Index: wp-login.php =================================================================== --- wp-login.php (revision 8972) +++ wp-login.php (working copy) @@ -272,7 +272,7 @@ switch ($action) { case 'logout' : - + check_admin_referer('log-out'); wp_logout(); $redirect_to = 'wp-login.php?loggedout=true'; Index: wp-includes/functions.php =================================================================== --- wp-includes/functions.php (revision 8972) +++ wp-includes/functions.php (working copy) @@ -2201,6 +2201,8 @@ $trans['edit']['theme'] = array( __( 'Your attempt to edit this theme file: "%s" has failed.' ), 'use_id' ); $trans['switch']['theme'] = array( __( 'Your attempt to switch to this theme: "%s" has failed.' ), 'use_id' ); + $trans['log']['out'] = array( sprintf( __( 'You are attempting to log out of %s' ), get_bloginfo( 'sitename' ) ), false ); + if ( isset( $trans[$verb][$noun] ) ) { if ( !empty( $trans[$verb][$noun][1] ) ) { $lookup = $trans[$verb][$noun][1]; @@ -2234,6 +2236,9 @@ $html = wp_specialchars( wp_explain_nonce( $action ) ); if ( wp_get_referer() ) $html .= "

" . __( 'Please try again.' ) . ""; + elseif ( 'log-out' == $action ) + $html .= "

" . sprintf( __( "Do you really want to log out?"), wp_nonce_url( site_url('wp-login.php?action=logout', 'login'), 'log-out' ) ); + wp_die( $html, $title); } Index: wp-includes/general-template.php =================================================================== --- wp-includes/general-template.php (revision 8972) +++ wp-includes/general-template.php (working copy) @@ -104,14 +104,49 @@ */ function wp_loginout() { if ( ! is_user_logged_in() ) - $link = '' . __('Log in') . ''; + $link = '' . __('Log in') . ''; else - $link = '' . __('Log out') . ''; + $link = '' . __('Log out') . ''; echo apply_filters('loginout', $link); } /** + * Returns the Log Out URL. + * + * Returns the URL that allows the user to log out of the site + * + * @since 2.7 + * @uses wp_nonce_url() To protect against CSRF + * @uses site_url() To generate the log in URL + * + * @param string $redirect Path to redirect to on logout. + */ +function wp_logout_url($redirect = '') { + if ( strlen($redirect) ) + $redirect = "&redirect_to=$redirect"; + + return wp_nonce_url( site_url("wp-login.php?action=logout$redirect", 'login'), 'log-out' ); +} + +/** + * Returns the Log In URL. + * + * Returns the URL that allows the user to log in to the site + * + * @since 2.7 + * @uses site_url() To generate the log in URL + * + * @param string $redirect Path to redirect to on login. + */ +function wp_login_url($redirect = '') { + if ( strlen($redirect) ) + $redirect = "?redirect_to=$redirect"; + + return site_url("wp-login.php$redirect", 'login'); +} + +/** * Display the Registration or Admin link. * * Display a link which allows the user to navigate to the registration page if Index: wp-content/themes/classic/comments.php =================================================================== --- wp-content/themes/classic/comments.php (revision 8972) +++ wp-content/themes/classic/comments.php (working copy) @@ -43,7 +43,7 @@ -

'.$user_identity.''); ?>

+

'.$user_identity.''); ?>

Index: wp-content/themes/classic/comments-popup.php =================================================================== --- wp-content/themes/classic/comments-popup.php (revision 8972) +++ wp-content/themes/classic/comments-popup.php (working copy) @@ -57,7 +57,7 @@
-

'.$user_identity.''); ?>

+

'.$user_identity.''); ?>

Index: wp-content/themes/default/comments.php =================================================================== --- wp-content/themes/default/comments.php (revision 8972) +++ wp-content/themes/default/comments.php (working copy) @@ -52,7 +52,7 @@ -

Logged in as . Log out »

+

Logged in as . Log out »

Index: wp-content/themes/default/comments-popup.php =================================================================== --- wp-content/themes/default/comments-popup.php (revision 8972) +++ wp-content/themes/default/comments-popup.php (working copy) @@ -57,7 +57,7 @@ -

Logged in as . Log out »

+

Logged in as . Log out »

Index: wp-admin/admin-header.php =================================================================== --- wp-admin/admin-header.php (revision 8972) +++ wp-admin/admin-header.php (working copy) @@ -143,7 +143,7 @@ -

%2$s!'), 'profile.php', $user_identity) ?> | | Help') ?> | Forums'); if ( ! $is_opera ) { ?> |

+

%2$s!'), 'profile.php', $user_identity) ?> | | Help') ?> | Forums'); if ( ! $is_opera ) { ?> |