Index: trunk/wp-comments-post.php
===================================================================
--- trunk/wp-comments-post.php (revision 5038)
+++ trunk/wp-comments-post.php (working copy)
@@ -25,14 +25,20 @@
// If the user is logged in
$user = wp_get_current_user();
-if ( $user->ID ) :
+if ( $user->ID ) {
$comment_author = $wpdb->escape($user->display_name);
$comment_author_email = $wpdb->escape($user->user_email);
$comment_author_url = $wpdb->escape($user->user_url);
-else :
+ if ( current_user_can('unfiltered_html') ) {
+ if ( wp_create_nonce('unfiltered-html-comment_' . $comment_post_ID) != $_POST['_wp_unfiltered_html_comment'] ) {
+ kses_remove_filters(); // start with a clean slate
+ kses_init_filters(); // set up the filters
+ }
+ }
+} else {
if ( get_option('comment_registration') )
wp_die( __('Sorry, you must be logged in to post a comment.') );
-endif;
+}
$comment_type = '';
Index: trunk/wp-includes/default-filters.php
===================================================================
--- trunk/wp-includes/default-filters.php (revision 5038)
+++ trunk/wp-includes/default-filters.php (working copy)
@@ -31,6 +31,8 @@
add_filter('pre_comment_author_email', 'wp_filter_kses');
add_filter('pre_comment_author_url', 'wp_filter_kses');
+add_action('comment_form', 'wp_comment_form_unfiltered_html_nonce');
+
// Default filters for these functions
add_filter('comment_author', 'wptexturize');
add_filter('comment_author', 'convert_chars');
Index: trunk/wp-includes/functions.php
===================================================================
--- trunk/wp-includes/functions.php (revision 5038)
+++ trunk/wp-includes/functions.php (working copy)
@@ -1000,9 +1000,11 @@
return wp_specialchars(add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl));
}
-function wp_nonce_field($action = -1) {
- echo '';
- wp_referer_field();
+function wp_nonce_field($action = -1, $name = "_wpnonce", $referer = true) {
+ $name = attribute_escape($name);
+ echo '';
+ if ( $referer )
+ wp_referer_field();
}
function wp_referer_field() {
Index: trunk/wp-includes/comment-template.php
===================================================================
--- trunk/wp-includes/comment-template.php (revision 5038)
+++ trunk/wp-includes/comment-template.php (working copy)
@@ -271,6 +271,12 @@
return false;
}
+function wp_comment_form_unfiltered_html_nonce() {
+ global $post;
+ if ( current_user_can('unfiltered_html') )
+ wp_nonce_field('unfiltered-html-comment_' . $post->ID, '_wp_unfiltered_html_comment', false);
+}
+
function comments_template( $file = '/comments.php' ) {
global $wp_query, $withcomments, $post, $wpdb, $id, $comment, $user_login, $user_ID, $user_identity;
Index: branches/2.0/wp-comments-post.php
===================================================================
--- branches/2.0/wp-comments-post.php (revision 5038)
+++ branches/2.0/wp-comments-post.php (working copy)
@@ -25,14 +25,20 @@
// If the user is logged in
$user = wp_get_current_user();
-if ( $user->ID ) :
+if ( $user->ID ) {
$comment_author = $wpdb->escape($user->display_name);
$comment_author_email = $wpdb->escape($user->user_email);
$comment_author_url = $wpdb->escape($user->user_url);
-else :
+ if ( current_user_can('unfiltered_html') ) {
+ if ( wp_create_nonce('unfiltered-html-comment_' . $comment_post_ID) != $_POST['_wp_unfiltered_html_comment'] ) {
+ kses_remove_filters(); // start with a clean slate
+ kses_init_filters(); // set up the filters
+ }
+ }
+} else {
if ( get_option('comment_registration') )
die( __('Sorry, you must be logged in to post a comment.') );
-endif;
+}
$comment_type = '';
Index: branches/2.0/wp-includes/default-filters.php
===================================================================
--- branches/2.0/wp-includes/default-filters.php (revision 5038)
+++ branches/2.0/wp-includes/default-filters.php (working copy)
@@ -33,6 +33,8 @@
add_filter('pre_comment_author_email', 'wp_filter_kses');
add_filter('pre_comment_author_url', 'wp_filter_kses');
+add_action('comment_form', 'wp_comment_form_unfiltered_html_nonce');
+
// Default filters for these functions
add_filter('comment_author', 'wptexturize');
add_filter('comment_author', 'convert_chars');
Index: branches/2.0/wp-includes/functions.php
===================================================================
--- branches/2.0/wp-includes/functions.php (revision 5038)
+++ branches/2.0/wp-includes/functions.php (working copy)
@@ -2372,9 +2372,11 @@
return wp_specialchars(add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl));
}
-function wp_nonce_field($action = -1) {
- echo '';
- wp_referer_field();
+function wp_nonce_field($action = -1, $name = "_wpnonce", $referer = true) {
+ $name = attribute_escape($name);
+ echo '';
+ if ( $referer )
+ wp_referer_field();
}
function wp_referer_field() {
Index: branches/2.0/wp-includes/comment-functions.php
===================================================================
--- branches/2.0/wp-includes/comment-functions.php (revision 5038)
+++ branches/2.0/wp-includes/comment-functions.php (working copy)
@@ -2,6 +2,12 @@
// Template functions
+function wp_comment_form_unfiltered_html_nonce() {
+ global $post;
+ if ( current_user_can('unfiltered_html') )
+ wp_nonce_field('unfiltered-html-comment_' . $post->ID, '_wp_unfiltered_html_comment', false);
+}
+
function comments_template( $file = '/comments.php' ) {
global $wp_query, $withcomments, $post, $wpdb, $id, $comment, $user_login, $user_ID, $user_identity;
Index: branches/2.1/wp-comments-post.php
===================================================================
--- branches/2.1/wp-comments-post.php (revision 5038)
+++ branches/2.1/wp-comments-post.php (working copy)
@@ -25,14 +25,20 @@
// If the user is logged in
$user = wp_get_current_user();
-if ( $user->ID ) :
+if ( $user->ID ) {
$comment_author = $wpdb->escape($user->display_name);
$comment_author_email = $wpdb->escape($user->user_email);
$comment_author_url = $wpdb->escape($user->user_url);
-else :
+ if ( current_user_can('unfiltered_html') ) {
+ if ( wp_create_nonce('unfiltered-html-comment_' . $comment_post_ID) != $_POST['_wp_unfiltered_html_comment'] ) {
+ kses_remove_filters(); // start with a clean slate
+ kses_init_filters(); // set up the filters
+ }
+ }
+} else {
if ( get_option('comment_registration') )
wp_die( __('Sorry, you must be logged in to post a comment.') );
-endif;
+}
$comment_type = '';
Index: branches/2.1/wp-includes/default-filters.php
===================================================================
--- branches/2.1/wp-includes/default-filters.php (revision 5038)
+++ branches/2.1/wp-includes/default-filters.php (working copy)
@@ -31,6 +31,8 @@
add_filter('pre_comment_author_email', 'wp_filter_kses');
add_filter('pre_comment_author_url', 'wp_filter_kses');
+add_action('comment_form', 'wp_comment_form_unfiltered_html_nonce');
+
// Default filters for these functions
add_filter('comment_author', 'wptexturize');
add_filter('comment_author', 'convert_chars');
Index: branches/2.1/wp-includes/functions.php
===================================================================
--- branches/2.1/wp-includes/functions.php (revision 5038)
+++ branches/2.1/wp-includes/functions.php (working copy)
@@ -920,9 +920,11 @@
return wp_specialchars(add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl));
}
-function wp_nonce_field($action = -1) {
- echo '';
- wp_referer_field();
+function wp_nonce_field($action = -1, $name = "_wpnonce", $referer = true) {
+ $name = attribute_escape($name);
+ echo '';
+ if ( $referer )
+ wp_referer_field();
}
function wp_referer_field() {
Index: branches/2.1/wp-includes/comment-template.php
===================================================================
--- branches/2.1/wp-includes/comment-template.php (revision 5038)
+++ branches/2.1/wp-includes/comment-template.php (working copy)
@@ -271,6 +271,12 @@
return false;
}
+function wp_comment_form_unfiltered_html_nonce() {
+ global $post;
+ if ( current_user_can('unfiltered_html') )
+ wp_nonce_field('unfiltered-html-comment_' . $post->ID, '_wp_unfiltered_html_comment', false);
+}
+
function comments_template( $file = '/comments.php' ) {
global $wp_query, $withcomments, $post, $wpdb, $id, $comment, $user_login, $user_ID, $user_identity;