/wp-includes/comment.php
PHP | 1482 lines | 756 code | 194 blank | 532 comment | 209 complexity | f643a1ac76b13a5b8606101a123392f6 MD5 | raw file
- <?php
- /**
- * Manages WordPress comments
- *
- * @package WordPress
- * @subpackage Comment
- */
- /**
- * Checks whether a comment passes internal checks to be allowed to add.
- *
- * If comment moderation is set in the administration, then all comments,
- * regardless of their type and whitelist will be set to false. If the number of
- * links exceeds the amount in the administration, then the check fails. If any
- * of the parameter contents match the blacklist of words, then the check fails.
- *
- * If the number of links exceeds the amount in the administration, then the
- * check fails. If any of the parameter contents match the blacklist of words,
- * then the check fails.
- *
- * If the comment author was approved before, then the comment is
- * automatically whitelisted.
- *
- * If none of the checks fail, then the failback is to set the check to pass
- * (return true).
- *
- * @since 1.2.0
- * @uses $wpdb
- *
- * @param string $author Comment Author's name
- * @param string $email Comment Author's email
- * @param string $url Comment Author's URL
- * @param string $comment Comment contents
- * @param string $user_ip Comment Author's IP address
- * @param string $user_agent Comment Author's User Agent
- * @param string $comment_type Comment type, either user submitted comment,
- * trackback, or pingback
- * @return bool Whether the checks passed (true) and the comments should be
- * displayed or set to moderated
- */
- function check_comment($author, $email, $url, $comment, $user_ip, $user_agent, $comment_type) {
- global $wpdb;
- if ( 1 == get_option('comment_moderation') )
- return false; // If moderation is set to manual
- $comment = apply_filters( 'comment_text', $comment );
- // Check # of external links
- if ( $max_links = get_option( 'comment_max_links' ) ) {
- $num_links = preg_match_all( '/<a [^>]*href/i', $comment, $out );
- $num_links = apply_filters( 'comment_max_links_url', $num_links, $url ); // provide for counting of $url as a link
- if ( $num_links >= $max_links )
- return false;
- }
- $mod_keys = trim(get_option('moderation_keys'));
- if ( !empty($mod_keys) ) {
- $words = explode("\n", $mod_keys );
- foreach ( (array) $words as $word) {
- $word = trim($word);
- // Skip empty lines
- if ( empty($word) )
- continue;
- // Do some escaping magic so that '#' chars in the
- // spam words don't break things:
- $word = preg_quote($word, '#');
- $pattern = "#$word#i";
- if ( preg_match($pattern, $author) ) return false;
- if ( preg_match($pattern, $email) ) return false;
- if ( preg_match($pattern, $url) ) return false;
- if ( preg_match($pattern, $comment) ) return false;
- if ( preg_match($pattern, $user_ip) ) return false;
- if ( preg_match($pattern, $user_agent) ) return false;
- }
- }
- // Comment whitelisting:
- if ( 1 == get_option('comment_whitelist')) {
- if ( 'trackback' != $comment_type && 'pingback' != $comment_type && $author != '' && $email != '' ) {
- // expected_slashed ($author, $email)
- $ok_to_comment = $wpdb->get_var("SELECT comment_approved FROM $wpdb->comments WHERE comment_author = '$author' AND comment_author_email = '$email' and comment_approved = '1' LIMIT 1");
- if ( ( 1 == $ok_to_comment ) &&
- ( empty($mod_keys) || false === strpos( $email, $mod_keys) ) )
- return true;
- else
- return false;
- } else {
- return false;
- }
- }
- return true;
- }
- /**
- * Retrieve the approved comments for post $post_id.
- *
- * @since 2.0.0
- * @uses $wpdb
- *
- * @param int $post_id The ID of the post
- * @return array $comments The approved comments
- */
- function get_approved_comments($post_id) {
- global $wpdb;
- return $wpdb->get_results($wpdb->prepare("SELECT * FROM $wpdb->comments WHERE comment_post_ID = %d AND comment_approved = '1' ORDER BY comment_date", $post_id));
- }
- /**
- * Retrieves comment data given a comment ID or comment object.
- *
- * If an object is passed then the comment data will be cached and then returned
- * after being passed through a filter. If the comment is empty, then the global
- * comment variable will be used, if it is set.
- *
- * If the comment is empty, then the global comment variable will be used, if it
- * is set.
- *
- * @since 2.0.0
- * @uses $wpdb
- *
- * @param object|string|int $comment Comment to retrieve.
- * @param string $output Optional. OBJECT or ARRAY_A or ARRAY_N constants.
- * @return object|array|null Depends on $output value.
- */
- function &get_comment(&$comment, $output = OBJECT) {
- global $wpdb;
- $null = null;
- if ( empty($comment) ) {
- if ( isset($GLOBALS['comment']) )
- $_comment = & $GLOBALS['comment'];
- else
- $_comment = null;
- } elseif ( is_object($comment) ) {
- wp_cache_add($comment->comment_ID, $comment, 'comment');
- $_comment = $comment;
- } else {
- if ( isset($GLOBALS['comment']) && ($GLOBALS['comment']->comment_ID == $comment) ) {
- $_comment = & $GLOBALS['comment'];
- } elseif ( ! $_comment = wp_cache_get($comment, 'comment') ) {
- $_comment = $wpdb->get_row($wpdb->prepare("SELECT * FROM $wpdb->comments WHERE comment_ID = %d LIMIT 1", $comment));
- if ( ! $_comment )
- return $null;
- wp_cache_add($_comment->comment_ID, $_comment, 'comment');
- }
- }
- $_comment = apply_filters('get_comment', $_comment);
- if ( $output == OBJECT ) {
- return $_comment;
- } elseif ( $output == ARRAY_A ) {
- $__comment = get_object_vars($_comment);
- return $__comment;
- } elseif ( $output == ARRAY_N ) {
- $__comment = array_values(get_object_vars($_comment));
- return $__comment;
- } else {
- return $_comment;
- }
- }
- /**
- * Retrieve a list of comments.
- *
- * The comment list can be for the blog as a whole or for an individual post.
- *
- * The list of comment arguments are 'status', 'orderby', 'comment_date_gmt',
- * 'order', 'number', 'offset', and 'post_id'.
- *
- * @since 2.7.0
- * @uses $wpdb
- *
- * @param mixed $args Optional. Array or string of options to override defaults.
- * @return array List of comments.
- */
- function get_comments( $args = '' ) {
- $query = new WP_Comment_Query;
- return $query->query( $args );
- }
- /**
- * WordPress Comment Query class.
- *
- * @since 3.1.0
- */
- class WP_Comment_Query {
- /**
- * Execute the query
- *
- * @since 3.1.0
- *
- * @param string|array $query_vars
- * @return int|array
- */
- function query( $query_vars ) {
- global $wpdb;
- $defaults = array(
- 'author_email' => '',
- 'ID' => '',
- 'karma' => '',
- 'number' => '',
- 'offset' => '',
- 'orderby' => '',
- 'order' => 'DESC',
- 'parent' => '',
- 'post_ID' => '',
- 'post_id' => 0,
- 'post_author' => '',
- 'post_name' => '',
- 'post_parent' => '',
- 'post_status' => '',
- 'post_type' => '',
- 'status' => '',
- 'type' => '',
- 'user_id' => '',
- 'search' => '',
- 'count' => false
- );
- $this->query_vars = wp_parse_args( $query_vars, $defaults );
- do_action_ref_array( 'pre_get_comments', array( &$this ) );
- extract( $this->query_vars, EXTR_SKIP );
- // $args can be whatever, only use the args defined in defaults to compute the key
- $key = md5( serialize( compact(array_keys($defaults)) ) );
- $last_changed = wp_cache_get('last_changed', 'comment');
- if ( !$last_changed ) {
- $last_changed = time();
- wp_cache_set('last_changed', $last_changed, 'comment');
- }
- $cache_key = "get_comments:$key:$last_changed";
- if ( $cache = wp_cache_get( $cache_key, 'comment' ) ) {
- return $cache;
- }
- $post_id = absint($post_id);
- if ( 'hold' == $status )
- $approved = "comment_approved = '0'";
- elseif ( 'approve' == $status )
- $approved = "comment_approved = '1'";
- elseif ( 'spam' == $status )
- $approved = "comment_approved = 'spam'";
- elseif ( 'trash' == $status )
- $approved = "comment_approved = 'trash'";
- else
- $approved = "( comment_approved = '0' OR comment_approved = '1' )";
- $order = ( 'ASC' == strtoupper($order) ) ? 'ASC' : 'DESC';
- if ( ! empty( $orderby ) ) {
- $ordersby = is_array($orderby) ? $orderby : preg_split('/[,\s]/', $orderby);
- $ordersby = array_intersect(
- $ordersby,
- array(
- 'comment_agent',
- 'comment_approved',
- 'comment_author',
- 'comment_author_email',
- 'comment_author_IP',
- 'comment_author_url',
- 'comment_content',
- 'comment_date',
- 'comment_date_gmt',
- 'comment_ID',
- 'comment_karma',
- 'comment_parent',
- 'comment_post_ID',
- 'comment_type',
- 'user_id',
- )
- );
- $orderby = empty( $ordersby ) ? 'comment_date_gmt' : implode(', ', $ordersby);
- } else {
- $orderby = 'comment_date_gmt';
- }
- $number = absint($number);
- $offset = absint($offset);
- if ( !empty($number) ) {
- if ( $offset )
- $limits = 'LIMIT ' . $offset . ',' . $number;
- else
- $limits = 'LIMIT ' . $number;
- } else {
- $limits = '';
- }
- if ( $count )
- $fields = 'COUNT(*)';
- else
- $fields = '*';
- $join = '';
- $where = $approved;
- if ( ! empty($post_id) )
- $where .= $wpdb->prepare( ' AND comment_post_ID = %d', $post_id );
- if ( '' !== $author_email )
- $where .= $wpdb->prepare( ' AND comment_author_email = %s', $author_email );
- if ( '' !== $karma )
- $where .= $wpdb->prepare( ' AND comment_karma = %d', $karma );
- if ( 'comment' == $type ) {
- $where .= " AND comment_type = ''";
- } elseif( 'pings' == $type ) {
- $where .= ' AND comment_type IN ("pingback", "trackback")';
- } elseif ( ! empty( $type ) ) {
- $where .= $wpdb->prepare( ' AND comment_type = %s', $type );
- }
- if ( '' !== $parent )
- $where .= $wpdb->prepare( ' AND comment_parent = %d', $parent );
- if ( '' !== $user_id )
- $where .= $wpdb->prepare( ' AND user_id = %d', $user_id );
- if ( '' !== $search )
- $where .= $this->get_search_sql( $search, array( 'comment_author', 'comment_author_email', 'comment_author_url', 'comment_author_IP', 'comment_content' ) );
- $post_fields = array_filter( compact( array( 'post_author', 'post_name', 'post_parent', 'post_status', 'post_type', ) ) );
- if ( ! empty( $post_fields ) ) {
- $join = "JOIN $wpdb->posts ON $wpdb->posts.ID = $wpdb->comments.comment_post_ID";
- foreach( $post_fields as $field_name => $field_value )
- $where .= $wpdb->prepare( " AND {$wpdb->posts}.{$field_name} = %s", $field_value );
- }
- $pieces = array( 'fields', 'join', 'where', 'orderby', 'order', 'limits' );
- $clauses = apply_filters_ref_array( 'comments_clauses', array( compact( $pieces ), &$this ) );
- foreach ( $pieces as $piece )
- $$piece = isset( $clauses[ $piece ] ) ? $clauses[ $piece ] : '';
- $query = "SELECT $fields FROM $wpdb->comments $join WHERE $where ORDER BY $orderby $order $limits";
- if ( $count )
- return $wpdb->get_var( $query );
- $comments = $wpdb->get_results( $query );
- $comments = apply_filters_ref_array( 'the_comments', array( $comments, &$this ) );
- wp_cache_add( $cache_key, $comments, 'comment' );
- return $comments;
- }
- /*
- * Used internally to generate an SQL string for searching across multiple columns
- *
- * @access protected
- * @since 3.1.0
- *
- * @param string $string
- * @param array $cols
- * @return string
- */
- function get_search_sql( $string, $cols ) {
- $string = esc_sql( like_escape( $string ) );
- $searches = array();
- foreach ( $cols as $col )
- $searches[] = "$col LIKE '%$string%'";
- return ' AND (' . implode(' OR ', $searches) . ')';
- }
- }
- /**
- * Retrieve all of the WordPress supported comment statuses.
- *
- * Comments have a limited set of valid status values, this provides the comment
- * status values and descriptions.
- *
- * @package WordPress
- * @subpackage Post
- * @since 2.7.0
- *
- * @return array List of comment statuses.
- */
- function get_comment_statuses( ) {
- $status = array(
- 'hold' => __('Unapproved'),
- /* translators: comment status */
- 'approve' => _x('Approved', 'adjective'),
- /* translators: comment status */
- 'spam' => _x('Spam', 'adjective'),
- );
- return $status;
- }
- /**
- * The date the last comment was modified.
- *
- * @since 1.5.0
- * @uses $wpdb
- * @global array $cache_lastcommentmodified
- *
- * @param string $timezone Which timezone to use in reference to 'gmt', 'blog',
- * or 'server' locations.
- * @return string Last comment modified date.
- */
- function get_lastcommentmodified($timezone = 'server') {
- global $cache_lastcommentmodified, $wpdb;
- if ( isset($cache_lastcommentmodified[$timezone]) )
- return $cache_lastcommentmodified[$timezone];
- $add_seconds_server = date('Z');
- switch ( strtolower($timezone)) {
- case 'gmt':
- $lastcommentmodified = $wpdb->get_var("SELECT comment_date_gmt FROM $wpdb->comments WHERE comment_approved = '1' ORDER BY comment_date_gmt DESC LIMIT 1");
- break;
- case 'blog':
- $lastcommentmodified = $wpdb->get_var("SELECT comment_date FROM $wpdb->comments WHERE comment_approved = '1' ORDER BY comment_date_gmt DESC LIMIT 1");
- break;
- case 'server':
- $lastcommentmodified = $wpdb->get_var($wpdb->prepare("SELECT DATE_ADD(comment_date_gmt, INTERVAL %s SECOND) FROM $wpdb->comments WHERE comment_approved = '1' ORDER BY comment_date_gmt DESC LIMIT 1", $add_seconds_server));
- break;
- }
- $cache_lastcommentmodified[$timezone] = $lastcommentmodified;
- return $lastcommentmodified;
- }
- /**
- * The amount of comments in a post or total comments.
- *
- * A lot like {@link wp_count_comments()}, in that they both return comment
- * stats (albeit with different types). The {@link wp_count_comments()} actual
- * caches, but this function does not.
- *
- * @since 2.0.0
- * @uses $wpdb
- *
- * @param int $post_id Optional. Comment amount in post if > 0, else total comments blog wide.
- * @return array The amount of spam, approved, awaiting moderation, and total comments.
- */
- function get_comment_count( $post_id = 0 ) {
- global $wpdb;
- $post_id = (int) $post_id;
- $where = '';
- if ( $post_id > 0 ) {
- $where = $wpdb->prepare("WHERE comment_post_ID = %d", $post_id);
- }
- $totals = (array) $wpdb->get_results("
- SELECT comment_approved, COUNT( * ) AS total
- FROM {$wpdb->comments}
- {$where}
- GROUP BY comment_approved
- ", ARRAY_A);
- $comment_count = array(
- "approved" => 0,
- "awaiting_moderation" => 0,
- "spam" => 0,
- "total_comments" => 0
- );
- foreach ( $totals as $row ) {
- switch ( $row['comment_approved'] ) {
- case 'spam':
- $comment_count['spam'] = $row['total'];
- $comment_count["total_comments"] += $row['total'];
- break;
- case 1:
- $comment_count['approved'] = $row['total'];
- $comment_count['total_comments'] += $row['total'];
- break;
- case 0:
- $comment_count['awaiting_moderation'] = $row['total'];
- $comment_count['total_comments'] += $row['total'];
- break;
- default:
- break;
- }
- }
- return $comment_count;
- }
- //
- // Comment meta functions
- //
- /**
- * Add meta data field to a comment.
- *
- * @since 2.9.0
- * @uses add_metadata
- * @link http://codex.wordpress.org/Function_Reference/add_comment_meta
- *
- * @param int $comment_id Comment ID.
- * @param string $meta_key Metadata name.
- * @param mixed $meta_value Metadata value.
- * @param bool $unique Optional, default is false. Whether the same key should not be added.
- * @return bool False for failure. True for success.
- */
- function add_comment_meta($comment_id, $meta_key, $meta_value, $unique = false) {
- return add_metadata('comment', $comment_id, $meta_key, $meta_value, $unique);
- }
- /**
- * Remove metadata matching criteria from a comment.
- *
- * You can match based on the key, or key and value. Removing based on key and
- * value, will keep from removing duplicate metadata with the same key. It also
- * allows removing all metadata matching key, if needed.
- *
- * @since 2.9.0
- * @uses delete_metadata
- * @link http://codex.wordpress.org/Function_Reference/delete_comment_meta
- *
- * @param int $comment_id comment ID
- * @param string $meta_key Metadata name.
- * @param mixed $meta_value Optional. Metadata value.
- * @return bool False for failure. True for success.
- */
- function delete_comment_meta($comment_id, $meta_key, $meta_value = '') {
- return delete_metadata('comment', $comment_id, $meta_key, $meta_value);
- }
- /**
- * Retrieve comment meta field for a comment.
- *
- * @since 2.9.0
- * @uses get_metadata
- * @link http://codex.wordpress.org/Function_Reference/get_comment_meta
- *
- * @param int $comment_id Comment ID.
- * @param string $key Optional. The meta key to retrieve. By default, returns data for all keys.
- * @param bool $single Whether to return a single value.
- * @return mixed Will be an array if $single is false. Will be value of meta data field if $single
- * is true.
- */
- function get_comment_meta($comment_id, $key = '', $single = false) {
- return get_metadata('comment', $comment_id, $key, $single);
- }
- /**
- * Update comment meta field based on comment ID.
- *
- * Use the $prev_value parameter to differentiate between meta fields with the
- * same key and comment ID.
- *
- * If the meta field for the comment does not exist, it will be added.
- *
- * @since 2.9.0
- * @uses update_metadata
- * @link http://codex.wordpress.org/Function_Reference/update_comment_meta
- *
- * @param int $comment_id Comment ID.
- * @param string $meta_key Metadata key.
- * @param mixed $meta_value Metadata value.
- * @param mixed $prev_value Optional. Previous value to check before removing.
- * @return bool False on failure, true if success.
- */
- function update_comment_meta($comment_id, $meta_key, $meta_value, $prev_value = '') {
- return update_metadata('comment', $comment_id, $meta_key, $meta_value, $prev_value);
- }
- /**
- * Sets the cookies used to store an unauthenticated commentator's identity. Typically used
- * to recall previous comments by this commentator that are still held in moderation.
- *
- * @param object $comment Comment object.
- * @param object $user Comment author's object.
- *
- * @since 3.4.0
- */
- function wp_set_comment_cookies($comment, $user) {
- if ( $user->exists() )
- return;
- $comment_cookie_lifetime = apply_filters('comment_cookie_lifetime', 30000000);
- setcookie('comment_author_' . COOKIEHASH, $comment->comment_author, time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
- setcookie('comment_author_email_' . COOKIEHASH, $comment->comment_author_email, time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
- setcookie('comment_author_url_' . COOKIEHASH, esc_url($comment->comment_author_url), time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN);
- }
- /**
- * Sanitizes the cookies sent to the user already.
- *
- * Will only do anything if the cookies have already been created for the user.
- * Mostly used after cookies had been sent to use elsewhere.
- *
- * @since 2.0.4
- */
- function sanitize_comment_cookies() {
- if ( isset($_COOKIE['comment_author_'.COOKIEHASH]) ) {
- $comment_author = apply_filters('pre_comment_author_name', $_COOKIE['comment_author_'.COOKIEHASH]);
- $comment_author = stripslashes($comment_author);
- $comment_author = esc_attr($comment_author);
- $_COOKIE['comment_author_'.COOKIEHASH] = $comment_author;
- }
- if ( isset($_COOKIE['comment_author_email_'.COOKIEHASH]) ) {
- $comment_author_email = apply_filters('pre_comment_author_email', $_COOKIE['comment_author_email_'.COOKIEHASH]);
- $comment_author_email = stripslashes($comment_author_email);
- $comment_author_email = esc_attr($comment_author_email);
- $_COOKIE['comment_author_email_'.COOKIEHASH] = $comment_author_email;
- }
- if ( isset($_COOKIE['comment_author_url_'.COOKIEHASH]) ) {
- $comment_author_url = apply_filters('pre_comment_author_url', $_COOKIE['comment_author_url_'.COOKIEHASH]);
- $comment_author_url = stripslashes($comment_author_url);
- $_COOKIE['comment_author_url_'.COOKIEHASH] = $comment_author_url;
- }
- }
- /**
- * Validates whether this comment is allowed to be made.
- *
- * @since 2.0.0
- * @uses $wpdb
- * @uses apply_filters() Calls 'pre_comment_approved' hook on the type of comment
- * @uses apply_filters() Calls 'comment_duplicate_trigger' hook on commentdata.
- * @uses do_action() Calls 'check_comment_flood' hook on $comment_author_IP, $comment_author_email, and $comment_date_gmt
- *
- * @param array $commentdata Contains information on the comment
- * @return mixed Signifies the approval status (0|1|'spam')
- */
- function wp_allow_comment($commentdata) {
- global $wpdb;
- extract($commentdata, EXTR_SKIP);
- // Simple duplicate check
- // expected_slashed ($comment_post_ID, $comment_author, $comment_author_email, $comment_content)
- $dupe = "SELECT comment_ID FROM $wpdb->comments WHERE comment_post_ID = '$comment_post_ID' AND comment_approved != 'trash' AND ( comment_author = '$comment_author' ";
- if ( $comment_author_email )
- $dupe .= "OR comment_author_email = '$comment_author_email' ";
- $dupe .= ") AND comment_content = '$comment_content' LIMIT 1";
- if ( $wpdb->get_var($dupe) ) {
- do_action( 'comment_duplicate_trigger', $commentdata );
- if ( defined('DOING_AJAX') )
- die( __('Duplicate comment detected; it looks as though you’ve already said that!') );
- wp_die( __('Duplicate comment detected; it looks as though you’ve already said that!') );
- }
- do_action( 'check_comment_flood', $comment_author_IP, $comment_author_email, $comment_date_gmt );
- if ( isset($user_id) && $user_id) {
- $userdata = get_userdata($user_id);
- $user = new WP_User($user_id);
- $post_author = $wpdb->get_var($wpdb->prepare("SELECT post_author FROM $wpdb->posts WHERE ID = %d LIMIT 1", $comment_post_ID));
- }
- if ( isset($userdata) && ( $user_id == $post_author || $user->has_cap('moderate_comments') ) ) {
- // The author and the admins get respect.
- $approved = 1;
- } else {
- // Everyone else's comments will be checked.
- if ( check_comment($comment_author, $comment_author_email, $comment_author_url, $comment_content, $comment_author_IP, $comment_agent, $comment_type) )
- $approved = 1;
- else
- $approved = 0;
- if ( wp_blacklist_check($comment_author, $comment_author_email, $comment_author_url, $comment_content, $comment_author_IP, $comment_agent) )
- $approved = 'spam';
- }
- $approved = apply_filters( 'pre_comment_approved', $approved, $commentdata );
- return $approved;
- }
- /**
- * Check whether comment flooding is occurring.
- *
- * Won't run, if current user can manage options, so to not block
- * administrators.
- *
- * @since 2.3.0
- * @uses $wpdb
- * @uses apply_filters() Calls 'comment_flood_filter' filter with first
- * parameter false, last comment timestamp, new comment timestamp.
- * @uses do_action() Calls 'comment_flood_trigger' action with parameters with
- * last comment timestamp and new comment timestamp.
- *
- * @param string $ip Comment IP.
- * @param string $email Comment author email address.
- * @param string $date MySQL time string.
- */
- function check_comment_flood_db( $ip, $email, $date ) {
- global $wpdb;
- if ( current_user_can( 'manage_options' ) )
- return; // don't throttle admins
- $hour_ago = gmdate( 'Y-m-d H:i:s', time() - 3600 );
- if ( $lasttime = $wpdb->get_var( $wpdb->prepare( "SELECT `comment_date_gmt` FROM `$wpdb->comments` WHERE `comment_date_gmt` >= %s AND ( `comment_author_IP` = %s OR `comment_author_email` = %s ) ORDER BY `comment_date_gmt` DESC LIMIT 1", $hour_ago, $ip, $email ) ) ) {
- $time_lastcomment = mysql2date('U', $lasttime, false);
- $time_newcomment = mysql2date('U', $date, false);
- $flood_die = apply_filters('comment_flood_filter', false, $time_lastcomment, $time_newcomment);
- if ( $flood_die ) {
- do_action('comment_flood_trigger', $time_lastcomment, $time_newcomment);
- if ( defined('DOING_AJAX') )
- die( __('You are posting comments too quickly. Slow down.') );
- wp_die( __('You are posting comments too quickly. Slow down.'), '', array('response' => 403) );
- }
- }
- }
- /**
- * Separates an array of comments into an array keyed by comment_type.
- *
- * @since 2.7.0
- *
- * @param array $comments Array of comments
- * @return array Array of comments keyed by comment_type.
- */
- function &separate_comments(&$comments) {
- $comments_by_type = array('comment' => array(), 'trackback' => array(), 'pingback' => array(), 'pings' => array());
- $count = count($comments);
- for ( $i = 0; $i < $count; $i++ ) {
- $type = $comments[$i]->comment_type;
- if ( empty($type) )
- $type = 'comment';
- $comments_by_type[$type][] = &$comments[$i];
- if ( 'trackback' == $type || 'pingback' == $type )
- $comments_by_type['pings'][] = &$comments[$i];
- }
- return $comments_by_type;
- }
- /**
- * Calculate the total number of comment pages.
- *
- * @since 2.7.0
- * @uses get_query_var() Used to fill in the default for $per_page parameter.
- * @uses get_option() Used to fill in defaults for parameters.
- * @uses Walker_Comment
- *
- * @param array $comments Optional array of comment objects. Defaults to $wp_query->comments
- * @param int $per_page Optional comments per page.
- * @param boolean $threaded Optional control over flat or threaded comments.
- * @return int Number of comment pages.
- */
- function get_comment_pages_count( $comments = null, $per_page = null, $threaded = null ) {
- global $wp_query;
- if ( null === $comments && null === $per_page && null === $threaded && !empty($wp_query->max_num_comment_pages) )
- return $wp_query->max_num_comment_pages;
- if ( !$comments || !is_array($comments) )
- $comments = $wp_query->comments;
- if ( empty($comments) )
- return 0;
- if ( !isset($per_page) )
- $per_page = (int) get_query_var('comments_per_page');
- if ( 0 === $per_page )
- $per_page = (int) get_option('comments_per_page');
- if ( 0 === $per_page )
- return 1;
- if ( !isset($threaded) )
- $threaded = get_option('thread_comments');
- if ( $threaded ) {
- $walker = new Walker_Comment;
- $count = ceil( $walker->get_number_of_root_elements( $comments ) / $per_page );
- } else {
- $count = ceil( count( $comments ) / $per_page );
- }
- return $count;
- }
- /**
- * Calculate what page number a comment will appear on for comment paging.
- *
- * @since 2.7.0
- * @uses get_comment() Gets the full comment of the $comment_ID parameter.
- * @uses get_option() Get various settings to control function and defaults.
- * @uses get_page_of_comment() Used to loop up to top level comment.
- *
- * @param int $comment_ID Comment ID.
- * @param array $args Optional args.
- * @return int|null Comment page number or null on error.
- */
- function get_page_of_comment( $comment_ID, $args = array() ) {
- global $wpdb;
- if ( !$comment = get_comment( $comment_ID ) )
- return;
- $defaults = array( 'type' => 'all', 'page' => '', 'per_page' => '', 'max_depth' => '' );
- $args = wp_parse_args( $args, $defaults );
- if ( '' === $args['per_page'] && get_option('page_comments') )
- $args['per_page'] = get_query_var('comments_per_page');
- if ( empty($args['per_page']) ) {
- $args['per_page'] = 0;
- $args['page'] = 0;
- }
- if ( $args['per_page'] < 1 )
- return 1;
- if ( '' === $args['max_depth'] ) {
- if ( get_option('thread_comments') )
- $args['max_depth'] = get_option('thread_comments_depth');
- else
- $args['max_depth'] = -1;
- }
- // Find this comment's top level parent if threading is enabled
- if ( $args['max_depth'] > 1 && 0 != $comment->comment_parent )
- return get_page_of_comment( $comment->comment_parent, $args );
- $allowedtypes = array(
- 'comment' => '',
- 'pingback' => 'pingback',
- 'trackback' => 'trackback',
- );
- $comtypewhere = ( 'all' != $args['type'] && isset($allowedtypes[$args['type']]) ) ? " AND comment_type = '" . $allowedtypes[$args['type']] . "'" : '';
- // Count comments older than this one
- $oldercoms = $wpdb->get_var( $wpdb->prepare( "SELECT COUNT(comment_ID) FROM $wpdb->comments WHERE comment_post_ID = %d AND comment_parent = 0 AND comment_approved = '1' AND comment_date_gmt < '%s'" . $comtypewhere, $comment->comment_post_ID, $comment->comment_date_gmt ) );
- // No older comments? Then it's page #1.
- if ( 0 == $oldercoms )
- return 1;
- // Divide comments older than this one by comments per page to get this comment's page number
- return ceil( ( $oldercoms + 1 ) / $args['per_page'] );
- }
- /**
- * Does comment contain blacklisted characters or words.
- *
- * @since 1.5.0
- * @uses do_action() Calls 'wp_blacklist_check' hook for all parameters.
- *
- * @param string $author The author of the comment
- * @param string $email The email of the comment
- * @param string $url The url used in the comment
- * @param string $comment The comment content
- * @param string $user_ip The comment author IP address
- * @param string $user_agent The author's browser user agent
- * @return bool True if comment contains blacklisted content, false if comment does not
- */
- function wp_blacklist_check($author, $email, $url, $comment, $user_ip, $user_agent) {
- do_action('wp_blacklist_check', $author, $email, $url, $comment, $user_ip, $user_agent);
- $mod_keys = trim( get_option('blacklist_keys') );
- if ( '' == $mod_keys )
- return false; // If moderation keys are empty
- $words = explode("\n", $mod_keys );
- foreach ( (array) $words as $word ) {
- $word = trim($word);
- // Skip empty lines
- if ( empty($word) ) { continue; }
- // Do some escaping magic so that '#' chars in the
- // spam words don't break things:
- $word = preg_quote($word, '#');
- $pattern = "#$word#i";
- if (
- preg_match($pattern, $author)
- || preg_match($pattern, $email)
- || preg_match($pattern, $url)
- || preg_match($pattern, $comment)
- || preg_match($pattern, $user_ip)
- || preg_match($pattern, $user_agent)
- )
- return true;
- }
- return false;
- }
- /**
- * Retrieve total comments for blog or single post.
- *
- * The properties of the returned object contain the 'moderated', 'approved',
- * and spam comments for either the entire blog or single post. Those properties
- * contain the amount of comments that match the status. The 'total_comments'
- * property contains the integer of total comments.
- *
- * The comment stats are cached and then retrieved, if they already exist in the
- * cache.
- *
- * @since 2.5.0
- *
- * @param int $post_id Optional. Post ID.
- * @return object Comment stats.
- */
- function wp_count_comments( $post_id = 0 ) {
- global $wpdb;
- $post_id = (int) $post_id;
- $stats = apply_filters('wp_count_comments', array(), $post_id);
- if ( !empty($stats) )
- return $stats;
- $count = wp_cache_get("comments-{$post_id}", 'counts');
- if ( false !== $count )
- return $count;
- $where = '';
- if ( $post_id > 0 )
- $where = $wpdb->prepare( "WHERE comment_post_ID = %d", $post_id );
- $count = $wpdb->get_results( "SELECT comment_approved, COUNT( * ) AS num_comments FROM {$wpdb->comments} {$where} GROUP BY comment_approved", ARRAY_A );
- $total = 0;
- $approved = array('0' => 'moderated', '1' => 'approved', 'spam' => 'spam', 'trash' => 'trash', 'post-trashed' => 'post-trashed');
- foreach ( (array) $count as $row ) {
- // Don't count post-trashed toward totals
- if ( 'post-trashed' != $row['comment_approved'] && 'trash' != $row['comment_approved'] )
- $total += $row['num_comments'];
- if ( isset( $approved[$row['comment_approved']] ) )
- $stats[$approved[$row['comment_approved']]] = $row['num_comments'];
- }
- $stats['total_comments'] = $total;
- foreach ( $approved as $key ) {
- if ( empty($stats[$key]) )
- $stats[$key] = 0;
- }
- $stats = (object) $stats;
- wp_cache_set("comments-{$post_id}", $stats, 'counts');
- return $stats;
- }
- /**
- * Trashes or deletes a comment.
- *
- * The comment is moved to trash instead of permanently deleted unless trash is
- * disabled, item is already in the trash, or $force_delete is true.
- *
- * The post comment count will be updated if the comment was approved and has a
- * post ID available.
- *
- * @since 2.0.0
- * @uses $wpdb
- * @uses do_action() Calls 'delete_comment' hook on comment ID
- * @uses do_action() Calls 'deleted_comment' hook on comment ID after deletion, on success
- * @uses do_action() Calls 'wp_set_comment_status' hook on comment ID with 'delete' set for the second parameter
- * @uses wp_transition_comment_status() Passes new and old comment status along with $comment object
- *
- * @param int $comment_id Comment ID
- * @param bool $force_delete Whether to bypass trash and force deletion. Default is false.
- * @return bool False if delete comment query failure, true on success.
- */
- function wp_delete_comment($comment_id, $force_delete = false) {
- global $wpdb;
- if (!$comment = get_comment($comment_id))
- return false;
- if ( !$force_delete && EMPTY_TRASH_DAYS && !in_array( wp_get_comment_status($comment_id), array( 'trash', 'spam' ) ) )
- return wp_trash_comment($comment_id);
- do_action('delete_comment', $comment_id);
- // Move children up a level.
- $children = $wpdb->get_col( $wpdb->prepare("SELECT comment_ID FROM $wpdb->comments WHERE comment_parent = %d", $comment_id) );
- if ( !empty($children) ) {
- $wpdb->update($wpdb->comments, array('comment_parent' => $comment->comment_parent), array('comment_parent' => $comment_id));
- clean_comment_cache($children);
- }
- // Delete metadata
- $meta_ids = $wpdb->get_col( $wpdb->prepare( "SELECT meta_id FROM $wpdb->commentmeta WHERE comment_id = %d", $comment_id ) );
- foreach ( $meta_ids as $mid )
- delete_metadata_by_mid( 'comment', $mid );
- if ( ! $wpdb->delete( $wpdb->comments, array( 'comment_ID' => $comment_id ) ) )
- return false;
- do_action('deleted_comment', $comment_id);
- $post_id = $comment->comment_post_ID;
- if ( $post_id && $comment->comment_approved == 1 )
- wp_update_comment_count($post_id);
- clean_comment_cache($comment_id);
- do_action('wp_set_comment_status', $comment_id, 'delete');
- wp_transition_comment_status('delete', $comment->comment_approved, $comment);
- return true;
- }
- /**
- * Moves a comment to the Trash
- *
- * If trash is disabled, comment is permanently deleted.
- *
- * @since 2.9.0
- * @uses do_action() on 'trash_comment' before trashing
- * @uses do_action() on 'trashed_comment' after trashing
- * @uses wp_delete_comment() if trash is disabled
- *
- * @param int $comment_id Comment ID.
- * @return mixed False on failure
- */
- function wp_trash_comment($comment_id) {
- if ( !EMPTY_TRASH_DAYS )
- return wp_delete_comment($comment_id, true);
- if ( !$comment = get_comment($comment_id) )
- return false;
- do_action('trash_comment', $comment_id);
- if ( wp_set_comment_status($comment_id, 'trash') ) {
- add_comment_meta($comment_id, '_wp_trash_meta_status', $comment->comment_approved);
- add_comment_meta($comment_id, '_wp_trash_meta_time', time() );
- do_action('trashed_comment', $comment_id);
- return true;
- }
- return false;
- }
- /**
- * Removes a comment from the Trash
- *
- * @since 2.9.0
- * @uses do_action() on 'untrash_comment' before untrashing
- * @uses do_action() on 'untrashed_comment' after untrashing
- *
- * @param int $comment_id Comment ID.
- * @return mixed False on failure
- */
- function wp_untrash_comment($comment_id) {
- if ( ! (int)$comment_id )
- return false;
- do_action('untrash_comment', $comment_id);
- $status = (string) get_comment_meta($comment_id, '_wp_trash_meta_status', true);
- if ( empty($status) )
- $status = '0';
- if ( wp_set_comment_status($comment_id, $status) ) {
- delete_comment_meta($comment_id, '_wp_trash_meta_time');
- delete_comment_meta($comment_id, '_wp_trash_meta_status');
- do_action('untrashed_comment', $comment_id);
- return true;
- }
- return false;
- }
- /**
- * Marks a comment as Spam
- *
- * @since 2.9.0
- * @uses do_action() on 'spam_comment' before spamming
- * @uses do_action() on 'spammed_comment' after spamming
- *
- * @param int $comment_id Comment ID.
- * @return mixed False on failure
- */
- function wp_spam_comment($comment_id) {
- if ( !$comment = get_comment($comment_id) )
- return false;
- do_action('spam_comment', $comment_id);
- if ( wp_set_comment_status($comment_id, 'spam') ) {
- add_comment_meta($comment_id, '_wp_trash_meta_status', $comment->comment_approved);
- do_action('spammed_comment', $comment_id);
- return true;
- }
- return false;
- }
- /**
- * Removes a comment from the Spam
- *
- * @since 2.9.0
- * @uses do_action() on 'unspam_comment' before unspamming
- * @uses do_action() on 'unspammed_comment' after unspamming
- *
- * @param int $comment_id Comment ID.
- * @return mixed False on failure
- */
- function wp_unspam_comment($comment_id) {
- if ( ! (int)$comment_id )
- return false;
- do_action('unspam_comment', $comment_id);
- $status = (string) get_comment_meta($comment_id, '_wp_trash_meta_status', true);
- if ( empty($status) )
- $status = '0';
- if ( wp_set_comment_status($comment_id, $status) ) {
- delete_comment_meta($comment_id, '_wp_trash_meta_status');
- do_action('unspammed_comment', $comment_id);
- return true;
- }
- return false;
- }
- /**
- * The status of a comment by ID.
- *
- * @since 1.0.0
- *
- * @param int $comment_id Comment ID
- * @return string|bool Status might be 'trash', 'approved', 'unapproved', 'spam'. False on failure.
- */
- function wp_get_comment_status($comment_id) {
- $comment = get_comment($comment_id);
- if ( !$comment )
- return false;
- $approved = $comment->comment_approved;
- if ( $approved == null )
- return false;
- elseif ( $approved == '1' )
- return 'approved';
- elseif ( $approved == '0' )
- return 'unapproved';
- elseif ( $approved == 'spam' )
- return 'spam';
- elseif ( $approved == 'trash' )
- return 'trash';
- else
- return false;
- }
- /**
- * Call hooks for when a comment status transition occurs.
- *
- * Calls hooks for comment status transitions. If the new comment status is not the same
- * as the previous comment status, then two hooks will be ran, the first is
- * 'transition_comment_status' with new status, old status, and comment data. The
- * next action called is 'comment_OLDSTATUS_to_NEWSTATUS' the NEWSTATUS is the
- * $new_status parameter and the OLDSTATUS is $old_status parameter; it has the
- * comment data.
- *
- * The final action will run whether or not the comment statuses are the same. The
- * action is named 'comment_NEWSTATUS_COMMENTTYPE', NEWSTATUS is from the $new_status
- * parameter and COMMENTTYPE is comment_type comment data.
- *
- * @since 2.7.0
- *
- * @param string $new_status New comment status.
- * @param string $old_status Previous comment status.
- * @param object $comment Comment data.
- */
- function wp_transition_comment_status($new_status, $old_status, $comment) {
- // Translate raw statuses to human readable formats for the hooks
- // This is not a complete list of comment status, it's only the ones that need to be renamed
- $comment_statuses = array(
- 0 => 'unapproved',
- 'hold' => 'unapproved', // wp_set_comment_status() uses "hold"
- 1 => 'approved',
- 'approve' => 'approved', // wp_set_comment_status() uses "approve"
- );
- if ( isset($comment_statuses[$new_status]) ) $new_status = $comment_statuses[$new_status];
- if ( isset($comment_statuses[$old_status]) ) $old_status = $comment_statuses[$old_status];
- // Call the hooks
- if ( $new_status != $old_status ) {
- do_action('transition_comment_status', $new_status, $old_status, $comment);
- do_action("comment_{$old_status}_to_{$new_status}", $comment);
- }
- do_action("comment_{$new_status}_{$comment->comment_type}", $comment->comment_ID, $comment);
- }
- /**
- * Get current commenter's name, email, and URL.
- *
- * Expects cookies content to already be sanitized. User of this function might
- * wish to recheck the returned array for validity.
- *
- * @see sanitize_comment_cookies() Use to sanitize cookies
- *
- * @since 2.0.4
- *
- * @return array Comment author, email, url respectively.
- */
- function wp_get_current_commenter() {
- // Cookies should already be sanitized.
- $comment_author = '';
- if ( isset($_COOKIE['comment_author_'.COOKIEHASH]) )
- $comment_author = $_COOKIE['comment_author_'.COOKIEHASH];
- $comment_author_email = '';
- if ( isset($_COOKIE['comment_author_email_'.COOKIEHASH]) )
- $comment_author_email = $_COOKIE['comment_author_email_'.COOKIEHASH];
- $comment_author_url = '';
- if ( isset($_COOKIE['comment_author_url_'.COOKIEHASH]) )
- $comment_author_url = $_COOKIE['comment_author_url_'.COOKIEHASH];
- return apply_filters('wp_get_current_commenter', compact('comment_author', 'comment_author_email', 'comment_author_url'));
- }
- /**
- * Inserts a comment to the database.
- *
- * The available comment data key names are 'comment_author_IP', 'comment_date',
- * 'comment_date_gmt', 'comment_parent', 'comment_approved', and 'user_id'.
- *
- * @since 2.0.0
- * @uses $wpdb
- *
- * @param array $commentdata Contains information on the comment.
- * @return int The new comment's ID.
- */
- function wp_insert_comment($commentdata) {
- global $wpdb;
- extract(stripslashes_deep($commentdata), EXTR_SKIP);
- if ( ! isset($comment_author_IP) )
- $comment_author_IP = '';
- if ( ! isset($comment_date) )
- $comment_date = current_time('mysql');
- if ( ! isset($comment_date_gmt) )
- $comment_date_gmt = get_gmt_from_date($comment_date);
- if ( ! isset($comment_parent) )
- $comment_parent = 0;
- if ( ! isset($comment_approved) )
- $comment_approved = 1;
- if ( ! isset($comment_karma) )
- $comment_karma = 0;
- if ( ! isset($user_id) )
- $user_id = 0;
- if ( ! isset($comment_type) )
- $comment_type = '';
- $data = compact('comment_post_ID', 'comment_author', 'comment_author_email', 'comment_author_url', 'comment_author_IP', 'comment_date', 'comment_date_gmt', 'comment_content', 'comment_karma', 'comment_approved', 'comment_agent', 'comment_type', 'comment_parent', 'user_id');
- $wpdb->insert($wpdb->comments, $data);
- $id = (int) $wpdb->insert_id;
- if ( $comment_approved == 1 )
- wp_update_comment_count($comment_post_ID);
- $comment = get_comment($id);
- do_action('wp_insert_comment', $id, $comment);
- return $id;
- }
- /**
- * Filters and sanitizes comment data.
- *
- * Sets the comment data 'filtered' field to true when finished. This can be
- * checked as to whether the comment should be filtered and to keep from
- * filtering the same comment more than once.
- *
- * @since 2.0.0
- * @uses apply_filters() Calls 'pre_user_id' hook on comment author's user ID
- * @uses apply_filters() Calls 'pre_comment_user_agent' hook on comment author's user agent
- * @uses apply_filters() Calls 'pre_comment_author_name' hook on comment author's name
- * @uses apply_filters() Calls 'pre_comment_content' hook on the comment's content
- * @uses apply_filters() Calls 'pre_comment_user_ip' hook on comment author's IP
- * @uses apply_filters() Calls 'pre_comment_author_url' hook on comment author's URL
- * @uses apply_filters() Calls 'pre_comment_author_email' hook on comment author's email address
- *
- * @param array $commentdata Contains information on the comment.
- * @return array Parsed comment information.
- */
- function wp_filter_comment($commentdata) {
- if ( isset($commentdata['user_ID']) )
- $commentdata['user_id'] = apply_filters('pre_user_id', $commentdata['user_ID']);
- elseif ( isset($commentdata['user_id']) )
- $commentdata['user_id'] = apply_filters('pre_user_id', $commentdata['user_id']);
- $commentdata['comment_agent'] = apply_filters('pre_comment_user_agent', ( isset( $commentdata['comment_agent'] ) ? $commentdata['comment_agent'] : '' ) );
- $commentdata['comment_author'] = apply_filters('pre_comment_author_name', $commentdata['comment_author']);
- $commentdata['comment_content'] = apply_filters('pre_comment_content', $commentdata['comment_content']);
- $commentdata['comment_author_IP'] = apply_filters('pre_comment_user_ip', $commentdata['comment_author_IP']);
- $commentdata['comment_author_url'] = apply_filters('pre_comment_author_url', $commentdata['comment_author_url']);
- $commentdata['comment_author_email'] = apply_filters('pre_comment_author_email', $commentdata['comment_author_email']);
- $commentdata['filtered'] = true;
- return $commentdata;
- }
- /**
- * Whether comment should be blocked because of comment flood.
- *
- * @since 2.1.0
- *
- * @param bool $block Whether plugin has already blocked comment.
- * @param int $time_lastcomment Timestamp for last comment.
- * @param int $time_newcomment Timestamp for new comment.
- * @return bool Whether comment should be blocked.
- */
- function wp_throttle_comment_flood($block, $time_lastcomment, $time_newcomment) {
- if ( $block ) // a plugin has already blocked... we'll let that decision stand
- return $block;
- if ( ($time_newcomment - $time_lastcomment) < 15 )
- return true;
- return false;
- }
- /**
- * Adds a new comment to the database.
- *
- * Filters new comment to ensure that the fields are sanitized and valid before
- * inserting comment into database. Calls 'comment_post' action with comment ID
- * and whether comment is approved by WordPress. Also has 'preprocess_comment'
- * filter for processing the comment data before the function handles it.
- *
- * We use REMOTE_ADDR here directly. If you are behind a proxy, you should ensure
- * that it is properly set, such as in wp-config.php, for your environment.
- * See {@link http://core.trac.wordpress.org/ticket/9235}
- *
- * @since 1.5.0
- * @uses apply_filters() Calls 'preprocess_comment' hook on $commentdata parameter array before processing
- * @uses do_action() Calls 'comment_post' hook on $comment_ID returned from adding the comment and if the comment was approved.
- * @uses wp_filter_comment() Used to filter comment before adding comment.
- * @uses wp_allow_comment() checks to see if comment is approved.
- * @uses wp_insert_comment() Does the actual comment insertion to the database.
- *
- * @param array $commentdata Contains information on the comment.
- * @return int The ID of the comment after adding.
- */
- function wp_new_comment( $commentdata ) {
- $commentdata = apply_filters('preprocess_comment', $commentdata);
- $commentdata['comment_post_ID'] = (int) $commentdata['comment_post_ID'];
- if ( isset($commentdata['user_ID']) )
- $commentdata['user_id'] = $commentdata['user_ID'] = (int) $commentdata['user_ID'];
- elseif ( isset($commentdata['user_id']) )
- $commentdata['user_id'] = (int) $commentdata['user_id'];
- $commentdata['comment_parent'] = isset($commentdata['comment_parent']) ? absint($commentdata['comment_parent']) : 0;
- $parent_status = ( 0 < $commentdata['comment_parent'] ) ? wp_get_comment_status($commentdata['comment_parent']) : '';
- $commentdata['comment_parent'] = ( 'approved' == $parent_status || 'unapproved' == $parent_status ) ? $commentdata['comment_parent'] : 0;
- $commentdata['comment_author_IP'] = preg_replace( '/[^0-9a-fA-F:., ]/', '',$_SERVER['REMOTE_ADDR'] );
- $commentdata['comment_agent'] = substr($_SERVER['HTTP_USER_AGENT'], 0, 254);
- $commentdata['comment_date'] = current_time('mysql');
- $commentdata['comment_date_gmt'] = current_time('mysql', 1);
- $commentdata = wp_filter_comment($commentdata);
- $commentdata['comment_approved'] = wp_allow_comment($commentdata);
- $comment_ID = wp_insert_comment($commentdata);
- do_action('comment_post', $comment_ID, $commentdata['comment_approved']);
- if ( 'spam' !== $commentdata['comment_approved'] ) { // If it's spam save it silently for later crunching
- if ( '0' == $commentdata['comment_approved'] )
- wp_notify_moderator($comment_ID);
- $post = &get_post($commentdata['comment_post_ID']); // Don't notify if it's your own comment
- if ( get_option('comments_notify') && $commentdata['comment_approved'] && ( ! isset( $commentdata['user_id'] ) || $post->post_author != $commentdata['user_id'] ) )
- wp_notify_postauthor($comment_ID, isset( $commentdata['comment_type'] ) ? $commentdata['comment_type'] : '' );
- }
- return $comment_ID;
- }
- /**
- * Sets the status of a comment.
- *
- * The 'wp_set_comment_status' action is called after the comment is handled.
- * If the comment status is not in the list, then false is returned.
- *
- * @since 1.0.0
- * @uses wp_transition_comment_status() Passes new and old comment status along with $comment object
- *
- * @param int $comment_id Comment ID.
- * @param string $comment_status New comment status, either 'hold', 'approve', 'spam', or 'trash'.
- * @param bool $wp_error Whether to return a WP_Error object if there is a failure. Default is false.
- * @return bool False on failure or deletion and true on success.
- */
- function wp_set_comment_status($comment_id, $comment_status, $wp_error = false) {
- global $wpdb;
- $status = '0';
- switch ( $comment_status ) {
- case 'hold':
- case '0':
- $status = '0';
- break;
- case 'approve':
- case '1':
- $status = '1';
- if ( get_option('comments_notify') ) {
- $comment = get_comment($comment_id);
- wp_notify_postauthor($comment_id, $comment->comment_type);
- }
- break;
- case 'spam':
- $status = 'spam';
- break;
- case 'trash':
- $status = 'trash';
- break;
- default:
- return false;
- }
- $comment_old = clone get_comment($comment_id);
- if ( !$wpdb->update( $wpdb->comments, array('comment_approved' => $status), array('comment_ID' => $comment_id) ) ) {
- if ( $wp_error )
- return new WP_Error('db_update_error', __('Could not update comment status'), $wpdb->last_error);
- else
- return false;
- }
- clean_comment_cache($comment_id);
- $comment = get_comment($comment_id);
- do_action('wp_set_comment_status', $comment_id, $comment_status);
- wp_transition_comment_status($comment_status, $comment_old->comment_approved, $comment);
- wp_update_comment_count($comment->comment_post_ID);
- return true;
- }
- /**
- * Updates an existing comment in the database.
- *
- * Filters the comment and makes sure certain fields are valid before updating.
- *
- * @since 2.0.0
- * @uses $wpdb
- * @uses wp_transition_comment_status() Passes new and old comment status along with $comment object
- *
- * @param array $commentarr Contains information on the comment.
- * @return int Comment was updated if value is 1, or was not updated if value is 0.
- */
- function wp_update_comment($commentarr) {
- global $wpdb;
- // First, get all of the original fields
- $comment = get_comment($commentarr['comment_ID'], ARRAY_A);
- // Escape data pulled from DB.
- $comment = esc_sql($comment);
- $old_status = $comment['comment_approved'];
- // Merge old and new fields with new fields overwriting old ones.
- $commentarr = array_merge($comment, $commentarr);
- $commentarr = wp_filter_comment( $commentarr );
- // Now extract the merged array.
- extract(stripslashes_deep($commentarr), EXTR_SKIP);
- $comment_content = apply_filters('comment_save_pre', $comment_content);
- $comment_date_gmt = get_gmt_from_date($comment_date);
- if ( !isset($comment_approved) )
- $comment_approved = 1;
- else if ( 'hold' == $comment_approved )
- $comment_approved = 0;
- else if ( 'approve' == $comment_approved )
- $comment_approved = 1;
- $data = compact('comment_content', 'comment_author', 'comment_author_email', 'comment_approved', 'comment_karma', 'comment_author_