Changeset 1810

Timestamp:

10/18/2004 04:50:08 AM (20 years ago)

Author:

rboren

Message:

Do not stomp permalink setting. Bug 372.

Location:

trunk/wp-admin

Files:

• admin-functions.php (modified) (1 diff)
• admin-header.php (modified) (3 diffs)
• auth.php (modified) (1 diff)
• menu.php (modified) (3 diffs)
• options-discussion.php (modified) (1 diff)
• options-general.php (modified) (1 diff)
• options-head.php (modified) (1 diff)
• options-misc.php (modified) (1 diff)
• options-permalink.php (modified) (2 diffs)
• options-reading.php (modified) (1 diff)
• options-writing.php (modified) (1 diff)

trunk/wp-admin/admin-functions.php

@@ -623 +623 @@
 }
 
+function user_can_access_admin_page() {
+    global $parent_file;
+    global $pagenow;
+    global $menu;
+    global $submenu;
+    global $user_level;
+
+    if (! isset($parent_file)) {
+        $parent = $pagenow;
+    } else {
+        $parent = $parent_file;
+    }
+
+    foreach ($menu as $menu_array) {
+        //echo "parent array: " . $menu_array[2];
+        if ($menu_array[2] == $parent) {
+            if ($user_level < $menu_array[1]) {
+                return false;
+            } else {
+                break;
+            }
+        }
+    }
+
+    if (isset($submenu[$parent])) {
+        foreach ($submenu[$parent] as $submenu_array) {
+            if ($submenu_array[2] == $pagenow) {
+                if ($user_level < $submenu_array[1]) {
+                    return false;
+                } else {
+                    return true;
+                }
+            }
+        }
+    }
+    
+    return true;
+}
+
+function add_options_menu($title, $access_level, $file) {
+    global $submenu;
+    
+    $submenu['options-general.php'][] = array($title, $access_level, $file);
+}
+
 ?>

trunk/wp-admin/admin-header.php

@@ -1 +1 @@
 <?php
 
-require_once('../wp-config.php');
+if (strstr($_SERVER['PHP_SELF'], 'plugins/')) {
+    $wp_admin_path = '../../wp-admin/';
+    $wp_path = '../../';
+} else {
+    $wp_admin_path = './';
+    $wp_path = '../';
+}
+
+require_once($wp_path . 'wp-config.php');
+
 require_once(ABSPATH . '/wp-admin/auth.php');
 require(ABSPATH . '/wp-admin/admin-functions.php');
@@ -39 +48 @@
 <head>
 <title><?php bloginfo('name') ?> &rsaquo; <?php echo $title; ?> &#8212; WordPress</title>
-<link rel="stylesheet" href="wp-admin.css" type="text/css" />
-<link rel="shortcut icon" href="../wp-images/wp-favicon.png" />
+<link rel="stylesheet" href="<?php echo $wp_admin_path; ?>wp-admin.css" type="text/css" />
+<link rel="shortcut icon" href="<?php echo $wp_path; ?>wp-images/wp-favicon.png" />
 <meta http-equiv="Content-Type" content="text/html; charset=<?php echo get_settings('blog_charset'); ?>" />
 
@@ -111 +120 @@
 
 <?php
-require('./menu.php');
+require(ABSPATH . '/wp-admin/menu.php');
 endif;
 ?>

trunk/wp-admin/auth.php

@@ -1 +1 @@
 <?php
-require_once('../wp-config.php');
+require_once(ABSPATH . '/wp-config.php');
 
 if ( (!empty($_COOKIE['wordpressuser_' . COOKIEHASH]) && !wp_login($_COOKIE['wordpressuser_' . COOKIEHASH], $_COOKIE['wordpresspass_' . COOKIEHASH], true))

trunk/wp-admin/menu.php

@@ -44 +44 @@
 $submenu['themes.php'][15] = array(__('Other Files'), 5, 'templates.php');
 
-$self = preg_replace('|.*/wp-admin/|i', '', $_SERVER['PHP_SELF']);
+do_action('admin_menu', '');
+
+if (! user_can_access_admin_page()) {
+    die( __('You have do not have sufficient permissions to access this page.') );
+}
+
+$self = preg_replace('|^.*/wp-admin/|i', '', $_SERVER['PHP_SELF']);
+$self = preg_replace('|^.*/plugins/|i', '', $self);
+
 if (!isset($parent_file)) $parent_file = '';
 foreach ($menu as $item) {
@@ -58 +66 @@
 ($user_level >= get_settings('fileupload_minlevel'))
              ) || 'upload.php' != $item[2])
-            echo "\n\t<li><a href='{$item[2]}'$class>{$item[0]}</a></li>";
+                    echo "\n\t<li><a href='" . get_settings('siteurl') . "/wp-admin/{$item[2]}'$class>{$item[0]}</a></li>";
     }
 }
@@ -74 +82 @@
 <?php 
 foreach ($submenu["$parent_file"] as $item) : 
+     if ($user_level < $item[1]) {
+         continue;
+     }
+
     if ( substr($self, -10) == substr($item[2], -10) ) $class = ' class="current"';
     else $class = '';
-    echo "\n\t<li><a href='{$item[2]}'$class>{$item[0]}</a></li>";
+    echo "\n\t<li><a href='" . get_settings('siteurl') . "/wp-admin/{$item[2]}'$class>{$item[0]}</a></li>";
 endforeach;
 ?>

trunk/wp-admin/options-discussion.php

@@ -3 +3 @@
 
 $title = __('Discussion Options');
-$parent_file = 'options-general.php';
-
-function add_magic_quotes($array) {
-    foreach ($array as $k => $v) {
-        if (is_array($v)) {
-            $array[$k] = add_magic_quotes($v);
-        } else {
-            $array[$k] = addslashes($v);
-        }
-    }
-    return $array;
-}
-
-if (!get_magic_quotes_gpc()) {
-    $_GET    = add_magic_quotes($_GET);
-    $_POST   = add_magic_quotes($_POST);
-    $_COOKIE = add_magic_quotes($_COOKIE);
-}
-
-$wpvarstoreset = array('action','standalone', 'option_group_id');
-for ($i=0; $i<count($wpvarstoreset); $i += 1) {
-    $wpvar = $wpvarstoreset[$i];
-    if (!isset($$wpvar)) {
-        if (empty($_POST["$wpvar"])) {
-            if (empty($_GET["$wpvar"])) {
-                $$wpvar = '';
-            } else {
-                $$wpvar = $_GET["$wpvar"];
-            }
-        } else {
-            $$wpvar = $_POST["$wpvar"];
-        }
-    }
-}
-
-$standalone = 0;
-include_once('admin-header.php');
 include('options-head.php');
 

trunk/wp-admin/options-general.php

@@ -3 +3 @@
 
 $title = __('General Options');
-$parent_file = 'options-general.php';
 
-function add_magic_quotes($array) {
-    foreach ($array as $k => $v) {
-        if (is_array($v)) {
-            $array[$k] = add_magic_quotes($v);
-        } else {
-            $array[$k] = addslashes($v);
-        }
-    }
-    return $array;
-}
-
-if (!get_magic_quotes_gpc()) {
-    $_GET    = add_magic_quotes($_GET);
-    $_POST   = add_magic_quotes($_POST);
-    $_COOKIE = add_magic_quotes($_COOKIE);
-}
-
-$wpvarstoreset = array('action','standalone', 'option_group_id');
-for ($i=0; $i<count($wpvarstoreset); $i += 1) {
-    $wpvar = $wpvarstoreset[$i];
-    if (!isset($$wpvar)) {
-        if (empty($_POST["$wpvar"])) {
-            if (empty($_GET["$wpvar"])) {
-                $$wpvar = '';
-            } else {
-                $$wpvar = $_GET["$wpvar"];
-            }
-        } else {
-            $$wpvar = $_POST["$wpvar"];
-        }
-    }
-}
-
-
-$standalone = 0;
-include_once('admin-header.php');
 include('options-head.php');
 ?>

trunk/wp-admin/options-head.php

@@ -1 +1 @@
 <?php
 
-if ($user_level <= 6) {
-    die( __('You have do not have sufficient permissions to edit the options for this blog.') );
+$parent_file = 'options-general.php';
+
+function add_magic_quotes($array) {
+    foreach ($array as $k => $v) {
+        if (is_array($v)) {
+            $array[$k] = add_magic_quotes($v);
+        } else {
+            $array[$k] = addslashes($v);
+        }
+    }
+    return $array;
 }
+
+if (!get_magic_quotes_gpc()) {
+    $_GET    = add_magic_quotes($_GET);
+    $_POST   = add_magic_quotes($_POST);
+    $_COOKIE = add_magic_quotes($_COOKIE);
+}
+
+$wpvarstoreset = array('action','standalone', 'option_group_id');
+for ($i=0; $i<count($wpvarstoreset); $i += 1) {
+    $wpvar = $wpvarstoreset[$i];
+    if (!isset($$wpvar)) {
+        if (empty($_POST["$wpvar"])) {
+            if (empty($_GET["$wpvar"])) {
+                $$wpvar = '';
+            } else {
+                $$wpvar = $_GET["$wpvar"];
+            }
+        } else {
+            $$wpvar = $_POST["$wpvar"];
+        }
+    }
+}
+
+$standalone = 0;
+include_once('admin-header.php');
 ?>
 

trunk/wp-admin/options-misc.php

@@ -3 +3 @@
 
 $title = __('Miscellaneous Options');
-$parent_file = 'options-general.php';
-
-function add_magic_quotes($array) {
-    foreach ($array as $k => $v) {
-        if (is_array($v)) {
-            $array[$k] = add_magic_quotes($v);
-        } else {
-            $array[$k] = addslashes($v);
-        }
-    }
-    return $array;
-}
-
-if (!get_magic_quotes_gpc()) {
-    $_GET    = add_magic_quotes($_GET);
-    $_POST   = add_magic_quotes($_POST);
-    $_COOKIE = add_magic_quotes($_COOKIE);
-}
-
-$wpvarstoreset = array('action','standalone');
-for ($i=0; $i<count($wpvarstoreset); $i += 1) {
-    $wpvar = $wpvarstoreset[$i];
-    if (!isset($$wpvar)) {
-        if (empty($_POST["$wpvar"])) {
-            if (empty($_GET["$wpvar"])) {
-                $$wpvar = '';
-            } else {
-                $$wpvar = $_GET["$wpvar"];
-            }
-        } else {
-            $$wpvar = $_POST["$wpvar"];
-        }
-    }
-}
-
-
-$standalone = 0;
-include_once('admin-header.php');
 include('options-head.php');
 ?>

trunk/wp-admin/options-permalink.php

@@ -7 +7 @@
 require_once('./admin-header.php');
 if ($user_level <= 8)
-    die(__('You have do not have sufficient permissions to edit the options for this blog.'));
+    die(__('You have do not have sufficient permissions to edit the options
+for this blog.'));
 
 require('./options-head.php');
@@ -22 +23 @@
 
 if ( isset($_POST) ) {
-    if ( $_POST['permalink_structure'] )
-        $permalink_structure = preg_replace('#/+#', '/', '/' . $_POST['permalink_structure']);
-    else
+    if ( isset($_POST['permalink_structure']) ) {
         $permalink_structure = $_POST['permalink_structure'];
+        if (! empty($permalink_structure) )
+            $permalink_structure = preg_replace('#/+#', '/', '/' . $_POST['permalink_structure']);
+        update_option('permalink_structure', $permalink_structure);
+    }
     
-    if ( $_POST['category_base'] )
-        $category_base = preg_replace('#/+#', '/', '/' . $_POST['category_base']);
-    else
+    if ( isset($_POST['category_base']) ) {
         $category_base = $_POST['category_base'];
+        if (! empty($category_base) )
+            $category_base = preg_replace('#/+#', '/', '/' . $_POST['category_base']);
+        update_option('category_base', $category_base);
+    }
+}
     
-    update_option('permalink_structure', $permalink_structure);
-    update_option('category_base', $category_base);
-}
-
 $permalink_structure = get_settings('permalink_structure');
 $category_base = get_settings('category_base');

trunk/wp-admin/options-reading.php

@@ -3 +3 @@
 
 $title = __('Reading Options');
-$parent_file = 'options-general.php';
-
-function add_magic_quotes($array) {
-    foreach ($array as $k => $v) {
-        if (is_array($v)) {
-            $array[$k] = add_magic_quotes($v);
-        } else {
-            $array[$k] = addslashes($v);
-        }
-    }
-    return $array;
-}
-
-if (!get_magic_quotes_gpc()) {
-    $_GET    = add_magic_quotes($_GET);
-    $_POST   = add_magic_quotes($_POST);
-    $_COOKIE = add_magic_quotes($_COOKIE);
-}
-
-$wpvarstoreset = array('action','standalone', 'option_group_id');
-for ($i=0; $i<count($wpvarstoreset); $i += 1) {
-    $wpvar = $wpvarstoreset[$i];
-    if (!isset($$wpvar)) {
-        if (empty($_POST["$wpvar"])) {
-            if (empty($_GET["$wpvar"])) {
-                $$wpvar = '';
-            } else {
-                $$wpvar = $_GET["$wpvar"];
-            }
-        } else {
-            $$wpvar = $_POST["$wpvar"];
-        }
-    }
-}
-
-$standalone = 0;
-include_once('admin-header.php');
 include('options-head.php');
 ?>

trunk/wp-admin/options-writing.php

@@ -3 +3 @@
 
 $title = __('Writing Options');
-$parent_file = 'options-general.php';
-
-$standalone = 0;
-include_once('./admin-header.php');
 include('./options-head.php');
 ?>