Index: wp-includes/link-template.php
===================================================================
--- wp-includes/link-template.php (revision 15532)
+++ wp-includes/link-template.php (working copy)
@@ -875,15 +875,9 @@
*/
function get_edit_comment_link( $comment_id = 0 ) {
$comment = &get_comment( $comment_id );
- $post = &get_post( $comment->comment_post_ID );
- if ( $post->post_type == 'page' ) {
- if ( !current_user_can( 'edit_page', $post->ID ) )
- return;
- } else {
- if ( !current_user_can( 'edit_post', $post->ID ) )
- return;
- }
+ if ( !current_user_can( 'edit_comment', $comment->comment_ID ) )
+ return;
$location = admin_url('comment.php?action=editcomment&c=') . $comment->comment_ID;
return apply_filters( 'get_edit_comment_link', $location );
@@ -900,15 +894,10 @@
* @return string|null HTML content, if $echo is set to false.
*/
function edit_comment_link( $link = null, $before = '', $after = '' ) {
- global $comment, $post;
+ global $comment;
- if ( $post->post_type == 'page' ) {
- if ( !current_user_can( 'edit_page', $post->ID ) )
- return;
- } else {
- if ( !current_user_can( 'edit_post', $post->ID ) )
- return;
- }
+ if ( !current_user_can( 'edit_comment', $comment->comment_ID ) )
+ return;
if ( null === $link )
$link = __('Edit This');
Index: wp-includes/capabilities.php
===================================================================
--- wp-includes/capabilities.php (revision 15532)
+++ wp-includes/capabilities.php (working copy)
@@ -898,6 +898,7 @@
$author_data = get_userdata( $user_id );
//echo "post ID: {$args[0]}
";
$post = get_post( $args[0] );
+
$post_type = get_post_type_object( $post->post_type );
if ( $post_type && 'post' != $post_type->capability_type ) {
$args = array_merge( array( $post_type->cap->edit_post, $user_id ), $args );
@@ -990,6 +991,13 @@
else
$caps[] = 'read_private_pages';
break;
+ case 'edit_comment':
+ $comment = get_comment( $args[0] );
+ $post = get_post( $comment->comment_post_ID );
+ $post_type_object = get_post_type_object( $post->post_type );
+
+ $caps = map_meta_cap( $post_type_object->cap->edit_post, $user_id, $post->ID );
+ break;
case 'unfiltered_upload':
if ( defined('ALLOW_UNFILTERED_UPLOADS') && ALLOW_UNFILTERED_UPLOADS && ( !is_multisite() || is_super_admin( $user_id ) ) )
$caps[] = $cap;
Index: wp-admin/includes/default-list-tables.php
===================================================================
--- wp-admin/includes/default-list-tables.php (revision 15532)
+++ wp-admin/includes/default-list-tables.php (working copy)
@@ -2134,8 +2134,7 @@
$comment = get_comment( $comment_id );
$post = get_post( $comment->comment_post_ID );
$the_comment_status = wp_get_comment_status( $comment->comment_ID );
- $post_type_object = get_post_type_object( $post->post_type );
- $user_can = current_user_can( $post_type_object->cap->edit_post, $post->ID );
+ $user_can = current_user_can( 'edit_comment', $comment_id );
$comment_url = esc_url( get_comment_link( $comment->comment_ID ) );
$author_url = get_comment_author_url();
@@ -2155,7 +2154,7 @@
$del_nonce = esc_html( '_wpnonce=' . wp_create_nonce( "delete-comment_$comment->comment_ID" ) );
$approve_nonce = esc_html( '_wpnonce=' . wp_create_nonce( "approve-comment_$comment->comment_ID" ) );
- $url = "comment.php?post_ID=$post->ID&c=$comment->comment_ID";
+ $url = "comment.php?c=$comment->comment_ID";
$approve_url = esc_url( $url . "&action=approvecomment&$approve_nonce" );
$unapprove_url = esc_url( $url . "&action=unapprovecomment&$approve_nonce" );
Index: wp-admin/includes/dashboard.php
===================================================================
--- wp-admin/includes/dashboard.php (revision 15532)
+++ wp-admin/includes/dashboard.php (working copy)
@@ -586,7 +586,7 @@
$comment_link = '';
$actions_string = '';
- if ( current_user_can('edit_post', $comment->comment_post_ID) ) {
+ if ( current_user_can( 'edit_comment', $comment->comment_ID ) ) {
// preorder it: Approve | Reply | Edit | Spam | Trash
$actions = array(
'approve' => '', 'unapprove' => '',
Index: wp-admin/comment.php
===================================================================
--- wp-admin/comment.php (revision 15532)
+++ wp-admin/comment.php (working copy)
@@ -60,8 +60,8 @@
if ( !$comment = get_comment( $comment_id ) )
comment_footer_die( __('Oops, no comment with this ID.') . sprintf(' '.__('Go back').'!', 'javascript:history.go(-1)') );
- if ( !current_user_can('edit_post', $comment->comment_post_ID) )
- comment_footer_die( __('You are not allowed to edit comments on this post.') );
+ if ( !current_user_can( 'edit_comment', $comment_id ) )
+ comment_footer_die( __('You are not allowed to edit this comment.') );
if ( 'trash' == $comment->comment_approved )
comment_footer_die( __('This comment is in the Trash. Please move it out of the Trash if you want to edit it.') );
@@ -84,7 +84,7 @@
die();
}
- if ( !current_user_can( 'edit_post', $comment->comment_post_ID ) ) {
+ if ( !current_user_can( 'edit_comment', $comment->comment_ID ) ) {
wp_redirect( admin_url('edit-comments.php?error=2') );
die();
}
@@ -184,7 +184,6 @@
-
@@ -212,7 +211,7 @@
if ( !$comment = get_comment($comment_id) )
comment_footer_die( __('Oops, no comment with this ID.') . sprintf(' '.__('Go back').'!', 'edit-comments.php') );
- if ( !current_user_can('edit_post', $comment->comment_post_ID ) )
+ if ( !current_user_can( 'edit_comment', $comment->comment_ID ) )
comment_footer_die( __('You are not allowed to edit comments on this post.') );
if ( '' != wp_get_referer() && ! $noredir && false === strpos(wp_get_referer(), 'comment.php') )