PageRenderTime 71ms CodeModel.GetById 30ms RepoModel.GetById 1ms app.codeStats 0ms

/wp-admin/includes/widgets.php

https://github.com/Mercedes/ratonesytortillas
PHP | 282 lines | 197 code | 71 blank | 14 comment | 50 complexity | a7132e2918bf7a2c1f44807089361769 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. // $_search is unsanitized
    4. 

  4. function wp_list_widgets( $show = 'all', $_search = false ) {
    5. 

  5. 	global $wp_registered_widgets, $sidebars_widgets, $wp_registered_widget_controls;
    6. 

  6. 	if ( $_search ) {
    7. 

  7. 		// sanitize
    8. 

  8. 		$search = preg_replace( '/[^\w\s]/', '', $_search );
    9. 

  9. 		// array of terms
    10. 

  10. 		$search_terms = preg_split( '/[\s]/', $search, -1, PREG_SPLIT_NO_EMPTY );
    11. 

  11. 	} else {
    12. 

  12. 		$search_terms = array();
    13. 

  13. 	}
    14. 

  14. 

  15. 	if ( !in_array( $show, array( 'all', 'unused', 'used' ) ) )
    16. 

  16. 		$show = 'all';
    17. 

  17. ?>
    18. 

  18. 

  19. 	<ul id='widget-list'>
    20. 

  20. 		<?php
    21. 

  21. 		$no_widgets_shown = true;
    22. 

  22. 		$already_shown = array();
    23. 

  23. 		foreach ( $wp_registered_widgets as $name => $widget ) :
    24. 

  24. 			if ( in_array( $widget['callback'], $already_shown ) ) // We already showed this multi-widget
    25. 

  25. 				continue;
    26. 

  26. 

  27. 			if ( $search_terms ) {
    28. 

  28. 				$hit = false;
    29. 

  29. 				// Simple case-insensitive search.  Boolean OR.
    30. 

  30. 				$search_text = preg_replace( '/[^\w]/', '', $widget['name'] );
    31. 

  31. 				if ( isset($widget['description']) )
    32. 

  32. 					$search_text .= preg_replace( '/[^\w]/', '', $widget['description'] );
    33. 

  33. 

  34. 				foreach ( $search_terms as $search_term ) {
    35. 

  35. 					if ( stristr( $search_text, $search_term ) ) {
    36. 

  36. 						$hit = true;
    37. 

  37. 						break;
    38. 

  38. 					}
    39. 

  39. 				}
    40. 

  40. 				if ( !$hit )
    41. 

  41. 					continue;
    42. 

  42. 			}
    43. 

  43. 

  44. 			$sidebar = is_active_widget( $widget['callback'], $widget['id'] );
    45. 

  45. 

  46. 			if ( ( 'unused' == $show && $sidebar ) || ( 'used' == $show && !$sidebar ) )
    47. 

  47. 				continue;
    48. 

  48. 

  49. 			ob_start();
    50. 

  50. 				$args = wp_list_widget_controls_dynamic_sidebar( array( 0 => array( 'widget_id' => $widget['id'], 'widget_name' => $widget['name'], '_display' => 'template' ) ) );
    51. 

  51. 				$sidebar_args = call_user_func_array( 'wp_widget_control', $args );
    52. 

  52. 			$widget_control_template = ob_get_contents();
    53. 

  53. 			ob_end_clean();
    54. 

  54. 

  55. 			$widget_id = $widget['id']; // save this for later in case we mess with $widget['id']
    56. 

  56. 

  57. 			$is_multi = false !== strpos( $widget_control_template, '%i%' );
    58. 

  58. 			if ( !$sidebar || $is_multi ) {
    59. 

  59. 				$add_query = array(
    60. 

  60. 					'sidebar' => $sidebar,
    61. 

  61. 					'key' => false,
    62. 

  62. 					'edit' => false
    63. 

  63. 				);
    64. 

  64. 				if ( $is_multi ) {
    65. 

  65. 					// it's a multi-widget.  We only need to show it in the list once.
    66. 

  66. 					$already_shown[] = $widget['callback'];
    67. 

  67. 					$num = (int) array_pop( explode( '-', $widget['id'] ) );
    68. 

  68. 					$id_base = $wp_registered_widget_controls[$widget['id']]['id_base'];
    69. 

  69. 					// so that we always add a new one when clicking "add"
    70. 

  70. 					while ( isset($wp_registered_widgets["$id_base-$num"]) )
    71. 

  71. 						$num++;
    72. 

  72. 					$widget['id'] = "$id_base-$num";
    73. 

  73. 					$add_query['base'] = $id_base;
    74. 

  74. 					$add_query['key'] = $num;
    75. 

  75. 					$add_query['sidebar'] = $GLOBALS['sidebar'];
    76. 

  76. 				}
    77. 

  77. 				$add_query['add'] = $widget['id'];
    78. 

  78. 				$action = 'add';
    79. 

  79. 				$add_url = wp_nonce_url( add_query_arg( $add_query ), "add-widget_$widget[id]" );
    80. 

  80. 			} else {
    81. 

  81. 				$action = 'edit';
    82. 

  82. 				$edit_url = clean_url( add_query_arg( array(
    83. 

  83. 					'sidebar' => $sidebar,
    84. 

  84. 					'edit' => $widget['id'],
    85. 

  85. 					'key' => array_search( $widget['id'], $sidebars_widgets[$sidebar] ),
    86. 

  86. 				) ) );
    87. 

  87. 				
    88. 

  88. 				$widget_control_template = '<textarea rows="1" cols="1">' . htmlspecialchars( $widget_control_template ) . '</textarea>';
    89. 

  89. 			}
    90. 

  90. 

  91. 			$widget_control_template = $sidebar_args['before_widget'] . $widget_control_template . $sidebar_args['after_widget'];
    92. 

  92. 

  93. 			$no_widgets_shown = false;
    94. 

  94. 

  95. 		?>
    96. 

  96. 

  97. 		<li id="widget-list-item-<?php echo attribute_escape( $widget['id'] ); ?>" class="widget-list-item">
    98. 

  98. 			<h4 class="widget-title widget-draggable">
    99. 

  99. 

  100. 				<?php echo wp_specialchars( $widget['name'] ); ?>
    101. 

  101. 

  102. 				<?php if ( 'add' == $action ) : ?>
    103. 

  103. 

  104. 				<a class="widget-action widget-control-add" href="<?php echo $add_url; ?>"><?php _e( 'Add' ); ?></a>
    105. 

  105. 

  106. 				<?php elseif ( 'edit' == $action ) :
    107. 

  107. 					// We echo a hidden edit link for the sake of the JS.  Edit links are shown (needlessly?) after a widget is added.
    108. 

  108. 				?>
    109. 

  109. 

  110. 				<a class="widget-action widget-control-edit" href="<?php echo $edit_url; ?>" style="display: none;"><?php _e( 'Edit' ); ?></a>
    111. 

  111. 

  112. 				<?php endif; ?>
    113. 

  113. 

  114. 			</h4>
    115. 

  115. 

  116. 

  117. 			<ul id="widget-control-info-<?php echo $widget['id']; ?>" class="widget-control-info">
    118. 

  118. 

  119. 				<?php echo $widget_control_template; ?>
    120. 

  120. 

  121. 			</ul>
    122. 

  122. 

  123. 			<?php if ( 'add' == $action ) : ?>
    124. 

  124. 			<?php endif; ?>
    125. 

  125. 

  126. 			<div class="widget-description">
    127. 

  127. 				<?php echo ( $widget_description = wp_widget_description( $widget_id ) ) ? $widget_description : '&nbsp;'; ?>
    128. 

  128. 			</div>
    129. 

  129. 

  130. 			<br class="clear" />
    131. 

  131. 

  132. 		</li>
    133. 

  133. 

  134. 		<?php endforeach; if ( $no_widgets_shown ) : ?>
    135. 

  135. 

  136. 		<li><?php _e( 'No matching widgets' ); ?></li>
    137. 

  137. 

  138. 		<?php endif; ?>
    139. 

  139. 

  140. 	</ul>
    141. 

  141. <?php
    142. 

  142. }
    143. 

  143. 

  144. 

  145. 

  146. function wp_list_widget_controls( $sidebar ) {
    147. 

  147. 	add_filter( 'dynamic_sidebar_params', 'wp_list_widget_controls_dynamic_sidebar' );
    148. 

  148. ?>
    149. 

  149. 

  150. 	<ul class="widget-control-list">
    151. 

  151. 

  152. 		<?php if ( !dynamic_sidebar( $sidebar ) ) echo "<li />"; ?>
    153. 

  153. 

  154. 	</ul>
    155. 

  155. 

  156. <?php
    157. 

  157. }
    158. 

  158. 

  159. 

  160. function wp_list_widget_controls_dynamic_sidebar( $params ) {
    161. 

  161. 	global $wp_registered_widgets;
    162. 

  162. 	static $i = 0;
    163. 

  163. 	$i++;
    164. 

  164. 

  165. 	$widget_id = $params[0]['widget_id'];
    166. 

  166. 

  167. 	$params[0]['before_widget'] = "<li id='widget-list-control-item-$i-$widget_id' class='widget-list-control-item widget-sortable'>\n";
    168. 

  168. 	$params[0]['after_widget'] = "</li>";
    169. 

  169. 	$params[0]['before_title'] = "%BEG_OF_TITLE%";
    170. 

  170. 	$params[0]['after_title'] = "%END_OF_TITLE%";
    171. 

  171. 	if ( is_callable( $wp_registered_widgets[$widget_id]['callback'] ) ) {
    172. 

  172. 		$wp_registered_widgets[$widget_id]['_callback'] = $wp_registered_widgets[$widget_id]['callback'];
    173. 

  173. 		$wp_registered_widgets[$widget_id]['callback'] = 'wp_widget_control';
    174. 

  174. 	}
    175. 

  175. 	return $params;
    176. 

  176. }
    177. 

  177. 

  178. /*
    179. 

  179.  * Meta widget used to display the control form for a widget.  Called from dynamic_sidebar()
    180. 

  180.  */
    181. 

  181. function wp_widget_control( $sidebar_args ) {
    182. 

  182. 	global $wp_registered_widgets, $wp_registered_widget_controls, $sidebars_widgets, $edit_widget;
    183. 

  183. 	$widget_id = $sidebar_args['widget_id'];
    184. 

  184. 	$sidebar_id = isset($sidebar_args['id']) ? $sidebar_args['id'] : false;
    185. 

  185. 

  186. 	$control = $wp_registered_widget_controls[$widget_id];
    187. 

  187. 	$widget  = $wp_registered_widgets[$widget_id];
    188. 

  188. 

  189. 	$key = $sidebar_id ? array_search( $widget_id, $sidebars_widgets[$sidebar_id] ) : 'no-key'; // position of widget in sidebar
    190. 

  190. 

  191. 	$edit = -1 <  $edit_widget && is_numeric($key) && $edit_widget === $key; // (bool) are we currently editing this widget
    192. 

  192. 

  193. 	$id_format = $widget['id'];
    194. 

  194. 	// We aren't showing a widget control, we're outputing a template for a mult-widget control
    195. 

  195. 	if ( 'template' == $sidebar_args['_display'] && isset($control['params'][0]['number']) ) {
    196. 

  196. 		// number == -1 implies a template where id numbers are replaced by a generic '%i%'
    197. 

  197. 		$control['params'][0]['number'] = -1;
    198. 

  198. 		// if given, id_base means widget id's should be constructed like {$id_base}-{$id_number}
    199. 

  199. 		if ( isset($control['id_base']) )
    200. 

  200. 			$id_format = $control['id_base'] . '-%i%';
    201. 

  201. 	}
    202. 

  202. 

  203. 	$widget_title = '';
    204. 

  204. 	// We grab the normal widget output to find the widget's title
    205. 

  205. 	if ( is_callable( $widget['_callback'] ) ) {
    206. 

  206. 		ob_start();
    207. 

  207. 		$args = func_get_args();
    208. 

  208. 		call_user_func_array( $widget['_callback'], $args );
    209. 

  209. 		$widget_title = ob_get_clean();
    210. 

  210. 		$widget_title = wp_widget_control_ob_filter( $widget_title );
    211. 

  211. 	}
    212. 

  212. 	$wp_registered_widgets[$widget_id]['callback'] = $wp_registered_widgets[$widget_id]['_callback'];
    213. 

  213. 	unset($wp_registered_widgets[$widget_id]['_callback']);
    214. 

  214. 

  215. 	if ( $widget_title && $widget_title != $control['name'] )
    216. 

  216. 		$widget_title = sprintf( _c('%1$s: %2$s|1: widget name, 2: widget title' ), $sidebar_args['widget_name'], $widget_title );
    217. 

  217. 	else
    218. 

  218. 		$widget_title = wp_specialchars( strip_tags( $sidebar_args['widget_name'] ) );
    219. 

  219. 

  220. 	if ( empty($sidebar_args['_display']) || 'template' != $sidebar_args['_display'] )
    221. 

  221. 		echo $sidebar_args['before_widget'];
    222. 

  222. ?>
    223. 

  223. 		<h4 class="widget-title"><?php echo $widget_title ?>
    224. 

  224. 

  225. 			<?php if ( $edit ) : ?>
    226. 

  226. 

  227. 			<a class="widget-action widget-control-edit" href="<?php echo remove_query_arg( array( 'edit', 'key' ) ); ?>"><?php _e('Cancel'); ?></a>
    228. 

  228. 

  229. 			<?php else : ?>
    230. 

  230. 

  231. 			<a class="widget-action widget-control-edit" href="<?php echo clean_url( add_query_arg( array( 'edit' => $id_format, 'key' => $key ) ) ); ?>"><?php _e('Edit'); ?></a>
    232. 

  232. 

  233. 			<?php endif; ?>
    234. 

  234. 

  235. 		</h4>
    236. 

  236. 

  237. 		<div class="widget-control"<?php if ( $edit ) echo ' style="display: block;"'; ?>>
    238. 

  238. 

  239. 			<?php
    240. 

  240. 			if ( $control )
    241. 

  241. 				call_user_func_array( $control['callback'], $control['params'] );
    242. 

  242. 			else
    243. 

  243. 				echo '<p>' . __('There are no options for this widget.') . '</p>';
    244. 

  244. 			?>
    245. 

  245. 

  246. 			<input type="hidden" name="widget-id[]" value="<?php echo $id_format; ?>" />
    247. 

  247. 			<input type="hidden" class="widget-width" value="<?php echo $control['width']; ?>" />
    248. 

  248. 

  249. 			<div class="widget-control-actions">
    250. 

  250. 

  251. 				<?php if ( $control ) : ?>
    252. 

  252. 

  253. 				<a class="widget-action widget-control-save wp-no-js-hidden edit alignleft" href="#save:<?php echo $id_format; ?>"><?php _e('Change'); ?></a>
    254. 

  254. 

  255. 				<?php endif; ?>
    256. 

  256. 

  257. 				<a class="widget-action widget-control-remove delete alignright" href="<?php echo clean_url( wp_nonce_url( add_query_arg( array( 'remove' => $id_format, 'key' => $key ) ), "remove-widget_$widget[id]" ) ); ?>"><?php _e('Remove'); ?></a>
    258. 

  258. 				<br class="clear" />
    259. 

  259. 			</div>
    260. 

  260. 		</div>
    261. 

  261. <?php
    262. 

  262. 	if ( empty($sidebar_args['_display']) || 'template' != $sidebar_args['_display'] )
    263. 

  263. 		echo $sidebar_args['after_widget'];
    264. 

  264. 	return $sidebar_args;
    265. 

  265. }
    266. 

  266. 

  267. function wp_widget_control_ob_filter( $string ) {
    268. 

  268. 	if ( false === $beg = strpos( $string, '%BEG_OF_TITLE%' ) )
    269. 

  269. 		return '';
    270. 

  270. 	if ( false === $end = strpos( $string, '%END_OF_TITLE%' ) )
    271. 

  271. 		return '';
    272. 

  272. 	$string = substr( $string, $beg + 14 , $end - $beg - 14);
    273. 

  273. 	return wp_specialchars( strip_tags( $string ) );
    274. 

  274. }
    275. 

  275. 

  276. function widget_css() {
    277. 

  277. 	wp_admin_css( 'css/widgets' );
    278. 

  278. }
    279. 

  279. 

  280. add_action( 'admin_head', 'widget_css' );
    281. 

  281. 

  282. ?>
    283. 

  283.