WordPress.org
Get WordPress

Make WordPress Core


Ignore:
Timestamp:
01/09/2015 09:06:13 PM (11 years ago)
Author:
wonderboymusic
Message:

In Custom_Background and Custom_Header:

  • In ->init(), don't check current_user_can() since add_theme_page() will return false immediately if the cap check fails.
  • Bail if add_theme_page() returns false
  • wp_check_filetype_and_ext() doesn't need a 3rd param, it already defaults to null. Passing false would fail a strict check.

See #30799.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/src/wp-admin/custom-header.php

    r31034 r31116  
    144144     */
    145145    public function init() {
    146         if ( ! current_user_can('edit_theme_options') )
     146        $page = add_theme_page( __( 'Header' ), __( 'Header' ), 'edit_theme_options', 'custom-header', array( $this, 'admin_page' ) );
     147        if ( ! $page ) {
    147148            return;
    148 
    149         $this->page = $page = add_theme_page(__('Header'), __('Header'), 'edit_theme_options', 'custom-header', array($this, 'admin_page'));
    150 
    151         add_action("admin_print_scripts-$page", array($this, 'js_includes'));
    152         add_action("admin_print_styles-$page", array($this, 'css_includes'));
    153         add_action("admin_head-$page", array($this, 'help') );
    154         add_action("admin_head-$page", array($this, 'take_action'), 50);
    155         add_action("admin_head-$page", array($this, 'js'), 50);
    156         if ( $this->admin_header_callback )
    157             add_action("admin_head-$page", $this->admin_header_callback, 51);
    158 
     149        }
     150
     151        $this->page = $page;
     152
     153        add_action( "admin_print_scripts-$page", array( $this, 'js_includes' ) );
     154        add_action( "admin_print_styles-$page", array( $this, 'css_includes' ) );
     155        add_action( "admin_head-$page", array( $this, 'help' ) );
     156        add_action( "admin_head-$page", array( $this, 'take_action' ), 50 );
     157        add_action( "admin_head-$page", array( $this, 'js' ), 50 );
     158        if ( $this->admin_header_callback ) {
     159            add_action( "admin_head-$page", $this->admin_header_callback, 51 );
     160        }
    159161    }
    160162
     
    863865
    864866        $uploaded_file = $_FILES['import'];
    865         $wp_filetype = wp_check_filetype_and_ext( $uploaded_file['tmp_name'], $uploaded_file['name'], false );
     867        $wp_filetype = wp_check_filetype_and_ext( $uploaded_file['tmp_name'], $uploaded_file['name'] );
    866868        if ( ! wp_match_mime_types( 'image', $wp_filetype['type'] ) )
    867869            wp_die( __( 'The uploaded file is not a valid image. Please try again.' ) );
Note: See TracChangeset for help on using the changeset viewer.