Ticket #3628: 3628.diff
File 3628.diff, 1.5 KB (added by , 17 years ago) |
---|
-
functions.php
823 823 return wp_specialchars(add_query_arg('_wpnonce', wp_create_nonce($action), $actionurl)); 824 824 } 825 825 826 function wp_nonce_field($action = -1, $name = "_wpnonce", $referer = true ) {826 function wp_nonce_field($action = -1, $name = "_wpnonce", $referer = true, $echo = true) { 827 827 $name = attribute_escape($name); 828 echo '<input type="hidden" name="' . $name . '" value="' . wp_create_nonce($action) . '" />'; 828 $nonce_field = '<input type="hidden" name="' . $name . '" value="' . wp_create_nonce($action) . '" />'; 829 if ( $echo ) 830 echo $nonce_field; 831 829 832 if ( $referer ) 830 wp_referer_field(); 833 wp_referer_field($echo); 834 835 return $nonce_field; 831 836 } 832 837 833 function wp_referer_field( ) {838 function wp_referer_field( $echo = true ) { 834 839 $ref = attribute_escape($_SERVER['REQUEST_URI']); 835 echo'<input type="hidden" name="_wp_http_referer" value="'. $ref . '" />';840 $referer_field = '<input type="hidden" name="_wp_http_referer" value="'. $ref . '" />'; 836 841 if ( wp_get_original_referer() ) { 837 842 $original_ref = attribute_escape(stripslashes(wp_get_original_referer())); 838 echo'<input type="hidden" name="_wp_original_http_referer" value="'. $original_ref . '" />';843 $referer_field .= '<input type="hidden" name="_wp_original_http_referer" value="'. $original_ref . '" />'; 839 844 } 845 846 if ( $echo ) 847 echo $referer_field; 848 return $referer_field; 840 849 } 841 850 842 851 function wp_original_referer_field() {