diff --git a/wp-includes/revision.php b/wp-includes/revision.php
index 9d3ca6f42401..b32163877b6e 100644
|
a
|
b
|
function _set_preview( $post ) { |
| 722 | 722 | * @access private |
| 723 | 723 | */ |
| 724 | 724 | function _show_post_preview() { |
| | 725 | |
| 725 | 726 | if ( isset( $_GET['preview_id'] ) && isset( $_GET['preview_nonce'] ) ) { |
| | 727 | |
| | 728 | if ( ! is_user_logged_in() ) { |
| | 729 | wp_die( __( 'Sorry, you are not allowed to preview drafts. Unauthorized request.' ), 401 ); |
| | 730 | } |
| | 731 | |
| 726 | 732 | $id = (int) $_GET['preview_id']; |
| 727 | 733 | |
| 728 | 734 | if ( false === wp_verify_nonce( $_GET['preview_nonce'], 'post_preview_' . $id ) ) { |
| 729 | | wp_die( __( 'Sorry, you are not allowed to preview drafts. |
| | 735 | wp_die( __( 'Sorry, you are not allowed to preview drafts. Nonce is invalid.' ), 403 ); |
| 730 | 736 | } |
| 731 | 737 | |
| 732 | 738 | add_filter( 'the_preview', '_set_preview' ); |
| | 739 | |
| 733 | 740 | } |
| | 741 | |
| 734 | 742 | } |
| 735 | 743 | |
| 736 | 744 | /** |