp_head', 'wp_no_robots' );
  192. // Login actions
  193. add_action( 'login_head', 'wp_print_head_scripts', 9 );
  194. add_action( 'login_footer', 'wp_print_footer_scripts', 20 );
  195. add_action( 'login_init', 'send_frame_options_header', 10, 0 );
  196. // Feed Generator Tags
  197. foreach ( array( 'rss2_head', 'commentsrss2_head', 'rss_head', 'rdf_header', 'atom_head', 'comments_atom_head', 'opml_head', 'app_head' ) as $action ) {
  198. add_action( $action, 'the_generator' );
  199. }
  200. // WP Cron
  201. if ( !defined( 'DOING_CRON' ) )
  202. add_action( 'init', 'wp_cron' );
  203. // 2 Actions 2 Furious
  204. add_action( 'do_feed_rdf', 'do_feed_rdf', 10, 1 );
  205. add_action( 'do_feed_rss', 'do_feed_rss', 10, 1 );
  206. add_action( 'do_feed_rss2', 'do_feed_rss2', 10, 1 );
  207. add_action( 'do_feed_atom', 'do_feed_atom', 10, 1 );
  208. add_action( 'do_pings', 'do_all_pings', 10, 1 );
  209. add_action( 'do_robots', 'do_robots' );
  210. add_action( 'set_comment_cookies', 'wp_set_comment_cookies', 10, 2 );
  211. add_action( 'sanitize_comment_cookies', 'sanitize_comment_cookies' );
  212. add_action( 'admin_print_scripts', 'print_head_scripts', 20 );
  213. add_action( 'admin_print_footer_scripts', '_wp_footer_scripts' );
  214. add_action( 'admin_print_styles', 'print_admin_styles', 20 );
  215. add_action( 'init', 'smilies_init', 5 );
  216. add_action( 'plugins_loaded', 'wp_maybe_load_widgets', 0 );
  217. add_action( 'plugins_loaded', 'wp_maybe_load_embeds', 0 );
  218. add_action( 'shutdown', 'wp_ob_end_flush_all', 1 );
  219. add_action( 'pre_post_update', 'wp_save_post_revision' );
  220. add_action( 'publish_post', '_publish_post_hook', 5, 1 );
  221. add_action( 'transition_post_status', '_transition_post_status', 5, 3 );
  222. add_action( 'transition_post_status', '_update_term_count_on_transition_post_status', 10, 3 );
  223. add_action( 'comment_form', 'wp_comment_form_unfiltered_html_nonce' );
  224. add_action( 'wp_scheduled_delete', 'wp_scheduled_delete' );
  225. add_action( 'wp_scheduled_auto_draft_delete', 'wp_delete_auto_drafts' );
  226. add_action( 'admin_init', 'send_frame_options_header', 10, 0 );
  227. add_action( 'importer_scheduled_cleanup', 'wp_delete_attachment' );
  228. add_action( 'upgrader_scheduled_cleanup', 'wp_delete_attachment' );
  229. add_action( 'welcome_panel', 'wp_welcome_panel' );
  230. // Navigation menu actions
  231. add_action( 'delete_post', '_wp_delete_post_menu_item' );
  232. add_action( 'delete_term', '_wp_delete_tax_menu_item' );
  233. add_action( 'transition_post_status', '_wp_auto_add_pages_to_menu', 10, 3 );
  234. // Post Thumbnail CSS class filtering
  235. add_action( 'begin_fetch_post_thumbnail_html', '_wp_post_thumbnail_class_filter_add' );
  236. add_action( 'end_fetch_post_thumbnail_html', '_wp_post_thumbnail_class_filter_remove' );
  237. // Redirect Old Slugs
  238. add_action( 'template_redirect', 'wp_old_slug_redirect' );
  239. add_action( 'post_updated', 'wp_check_for_changed_slugs', 12, 3 );
  240. // Nonce check for Post Previews
  241. add_action( 'init', '_show_post_preview' );
  242. // Timezone
  243. add_filter( 'pre_option_gmt_offset','wp_timezone_override_offset' );
  244. // Admin Color Schemes
  245. add_action( 'admin_init', 'register_admin_color_schemes', 1);
  246. add_action( 'admin_color_scheme_picker', 'admin_color_scheme_picker' );
  247. // If the upgrade hasn't run yet, assume link manager is used.
  248. add_filter( 'default_option_link_manager_enabled', '__return_true' );
  249. // This option no longer exists; tell plugins we always support auto-embedding.
  250. add_filter( 'default_option_embed_autourls', '__return_true' );
  251. unset($filter, $action);