Changeset 41913 for trunk/src/wp-admin/includes/ajax-actions.php
- Timestamp:
- 10/18/2017 05:39:46 PM (7 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/src/wp-admin/includes/ajax-actions.php
r41895 r41913 3006 3006 global $post, $wp_embed; 3007 3007 3008 if ( ! $post = get_post( (int) $_POST['post_ID'] ) ) { 3009 wp_send_json_error(); 3010 } 3011 3012 if ( empty( $_POST['shortcode'] ) || ! current_user_can( 'edit_post', $post->ID ) ) { 3008 if ( empty( $_POST['shortcode'] ) ) { 3009 wp_send_json_error(); 3010 } 3011 $post_id = isset( $_POST[ 'post_ID' ] ) ? intval( $_POST[ 'post_ID' ] ) : 0; 3012 if ( $post_id > 0 ) { 3013 $post = get_post( $post_id ); 3014 if ( ! $post || ! current_user_can( 'edit_post', $post->ID ) ) { 3015 wp_send_json_error(); 3016 } 3017 setup_postdata( $post ); 3018 } elseif ( ! current_user_can( 'edit_posts' ) ) { // See WP_oEmbed_Controller::get_proxy_item_permissions_check(). 3013 3019 wp_send_json_error(); 3014 3020 } … … 3027 3033 3028 3034 $parsed = false; 3029 setup_postdata( $post );3030 3031 3035 $wp_embed->return_false_on_fail = true; 3032 3036
Note: See TracChangeset
for help on using the changeset viewer.