Changeset 17277

Timestamp:

01/13/2011 12:50:35 AM (12 years ago)

Author:

nacin

Message:

Revert [17275] and [17276]. The rabbit hole is too deep. see #16166.

Location:

trunk/wp-admin

Files:

• edit.php (modified) (1 diff)
• includes/class-wp-posts-list-table.php (modified) (1 diff)
• users.php (modified) (16 diffs)

trunk/wp-admin/edit.php

@@ -39 +39 @@
 
 if ( $doaction ) {
-    $wp_list_table->do_bulk_actions( $doaction );
+    check_admin_referer('bulk-posts');
+
+    $sendback = remove_query_arg( array('trashed', 'untrashed', 'deleted', 'ids'), wp_get_referer() );
+    $sendback = $wp_list_table->add_query_args( $sendback );
+    if ( strpos($sendback, 'post.php') !== false )
+        $sendback = admin_url($post_new_file);
+
+    if ( 'delete_all' == $doaction ) {
+        $post_status = preg_replace('/[^a-z0-9_-]+/i', '', $_REQUEST['post_status']);
+        if ( get_post_status_object($post_status) ) // Check the post status exists first
+            $post_ids = $wpdb->get_col( $wpdb->prepare( "SELECT ID FROM $wpdb->posts WHERE post_type=%s AND post_status = %s", $post_type, $post_status ) );
+        $doaction = 'delete';
+    } elseif ( isset( $_REQUEST['media'] ) ) {
+        $post_ids = $_REQUEST['media'];
+    } elseif ( isset( $_REQUEST['ids'] ) ) {
+        $post_ids = explode( ',', $_REQUEST['ids'] );
+    } elseif ( !empty( $_REQUEST['post'] ) ) {
+        $post_ids = array_map('intval', $_REQUEST['post']);
+    }
+
+    if ( !isset( $post_ids ) ) {
+        wp_redirect( admin_url("edit.php?post_type=$post_type") );
+        exit;
+    }
+
+    switch ( $doaction ) {
+        case 'trash':
+            $trashed = 0;
+            foreach( (array) $post_ids as $post_id ) {
+                if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
+                    wp_die( __('You are not allowed to move this item to the Trash.') );
+
+                if ( !wp_trash_post($post_id) )
+                    wp_die( __('Error in moving to Trash.') );
+
+                $trashed++;
+            }
+            $sendback = add_query_arg( array('trashed' => $trashed, 'ids' => join(',', $post_ids) ), $sendback );
+            break;
+        case 'untrash':
+            $untrashed = 0;
+            foreach( (array) $post_ids as $post_id ) {
+                if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
+                    wp_die( __('You are not allowed to restore this item from the Trash.') );
+
+                if ( !wp_untrash_post($post_id) )
+                    wp_die( __('Error in restoring from Trash.') );
+
+                $untrashed++;
+            }
+            $sendback = add_query_arg('untrashed', $untrashed, $sendback);
+            break;
+        case 'delete':
+            $deleted = 0;
+            foreach( (array) $post_ids as $post_id ) {
+                $post_del = & get_post($post_id);
+
+                if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
+                    wp_die( __('You are not allowed to delete this item.') );
+
+                if ( $post_del->post_type == 'attachment' ) {
+                    if ( ! wp_delete_attachment($post_id) )
+                        wp_die( __('Error in deleting...') );
+                } else {
+                    if ( !wp_delete_post($post_id) )
+                        wp_die( __('Error in deleting...') );
+                }
+                $deleted++;
+            }
+            $sendback = add_query_arg('deleted', $deleted, $sendback);
+            break;
+        case 'edit':
+            $done = bulk_edit_posts($_REQUEST);
+
+            if ( is_array($done) ) {
+                $done['updated'] = count( $done['updated'] );
+                $done['skipped'] = count( $done['skipped'] );
+                $done['locked'] = count( $done['locked'] );
+                $sendback = add_query_arg( $done, $sendback );
+            }
+            break;
+    }
+
+    $sendback = remove_query_arg( array('action', 'action2', 'tags_input', 'post_author', 'comment_status', 'ping_status', '_status',  'post', 'bulk_edit', 'post_view'), $sendback );
+
+    wp_redirect($sendback);
+    exit();
 } elseif ( ! empty($_REQUEST['_wp_http_referer']) ) {
      wp_redirect( remove_query_arg( array('_wp_http_referer', '_wpnonce'), stripslashes($_SERVER['REQUEST_URI']) ) );

trunk/wp-admin/includes/class-wp-posts-list-table.php

@@ -1014 +1014 @@
 <?php
     }
-
-    function do_bulk_actions( $doaction = null ) {
-        if ( null === $doaction )
-            $doaction = $this->current_action();
-
-        if ( ! $doaction )
-            return;
-
-        check_admin_referer('bulk-posts');
-
-        $sendback = remove_query_arg( array('trashed', 'untrashed', 'deleted', 'ids'), wp_get_referer() );
-        if ( strpos($sendback, 'post.php') !== false )
-            $sendback = admin_url($post_new_file);
-
-        if ( 'delete_all' == $doaction ) {
-            $post_status = preg_replace('/[^a-z0-9_-]+/i', '', $_REQUEST['post_status']);
-            if ( get_post_status_object($post_status) ) // Check the post status exists first
-                $post_ids = $wpdb->get_col( $wpdb->prepare( "SELECT ID FROM $wpdb->posts WHERE post_type=%s AND post_status = %s", $post_type, $post_status ) );
-            $doaction = 'delete';
-        } elseif ( isset( $_REQUEST['media'] ) ) {
-            $post_ids = $_REQUEST['media'];
-        } elseif ( isset( $_REQUEST['ids'] ) ) {
-            $post_ids = explode( ',', $_REQUEST['ids'] );
-        } elseif ( !empty( $_REQUEST['post'] ) ) {
-            $post_ids = array_map('intval', $_REQUEST['post']);
-        }
-
-        if ( !isset( $post_ids ) ) {
-            wp_redirect( admin_url("edit.php?post_type=$post_type") );
-            exit;
-        }
-
-        switch ( $doaction ) {
-            case 'trash':
-                $trashed = 0;
-                foreach( (array) $post_ids as $post_id ) {
-                    if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
-                        wp_die( __('You are not allowed to move this item to the Trash.') );
-
-                    if ( !wp_trash_post($post_id) )
-                        wp_die( __('Error in moving to Trash.') );
-
-                    $trashed++;
-                }
-                $sendback = add_query_arg( array('trashed' => $trashed, 'ids' => join(',', $post_ids) ), $sendback );
-                break;
-            case 'untrash':
-                $untrashed = 0;
-                foreach( (array) $post_ids as $post_id ) {
-                    if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
-                        wp_die( __('You are not allowed to restore this item from the Trash.') );
-
-                    if ( !wp_untrash_post($post_id) )
-                        wp_die( __('Error in restoring from Trash.') );
-
-                    $untrashed++;
-                }
-                $sendback = add_query_arg('untrashed', $untrashed, $sendback);
-                break;
-            case 'delete':
-                $deleted = 0;
-                foreach( (array) $post_ids as $post_id ) {
-                    $post_del = & get_post($post_id);
-
-                    if ( !current_user_can($post_type_object->cap->delete_post, $post_id) )
-                        wp_die( __('You are not allowed to delete this item.') );
-
-                    if ( $post_del->post_type == 'attachment' ) {
-                        if ( ! wp_delete_attachment($post_id) )
-                            wp_die( __('Error in deleting...') );
-                    } else {
-                        if ( !wp_delete_post($post_id) )
-                            wp_die( __('Error in deleting...') );
-                    }
-                    $deleted++;
-                }
-                $sendback = add_query_arg('deleted', $deleted, $sendback);
-                break;
-            case 'edit':
-                $done = bulk_edit_posts($_REQUEST);
-
-                if ( is_array($done) ) {
-                    $done['updated'] = count( $done['updated'] );
-                    $done['skipped'] = count( $done['skipped'] );
-                    $done['locked'] = count( $done['locked'] );
-                    $sendback = add_query_arg( $done, $sendback );
-                }
-                break;
-            default :
-                $sendback = apply_filters( "bulk_actions-posts-$doaction", $sendback, $doaction );
-                break;
-        }
-
-        $sendback = remove_query_arg( array( 'action', 'action2', 'tags_input', 'post_author', 'comment_status', 'ping_status', '_status',  'post', 'bulk_edit', 'post_view' ), $sendback );
-        $sendback = $this->add_query_args( $sendback );
-        wp_redirect( $sendback );
-        exit();
-    }
-
 }
 

trunk/wp-admin/users.php

@@ -43 +43 @@
 $update = '';
 
-if ( $doaction = $wp_list_table->current_action() ) {
-
-switch ( $doaction ) {
+switch ( $wp_list_table->current_action() ) {
 
 /* Bulk Dropdown menu Role changes */
@@ -51 +49 @@
     check_admin_referer('bulk-users');
 
-    if ( empty($_REQUEST['users']) )
-        break;
+    if ( empty($_REQUEST['users']) ) {
+        wp_redirect($redirect);
+        exit();
+    }
 
     $editable_roles = get_editable_roles();
@@ -66 +66 @@
             wp_die(__('You can’t edit that user.'));
         // The new role of the current user must also have promote_users caps
-        if ( $id == $current_user->ID && ! current_user_can('promote_users') ) {
+        if ( $id == $current_user->ID && !$wp_roles->role_objects[$_REQUEST['new_role']]->has_cap('promote_users') ) {
             $update = 'err_admin_role';
             continue;
@@ -79 +79 @@
     }
 
-    $redirect = add_query_arg( 'update', $update, $redirect );
+    wp_redirect(add_query_arg('update', $update, $redirect));
+    exit();
 
 break;
@@ -89 +90 @@
     check_admin_referer('delete-users');
 
-    if ( empty($_REQUEST['users']) )
-        break;
+    if ( empty($_REQUEST['users']) ) {
+        wp_redirect($redirect);
+        exit();
+    }
 
     if ( ! current_user_can( 'delete_users' ) )
@@ -123 +126 @@
 
     $redirect = add_query_arg( array('delete_count' => $delete_count, 'update' => $update), $redirect);
+    wp_redirect($redirect);
+    exit();
 
 break;
@@ -132 +137 @@
     check_admin_referer('bulk-users');
 
-    if ( empty($_REQUEST['users']) && empty($_REQUEST['user']) )
-        break;
+    if ( empty($_REQUEST['users']) && empty($_REQUEST['user']) ) {
+        wp_redirect($redirect);
+        exit();
+    }
 
     if ( ! current_user_can( 'delete_users' ) )
@@ -142 +149 @@
     else
         $userids = $_REQUEST['users'];
-
-    $redirect = false;
 
     include ('admin-header.php');
@@ -187 +192 @@
 </form>
 <?php
-include('./admin-footer.php');
 
 break;
@@ -194 +198 @@
     check_admin_referer('remove-users');
 
-    if ( empty($_REQUEST['users']) )
-        break;
+    if ( empty($_REQUEST['users']) ) {
+        wp_redirect($redirect);
+        exit;
+    }
 
     if ( !current_user_can('remove_users')  )
@@ -217 +223 @@
 
     $redirect = add_query_arg( array('update' => $update), $redirect);
+    wp_redirect($redirect);
+    exit;
 
 break;
@@ -224 +232 @@
     check_admin_referer('bulk-users');
 
-    if ( empty($_REQUEST['users']) && empty($_REQUEST['user']) )
-        break;
+    if ( empty($_REQUEST['users']) && empty($_REQUEST['user']) ) {
+        wp_redirect($redirect);
+        exit();
+    }
 
     if ( !current_user_can('remove_users') )
@@ -234 +244 @@
     else
         $userids = $_REQUEST['users'];
-
-    $redirect = false;
 
     include ('admin-header.php');
@@ -272 +280 @@
 </form>
 <?php
-include('./admin-footer.php');
 
 break;
@@ -278 +285 @@
 default:
 
-} // end of the $doaction switch
-
-    if ( $redirect )
-        wp_redirect( $redirect );
-    exit();
-
-} // end of the $doaction if
-elseif ( !empty($_GET['_wp_http_referer']) ) {
+    if ( !empty($_GET['_wp_http_referer']) ) {
         wp_redirect(remove_query_arg(array('_wp_http_referer', '_wpnonce'), stripslashes($_SERVER['REQUEST_URI'])));
         exit;
-}
+    }
 
     $wp_list_table->prepare_items();
@@ -379 +379 @@
 </div>
 <?php
+break;
+
+} // end of the $doaction switch
 
 include('./admin-footer.php');