2004-05-23 06:02:53 +02:00
< ? php
# fix for mozBlog and other cases where '<?xml' isn't on the very first line
$HTTP_RAW_POST_DATA = trim ( $HTTP_RAW_POST_DATA );
include ( '../wp-config.php' );
include_once ( ABSPATH . WPINC . '/class-IXR.php' );
2004-08-26 17:42:43 +02:00
include_once ( ABSPATH . WPINC . '/functions-post.php' );
2004-05-23 06:02:53 +02:00
// Turn off all warnings and errors.
// error_reporting(0);
$post_default_title = " " ; // posts submitted via the xmlrpc interface get that title
$post_default_category = 1 ; // posts submitted via the xmlrpc interface go into that category
2004-09-14 19:20:22 +02:00
$xmlrpc_logging = 0 ;
2004-05-23 06:02:53 +02:00
function logIO ( $io , $msg ) {
global $xmlrpc_logging ;
if ( $xmlrpc_logging ) {
$fp = fopen ( " ../xmlrpc.log " , " a+ " );
$date = gmdate ( " Y-m-d H:i:s " );
$iot = ( $io == " I " ) ? " Input: " : " Output: " ;
fwrite ( $fp , " \n \n " . $date . $iot . $msg );
fclose ( $fp );
}
return true ;
}
function starify ( $string ) {
$i = strlen ( $string );
return str_repeat ( '*' , $i );
}
logIO ( " I " , $HTTP_RAW_POST_DATA );
2004-09-01 18:13:35 +02:00
2004-08-27 10:46:24 +02:00
function printr ( $var , $do_not_echo = false ) {
// from php.net/print_r user contributed notes
ob_start ();
print_r ( $var );
$code = htmlentities ( ob_get_contents ());
ob_clean ();
if ( ! $do_not_echo ) {
echo " <pre> $code </pre> " ;
}
return $code ;
2004-08-26 17:42:43 +02:00
}
2004-05-23 06:02:53 +02:00
2004-09-01 18:13:35 +02:00
function mkdir_p ( $target ) {
// from php.net/mkdir user contributed notes
if ( file_exists ( $target )) {
if ( ! is_dir ( $target )) {
return false ;
} else {
return true ;
}
}
// Attempting to create the directory may clutter up our display.
if ( @ mkdir ( $target )) {
return true ;
}
// If the above failed, attempt to create the parent node, then try again.
if ( mkdir_p ( dirname ( $target ))) {
return mkdir_p ( $target );
}
return false ;
}
2004-05-23 06:02:53 +02:00
class wp_xmlrpc_server extends IXR_Server {
function wp_xmlrpc_server () {
2004-09-16 16:54:25 +02:00
$this -> methods = array (
2004-09-16 15:26:06 +02:00
// Blogger API
2004-05-23 06:02:53 +02:00
'blogger.getUsersBlogs' => 'this:blogger_getUsersBlogs' ,
'blogger.getUserInfo' => 'this:blogger_getUserInfo' ,
'blogger.getPost' => 'this:blogger_getPost' ,
'blogger.getRecentPosts' => 'this:blogger_getRecentPosts' ,
2004-05-23 17:46:43 +02:00
'blogger.getTemplate' => 'this:blogger_getTemplate' ,
'blogger.setTemplate' => 'this:blogger_setTemplate' ,
2004-05-23 18:42:23 +02:00
'blogger.newPost' => 'this:blogger_newPost' ,
2004-08-25 17:24:09 +02:00
'blogger.editPost' => 'this:blogger_editPost' ,
'blogger.deletePost' => 'this:blogger_deletePost' ,
2004-05-23 18:42:23 +02:00
2004-09-16 16:54:25 +02:00
// MetaWeblog API (with MT extensions to structs)
2004-08-25 18:28:20 +02:00
'metaWeblog.newPost' => 'this:mw_newPost' ,
'metaWeblog.editPost' => 'this:mw_editPost' ,
'metaWeblog.getPost' => 'this:mw_getPost' ,
2004-08-26 17:42:43 +02:00
'metaWeblog.getRecentPosts' => 'this:mw_getRecentPosts' ,
'metaWeblog.getCategories' => 'this:mw_getCategories' ,
2004-08-27 10:46:24 +02:00
'metaWeblog.newMediaObject' => 'this:mw_newMediaObject' ,
2004-08-25 18:28:20 +02:00
2004-09-16 15:26:06 +02:00
// MetaWeblog API aliases for Blogger API
// see http://www.xmlrpc.com/stories/storyReader$2460
'metaWeblog.deletePost' => 'this:blogger_deletePost' ,
'metaWeblog.getTemplate' => 'this:blogger_getTemplate' ,
'metaWeblog.setTemplate' => 'this:blogger_setTemplate' ,
'metaWeblog.getUsersBlogs' => 'this:blogger_getUsersBlogs' ,
2004-09-16 16:54:25 +02:00
// MovableType API
'mt.getCategoryList' => 'this:mt_getCategoryList' ,
'mt.getRecentPostTitles' => 'this:mt_getRecentPostTitles' ,
'mt.getPostCategories' => 'this:mt_getPostCategories' ,
'mt.setPostCategories' => 'this:mt_setPostCategories' ,
'mt.supportedMethods' => 'this:mt_supportedMethods' ,
'mt.supportedTextFilters' => 'this:mt_supportedTextFilters' ,
'mt.getTrackbackPings' => 'this:mt_getTrackbackPings' ,
'mt.publishPost' => 'this:mt_publishPost' ,
2004-09-16 15:26:06 +02:00
// PingBack
'pingback.ping' => 'this:pingback_ping' ,
2004-05-23 06:02:53 +02:00
'demo.sayHello' => 'this:sayHello' ,
'demo.addTwoNumbers' => 'this:addTwoNumbers'
2004-09-16 16:54:25 +02:00
);
$this -> IXR_Server ( $this -> methods );
2004-05-23 06:02:53 +02:00
}
function sayHello ( $args ) {
return 'Hello!' ;
}
function addTwoNumbers ( $args ) {
$number1 = $args [ 0 ];
$number2 = $args [ 1 ];
return $number1 + $number2 ;
}
function login_pass_ok ( $user_login , $user_pass ) {
if ( ! user_pass_ok ( $user_login , $user_pass )) {
2004-09-01 18:13:35 +02:00
$this -> error = new IXR_Error ( 403 , 'Bad login/pass combination.' );
2004-05-23 06:02:53 +02:00
return false ;
}
return true ;
}
/* Blogger API functions
* specs on http :// plant . blogger . com / api and http :// groups . yahoo . com / group / bloggerDev /
*/
/* blogger.getUsersBlogs will make more sense once we support multiple blogs */
function blogger_getUsersBlogs ( $args ) {
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
$is_admin = $user_data -> user_level > 3 ;
$struct = array (
'isAdmin' => $is_admin ,
'url' => get_settings ( 'home' ) . '/' . get_settings ( 'blogfilename' ),
2004-09-14 18:52:13 +02:00
'blogid' => '1' ,
2004-05-23 06:02:53 +02:00
'blogName' => get_settings ( 'blogname' )
);
return array ( $struct );
}
/* blogger.getUsersInfo gives your client some info about you, so you don't have to */
function blogger_getUserInfo ( $args ) {
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
$struct = array (
'nickname' => $user_data -> user_nickname ,
'userid' => $user_data -> ID ,
'url' => $user_data -> user_url ,
'email' => $user_data -> user_email ,
'lastname' => $user_data -> user_lastname ,
'firstname' => $user_data -> user_firstname
);
return $struct ;
}
/* blogger.getPost ...gets a post */
function blogger_getPost ( $args ) {
$post_ID = $args [ 1 ];
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
2004-08-26 17:42:43 +02:00
$post_data = wp_get_single_post ( $post_ID , ARRAY_A );
2004-05-23 06:02:53 +02:00
$categories = implode ( ',' , wp_get_post_cats ( 1 , $post_ID ));
2004-08-26 17:42:43 +02:00
$content = '<title>' . stripslashes ( $post_data [ 'post_title' ]) . '</title>' ;
2004-05-23 06:02:53 +02:00
$content .= '<category>' . $categories . '</category>' ;
2004-08-26 17:42:43 +02:00
$content .= stripslashes ( $post_data [ 'post_content' ]);
2004-08-25 17:24:09 +02:00
2004-05-23 06:02:53 +02:00
$struct = array (
2004-08-26 17:42:43 +02:00
'userid' => $post_data [ 'post_author' ],
2004-08-27 10:46:24 +02:00
'dateCreated' => new IXR_Date ( mysql2date ( 'Ymd\TH:i:s' , $post_data [ 'post_date' ])),
2004-05-23 06:02:53 +02:00
'content' => $content ,
'postid' => $post_data [ 'ID' ]
);
2004-08-25 17:24:09 +02:00
2004-05-23 06:02:53 +02:00
return $struct ;
}
/* blogger.getRecentPosts ...gets recent posts */
function blogger_getRecentPosts ( $args ) {
2004-05-24 10:22:18 +02:00
global $wpdb ;
2004-05-23 06:02:53 +02:00
$blog_ID = $args [ 1 ]; /* though we don't use it yet */
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$num_posts = $args [ 4 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
2004-08-26 17:42:43 +02:00
$posts_list = wp_get_recent_posts ( $num_posts );
2004-05-23 06:02:53 +02:00
2004-08-26 17:42:43 +02:00
if ( ! $posts_list ) {
2004-05-23 06:02:53 +02:00
$this -> error = new IXR_Error ( 500 , 'Either there are no posts, or something went wrong.' );
return $this -> error ;
}
2004-08-26 17:42:43 +02:00
foreach ( $posts_list as $entry ) {
2004-08-27 10:46:24 +02:00
$post_date = mysql2date ( 'Ymd\TH:i:s' , $entry [ 'post_date' ]);
2004-08-26 17:42:43 +02:00
$categories = implode ( ',' , wp_get_post_cats ( 1 , $entry [ 'ID' ]));
2004-05-23 06:02:53 +02:00
2004-08-26 17:42:43 +02:00
$content = '<title>' . stripslashes ( $entry [ 'post_itle' ]) . '</title>' ;
2004-05-23 06:02:53 +02:00
$content .= '<category>' . $categories . '</category>' ;
2004-08-26 17:42:43 +02:00
$content .= stripslashes ( $entry [ 'post_content' ]);
2004-05-23 06:02:53 +02:00
2004-08-26 17:42:43 +02:00
$struct [] = array (
'userid' => $entry [ 'post_author' ],
'dateCreated' => new IXR_Date ( $post_date ),
2004-05-23 06:02:53 +02:00
'content' => $content ,
2004-08-26 17:42:43 +02:00
'postid' => $entry [ 'ID' ],
2004-05-23 06:02:53 +02:00
);
}
$recent_posts = array ();
for ( $j = 0 ; $j < count ( $struct ); $j ++ ) {
array_push ( $recent_posts , $struct [ $j ]);
}
return $recent_posts ;
}
2004-05-23 17:46:43 +02:00
/* blogger.getTemplate returns your blog_filename */
function blogger_getTemplate ( $args ) {
$blog_ID = $args [ 1 ];
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$template = $args [ 4 ]; /* could be 'main' or 'archiveIndex', but we don't use it */
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( $user_data -> user_level < 3 ) {
return new IXR_Error ( 401 , 'Sorry, users whose level is less than 3, can not edit the template.' );
}
/* warning: here we make the assumption that the weblog's URI is on the same server */
$filename = get_settings ( 'home' ) . '/' . get_settings ( 'blogfilename' );
$filename = preg_replace ( '#http://.+?/#' , $_SERVER [ 'DOCUMENT_ROOT' ] . '/' , $filename );
2004-08-25 17:24:09 +02:00
2004-05-23 17:46:43 +02:00
$f = fopen ( $filename , 'r' );
$content = fread ( $f , filesize ( $filename ));
fclose ( $f );
/* so it is actually editable with a windows/mac client */
2004-08-26 17:42:43 +02:00
// FIXME: (or delete me) do we really want to cater to bad clients at the expense of good ones by BEEPing up their line breaks? commented. $content = str_replace("\n", "\r\n", $content);
2004-05-23 17:46:43 +02:00
return $content ;
}
/* blogger.setTemplate updates the content of blog_filename */
function blogger_setTemplate ( $args ) {
$blog_ID = $args [ 1 ];
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$content = $args [ 4 ];
$template = $args [ 5 ]; /* could be 'main' or 'archiveIndex', but we don't use it */
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( $user_data -> user_level < 3 ) {
return new IXR_Error ( 401 , 'Sorry, users whose level is less than 3, can not edit the template.' );
}
/* warning: here we make the assumption that the weblog's URI is on the same server */
$filename = get_settings ( 'home' ) . '/' . get_settings ( 'blogfilename' );
$filename = preg_replace ( '#http://.+?/#' , $_SERVER [ 'DOCUMENT_ROOT' ] . '/' , $filename );
2004-08-25 17:24:09 +02:00
2004-05-23 17:46:43 +02:00
if ( $f = fopen ( $filename , 'w+' )) {
fwrite ( $f , $content );
fclose ( $f );
} else {
return new IXR_Error ( 500 , 'Either the file is not writable, or something wrong happened. The file has not been updated.' );
}
return true ;
}
2004-05-23 18:42:23 +02:00
/* blogger.newPost ...creates a new post */
function blogger_newPost ( $args ) {
2004-05-24 10:22:18 +02:00
global $wpdb ;
2004-05-23 18:42:23 +02:00
$blog_ID = $args [ 1 ]; /* though we don't use it yet */
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$content = $args [ 4 ];
$publish = $args [ 5 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
2004-08-25 18:28:20 +02:00
if ( ! user_can_create_post ( $user_data -> ID , $blog_ID )) {
return new IXR_Error ( 401 , 'Sorry, you can not post on this weblog or category.' );
2004-05-23 18:42:23 +02:00
}
$post_status = ( $publish ) ? 'publish' : 'draft' ;
$post_author = $user_data -> ID ;
2004-08-25 17:24:09 +02:00
$post_title = xmlrpc_getposttitle ( $content );
2004-05-23 18:42:23 +02:00
$post_category = xmlrpc_getpostcategory ( $content );
$content = xmlrpc_removepostdata ( $content );
$post_content = format_to_post ( $content );
$post_date = current_time ( 'mysql' );
$post_date_gmt = current_time ( 'mysql' , 1 );
$post_data = compact ( 'blog_ID' , 'post_author' , 'post_date' , 'post_date_gmt' , 'post_content' , 'post_title' , 'post_category' , 'post_status' );
$post_ID = wp_insert_post ( $post_data );
if ( ! $post_ID ) {
return new IXR_Error ( 500 , 'Sorry, your entry could not be posted. Something wrong happened.' );
}
logIO ( 'O' , " Posted ! ID: $post_ID " );
return $post_ID ;
}
2004-08-25 17:24:09 +02:00
/* blogger.editPost ...edits a post */
function blogger_editPost ( $args ) {
global $wpdb ;
$post_ID = $args [ 1 ];
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$new_content = $args [ 4 ];
$publish = $args [ 5 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$actual_post = wp_get_single_post ( $post_ID , ARRAY_A );
if ( ! $actual_post ) {
return new IXR_Error ( 404 , 'Sorry, no such post.' );
}
$post_author_data = get_userdata ( $actual_post [ 'post_author' ]);
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_edit_post ( $user_data -> ID , $post_ID )) {
return new IXR_Error ( 401 , 'Sorry, you do not have the right to edit this post.' );
}
extract ( $actual_post );
$content = $newcontent ;
$post_title = xmlrpc_getposttitle ( $content );
$post_category = xmlrpc_getpostcategory ( $content );
$content = xmlrpc_removepostdata ( $content );
$post_content = format_to_post ( $content );
$postdata = compact ( 'ID' , 'post_content' , 'post_title' , 'post_category' , 'post_status' , 'post_excerpt' );
$result = wp_update_post ( $postdata );
if ( ! $result ) {
return new IXR_Error ( 500 , 'For some strange yet very annoying reason, this post could not be edited.' );
}
return true ;
}
/* blogger.deletePost ...deletes a post */
function blogger_deletePost ( $args ) {
global $wpdb ;
$post_ID = $args [ 1 ];
$user_login = $args [ 2 ];
$user_pass = $args [ 3 ];
$publish = $args [ 4 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$actual_post = wp_get_single_post ( $post_ID , ARRAY_A );
if ( ! $actual_post ) {
return new IXR_Error ( 404 , 'Sorry, no such post.' );
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_delete_post ( $user_data -> ID , $post_ID )) {
return new IXR_Error ( 401 , 'Sorry, you do not have the right to delete this post.' );
}
$result = wp_delete_post ( $post_ID );
if ( ! $result ) {
return new IXR_Error ( 500 , 'For some strange yet very annoying reason, this post could not be deleted.' );
}
return true ;
}
2004-08-25 18:28:20 +02:00
/* MetaWeblog API functions
* specs on wherever Dave Winer wants them to be
*/
/* metaweblog.newPost creates a post */
function mw_newPost ( $args ) {
global $wpdb ;
$blog_ID = $args [ 0 ]; // we will support this in the near future
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
$content_struct = $args [ 3 ];
$publish = $args [ 4 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_create_post ( $user_data -> ID , $blog_ID )) {
return new IXR_Error ( 401 , 'Sorry, you can not post on this weblog or category.' );
}
2004-09-14 19:20:22 +02:00
$post_author = $user_data -> ID ;
2004-08-25 18:28:20 +02:00
$post_title = $content_struct [ 'title' ];
$post_content = format_to_post ( $content_struct [ 'description' ]);
$post_status = $publish ? 'publish' : 'draft' ;
$post_excerpt = $content_struct [ 'mt_excerpt' ];
$post_more = $content_struct [ 'mt_text_more' ];
2004-09-14 19:20:22 +02:00
$comment_status = ( empty ( $content_struct [ 'mt_allow_comments' ])) ?
get_settings ( 'default_comment_status' )
: $content_struct [ 'mt_allow_comments' ];
$ping_status = ( empty ( $content_struct [ 'mt_allow_pings' ])) ?
get_settings ( 'default_ping_status' )
: $content_struct [ 'mt_allow_pings' ];
2004-08-25 18:28:20 +02:00
if ( $post_more ) {
$post_content = $post_content . " \n <!--more--> \n " . $post_more ;
}
// Do some timestamp voodoo
2004-09-14 19:20:22 +02:00
$dateCreatedd = $content_struct [ 'dateCreated' ];
$dateCreated = $dateCreatedd -> getIso ();
2004-08-25 18:28:20 +02:00
if ( ! empty ( $dateCreated )) {
$post_date = get_date_from_gmt ( iso8601_to_datetime ( $dateCreated ));
$post_date_gmt = iso8601_to_datetime ( $dateCreated , GMT );
} else {
$post_date = current_time ( 'mysql' );
$post_date_gmt = current_time ( 'mysql' , 1 );
}
$catnames = $content_struct [ 'categories' ];
2004-08-27 10:46:24 +02:00
logio ( 'O' , 'Post cats: ' . printr ( $catnames , true ));
2004-08-25 18:28:20 +02:00
$post_category = array ();
if ( $catnames ) {
foreach ( $catnames as $cat ) {
$post_category [] = get_cat_ID ( $cat );
}
} else {
$post_category [] = 1 ;
}
// We've got all the data -- post it:
$postdata = compact ( 'post_author' , 'post_date' , 'post_date_gmt' , 'post_content' , 'post_title' , 'post_category' , 'post_status' , 'post_excerpt' , 'comment_status' , 'ping_status' );
$post_ID = wp_insert_post ( $postdata );
if ( ! $post_ID ) {
return new IXR_Error ( 500 , 'Sorry, your entry could not be posted. Something wrong happened.' );
}
logIO ( 'O' , " Posted ! ID: $post_ID " );
// FIXME: do we pingback always? pingback($content, $post_ID);
trackback_url_list ( $content_struct [ 'mt_tb_ping_urls' ], $post_ID );
2004-09-16 11:55:00 +02:00
return strval ( $post_ID );
2004-08-25 18:28:20 +02:00
}
/* metaweblog.editPost ...edits a post */
function mw_editPost ( $args ) {
global $wpdb ;
$post_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
$content_struct = $args [ 3 ];
$publish = $args [ 4 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_edit_post ( $user_data -> ID , $post_ID )) {
return new IXR_Error ( 401 , 'Sorry, you can not edit this post.' );
}
2004-09-16 11:55:00 +02:00
$postdata = wp_get_single_post ( $post_ID , ARRAY_A );
2004-08-25 18:28:20 +02:00
extract ( $postdata );
$post_title = $content_struct [ 'title' ];
$post_content = format_to_post ( $content_struct [ 'description' ]);
$catnames = $content_struct [ 'categories' ];
if ( $catnames ) {
foreach ( $catnames as $cat ) {
$post_category [] = get_cat_ID ( $cat );
}
}
$post_excerpt = $content_struct [ 'mt_excerpt' ];
$post_more = $content_struct [ 'mt_text_more' ];
$post_status = $publish ? 'publish' : 'draft' ;
if ( $post_more ) {
$post_content = $post_content . " \n <!--more--> \n " . $post_more ;
}
2004-09-14 19:20:22 +02:00
$comment_status = ( empty ( $content_struct [ 'mt_allow_comments' ])) ?
get_settings ( 'default_comment_status' )
: $content_struct [ 'mt_allow_comments' ];
$ping_status = ( empty ( $content_struct [ 'mt_allow_pings' ])) ?
get_settings ( 'default_ping_status' )
: $content_struct [ 'mt_allow_pings' ];
2004-08-25 18:28:20 +02:00
// Do some timestamp voodoo
$dateCreated = $content_struct [ 'dateCreated' ];
2004-09-14 19:20:22 +02:00
$dateCreated = $dateCreated -> getIso ();
2004-08-25 18:28:20 +02:00
if ( ! empty ( $dateCreated )) {
$post_date = get_date_from_gmt ( iso8601_to_datetime ( $dateCreated ));
$post_date_gmt = iso8601_to_datetime ( $dateCreated , GMT );
} else {
$post_date = $postdata [ 'post_date' ];
$post_date_gmt = $postdata [ 'post_date_gmt' ];
}
// We've got all the data -- post it:
$newpost = compact ( 'ID' , 'post_content' , 'post_title' , 'post_category' , 'post_status' , 'post_excerpt' , 'comment_status' , 'ping_status' , 'post_date' , 'post_date_gmt' );
$post_ID = wp_update_post ( $newpost );
if ( ! $post_ID ) {
return new IXR_Error ( 500 , 'Sorry, your entry could not be edited. Something wrong happened.' );
}
logIO ( 'O' , " (MW) Edited ! ID: $post_ID " );
// FIXME: do we pingback always? pingback($content, $post_ID);
trackback_url_list ( $content_struct [ 'mt_tb_ping_urls' ], $post_ID );
2004-09-16 11:55:00 +02:00
return true ;
2004-08-25 18:28:20 +02:00
}
/* metaweblog.getPost ...returns a post */
function mw_getPost ( $args ) {
global $wpdb ;
$post_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$postdata = wp_get_single_post ( $post_ID , ARRAY_A );
if ( $postdata [ 'post_date' ] != '' ) {
2004-08-27 10:46:24 +02:00
$post_date = mysql2date ( 'Ymd\TH:i:s' , $postdata [ 'post_date' ]);
2004-08-26 17:42:43 +02:00
$categories = array ();
2004-08-25 18:28:20 +02:00
$catids = wp_get_post_cats ( '' , $post_ID );
foreach ( $catids as $catid ) {
2004-08-26 17:42:43 +02:00
$categories [] = get_cat_name ( $catid );
2004-08-25 18:28:20 +02:00
}
2004-08-26 17:42:43 +02:00
2004-08-25 18:28:20 +02:00
$post = get_extended ( $postdata [ 'post_content' ]);
2004-09-16 11:55:00 +02:00
$link = post_permalink ( $postdata [ 'ID' ]);
2004-08-26 17:42:43 +02:00
2004-08-25 18:28:20 +02:00
$allow_comments = ( 'open' == $postdata [ 'comment_status' ]) ? 1 : 0 ;
$allow_pings = ( 'open' == $postdata [ 'ping_status' ]) ? 1 : 0 ;
$resp = array (
2004-09-14 18:52:13 +02:00
'dateCreated' => new IXR_Date ( $post_date ),
2004-09-16 11:55:00 +02:00
'userid' => $postdata [ 'post_author' ],
'postid' => $postdata [ 'ID' ],
2004-09-14 18:52:13 +02:00
'description' => $post [ 'main' ],
2004-09-16 11:55:00 +02:00
'title' => $postdata [ 'post_title' ],
2004-09-14 18:52:13 +02:00
'link' => $link ,
'permaLink' => $link ,
2004-09-16 16:54:25 +02:00
// commented out because no other tool seems to use this
2004-09-14 18:52:13 +02:00
// 'content' => $entry['post_content'],
2004-09-16 16:54:25 +02:00
'categories' => $categories ,
2004-09-16 11:55:00 +02:00
'mt_excerpt' => $postdata [ 'post_excerpt' ],
2004-09-14 18:52:13 +02:00
'mt_text_more' => $post [ 'extended' ],
'mt_allow_comments' => $allow_comments ,
'mt_allow_pings' => $allow_pings
2004-08-25 18:28:20 +02:00
);
return $resp ;
} else {
return new IXR_Error ( 404 , 'Sorry, no such post.' );
}
}
2004-08-26 17:42:43 +02:00
/* metaweblog.getRecentPosts ...returns recent posts */
function mw_getRecentPosts ( $args ) {
$blog_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
2004-09-14 18:52:13 +02:00
$num_posts = $args [ 3 ];
2004-08-26 17:42:43 +02:00
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$posts_list = wp_get_recent_posts ( $num_posts );
if ( ! $posts_list ) {
$this -> error = new IXR_Error ( 500 , 'Either there are no posts, or something went wrong.' );
return $this -> error ;
}
foreach ( $posts_list as $entry ) {
2004-08-27 10:46:24 +02:00
$post_date = mysql2date ( 'Ymd\TH:i:s' , $entry [ 'post_date' ]);
2004-08-26 17:42:43 +02:00
$categories = array ();
$catids = wp_get_post_cats ( '' , $entry [ 'ID' ]);
foreach ( $catids as $catid ) {
$categories [] = get_cat_name ( $catid );
}
$post = get_extended ( $entry [ 'post_content' ]);
$link = post_permalink ( $entry [ 'ID' ]);
$allow_comments = ( 'open' == $entry [ 'comment_status' ]) ? 1 : 0 ;
$allow_pings = ( 'open' == $entry [ 'ping_status' ]) ? 1 : 0 ;
$struct [] = array (
'dateCreated' => new IXR_Date ( $post_date ),
'userid' => $entry [ 'post_author' ],
'postid' => $entry [ 'ID' ],
2004-09-14 18:52:13 +02:00
'description' => $post [ 'main' ],
'title' => $entry [ 'post_title' ],
'link' => $link ,
'permaLink' => $link ,
2004-09-16 16:54:25 +02:00
// commented out because no other tool seems to use this
2004-09-14 18:52:13 +02:00
// 'content' => $entry['post_content'],
2004-09-16 16:54:25 +02:00
'categories' => $categories ,
2004-08-26 17:42:43 +02:00
'mt_excerpt' => $entry [ 'post_excerpt' ],
2004-09-14 18:52:13 +02:00
'mt_text_more' => $post [ 'extended' ],
2004-08-26 17:42:43 +02:00
'mt_allow_comments' => $allow_comments ,
2004-09-14 18:52:13 +02:00
'mt_allow_pings' => $allow_pings
2004-08-26 17:42:43 +02:00
);
}
$recent_posts = array ();
for ( $j = 0 ; $j < count ( $struct ); $j ++ ) {
array_push ( $recent_posts , $struct [ $j ]);
}
return $recent_posts ;
}
/* metaweblog.getCategories ...returns the list of categories on a given weblog */
function mw_getCategories ( $args ) {
global $wpdb ;
$blog_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$categories_struct = array ();
// FIXME: can we avoid using direct SQL there?
if ( $cats = $wpdb -> get_results ( " SELECT cat_ID,cat_name FROM $wpdb->categories " , ARRAY_A )) {
foreach ( $cats as $cat ) {
$struct [ 'categoryId' ] = $cat [ 'cat_ID' ];
$struct [ 'description' ] = $cat [ 'cat_name' ];
$struct [ 'categoryName' ] = $cat [ 'cat_name' ];
$struct [ 'htmlUrl' ] = htmlspecialchars ( get_category_link ( false , $cat [ 'cat_ID' ], $cat [ 'cat_name' ]));
$struct [ 'rssUrl' ] = htmlspecialchars ( get_category_rss_link ( false , $cat [ 'cat_ID' ], $cat [ 'cat_name' ]));
$categories_struct [] = $struct ;
}
}
return $categories_struct ;
}
2004-08-27 10:46:24 +02:00
/* metaweblog.newMediaObject uploads a file, following your settings */
function mw_newMediaObject ( $args ) {
// adapted from a patch by Johann Richard
// http://mycvs.org/archives/2004/06/30/file-upload-to-wordpress-in-ecto/
$blog_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
$data = $args [ 3 ];
$name = $data [ 'name' ];
$type = $data [ 'type' ];
$bits = $data [ 'bits' ];
$file_realpath = get_settings ( 'fileupload_realpath' );
$file_url = get_settings ( 'fileupload_url' );
2004-08-27 15:31:22 +02:00
logIO ( 'O' , '(MW) Received ' . strlen ( $bits ) . ' bytes' );
2004-08-27 10:46:24 +02:00
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! get_settings ( 'use_fileupload' )) {
// Uploads not allowed
logIO ( 'O' , '(MW) Uploads not allowed' );
$this -> error = new IXR_Error ( 405 , 'No uploads allowed for this site.' );
return $this -> error ;
}
2004-08-27 15:31:22 +02:00
if ( get_settings ( 'fileupload_minlevel' ) > $user_data -> user_level ) {
2004-08-27 10:46:24 +02:00
// User has not enough privileges
logIO ( 'O' , '(MW) Not enough privilege: user level too low' );
2004-09-01 18:13:35 +02:00
$this -> error = new IXR_Error ( 401 , 'You are not allowed to upload files to this site.' );
2004-08-27 10:46:24 +02:00
return $this -> error ;
}
if ( trim ( $file_realpath ) == '' || trim ( $file_url ) == '' ) {
// WordPress is not correctly configured
logIO ( 'O' , '(MW) Bad configuration. Real/URL path not defined' );
$this -> error = new IXR_Error ( 500 , 'Please configure WordPress with valid paths for file upload.' );
return $this -> error ;
}
$prefix = '/' ;
2004-08-27 15:31:22 +02:00
if ( ! empty ( $name )) {
2004-08-27 10:46:24 +02:00
// Create the path
$localpath = $file_realpath . $prefix . $name ;
$url = $file_url . $prefix . $name ;
2004-09-01 18:13:35 +02:00
if ( mkdir_p ( dirname ( $localpath ))) {
/* encode & write data (binary) */
$ifp = fopen ( $localpath , 'wb' );
$success = fwrite ( $ifp , $bits );
fclose ( $ifp );
@ chmod ( $localpath , 0666 );
if ( $success ) {
2004-09-16 11:55:00 +02:00
$resp = array ( 'url' => $url );
2004-09-01 18:13:35 +02:00
return $resp ;
} else {
logIO ( 'O' , '(MW) Could not write file ' . $name . ' to ' . $localpath );
return new IXR_Error ( 500 , 'Could not write file ' . $name );
}
2004-08-27 10:46:24 +02:00
} else {
2004-09-01 18:13:35 +02:00
return new IXR_Error ( 500 , 'Could not create directories for ' . $name );
2004-08-27 10:46:24 +02:00
}
}
}
2004-09-14 18:52:13 +02:00
/* MovableType API functions
* specs on http :// www . movabletype . org / docs / mtmanual_programmatic . html
*/
/* mt.getRecentPostTitles ...returns recent posts' titles */
function mt_getRecentPostTitles ( $args ) {
$blog_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
$num_posts = $args [ 3 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$posts_list = wp_get_recent_posts ( $num_posts );
if ( ! $posts_list ) {
$this -> error = new IXR_Error ( 500 , 'Either there are no posts, or something went wrong.' );
return $this -> error ;
}
foreach ( $posts_list as $entry ) {
$post_date = mysql2date ( 'Ymd\TH:i:s' , $entry [ 'post_date' ]);
$struct [] = array (
'dateCreated' => new IXR_Date ( $post_date ),
'userid' => $entry [ 'post_author' ],
'postid' => $entry [ 'ID' ],
'title' => $entry [ 'post_title' ],
);
}
$recent_posts = array ();
for ( $j = 0 ; $j < count ( $struct ); $j ++ ) {
array_push ( $recent_posts , $struct [ $j ]);
}
return $recent_posts ;
}
/* mt.getCategoryList ...returns the list of categories on a given weblog */
function mt_getCategoryList ( $args ) {
global $wpdb ;
$blog_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$categories_struct = array ();
// FIXME: can we avoid using direct SQL there?
if ( $cats = $wpdb -> get_results ( " SELECT cat_ID, cat_name FROM $wpdb->categories " , ARRAY_A )) {
foreach ( $cats as $cat ) {
$struct [ 'categoryId' ] = $cat [ 'cat_ID' ];
$struct [ 'categoryName' ] = $cat [ 'cat_name' ];
$categories_struct [] = $struct ;
}
}
return $categories_struct ;
}
2004-09-16 15:26:06 +02:00
2004-09-16 16:54:25 +02:00
/* mt.getPostCategories ...returns a post's categories */
function mt_getPostCategories ( $args ) {
$post_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$categories = array ();
$catids = wp_get_post_cats ( '' , intval ( $post_ID ));
// first listed category will be the primary category
$isPrimary = true ;
foreach ( $catids as $catid ) {
$categories [] = array (
'categoryName' => get_cat_name ( $catid ),
'categoryId' => $catid ,
'isPrimary' => $isPrimary
);
$isPrimary = false ;
}
return $categories ;
}
/* mt.setPostCategories ...sets a post's categories */
function mt_setPostCategories ( $args ) {
$post_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
$categories = $args [ 3 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_edit_post ( $user_data -> ID , $post_ID )) {
return new IXR_Error ( 401 , 'Sorry, you can not edit this post.' );
}
foreach ( $categories as $cat ) {
$catids [] = $cat [ 'categoryId' ];
}
wp_set_post_cats ( '' , $post_ID , $catids );
return true ;
}
/* mt.supportedMethods ...returns an array of methods supported by this server */
function mt_supportedMethods ( $args ) {
$supported_methods = array ();
foreach ( $this -> methods as $key => $value ) {
$supported_methods [] = $key ;
}
return $supported_methods ;
}
/* mt . supportedTextFilters ... returns an empty array because we don ' t
support per - post text filters yet */
function mt_supportedTextFilters ( $args ) {
return array ();
}
/* mt.getTrackbackPings ...returns trackbacks sent to a given post */
function mt_getTrackbackPings ( $args ) {
global $wpdb ;
$post_ID = intval ( $args [ 0 ]);
$actual_post = wp_get_single_post ( $post_ID , ARRAY_A );
if ( ! $actual_post ) {
return new IXR_Error ( 404 , 'Sorry, no such post.' );
}
$comments = $wpdb -> get_results ( " SELECT comment_author_url, comment_content, comment_author_IP, comment_type FROM $wpdb->comments WHERE comment_post_ID = $post_ID " );
if ( ! $comments ) {
return array ();
}
$trackback_pings = array ();
foreach ( $comments as $comment ) {
if (( strpos ( $comment -> comment_content , '<trackback />' ) === 0 )
|| ( 'trackback' == $comment -> comment_type )) {
// FIXME: would be nicer to have a comment_title field?
// FIXME: assumption: here we make the assumption that trackback
// titles are stored as <strong>title</strong>
$content = str_replace ( '<trackback />' , '' , $comment -> comment_content );
$title = substr ( $content , 8 , ( strpos ( $content , '</strong>' ) - 8 ));
$trackback_pings [] = array (
'pingTitle' => $title ,
'pingURL' => $comment -> comment_author_url ,
'pingIP' => $comment -> comment_author_IP
);
}
}
return $trackback_pings ;
}
/* mt.publishPost ...sets a post's publish status to 'publish' */
function mt_publishPost ( $args ) {
$post_ID = $args [ 0 ];
$user_login = $args [ 1 ];
$user_pass = $args [ 2 ];
if ( ! $this -> login_pass_ok ( $user_login , $user_pass )) {
return $this -> error ;
}
$user_data = get_userdatabylogin ( $user_login );
if ( ! user_can_edit_post ( $user_data -> ID , $post_ID )) {
return new IXR_Error ( 401 , 'Sorry, you can not edit this post.' );
}
$postdata = wp_get_single_post ( $post_ID , ARRAY_A );
$postdata [ 'post_status' ] = 'publish' ;
// retain old cats
$cats = wp_get_post_cats ( '' , $post_ID );
$postdata [ 'post_category' ] = $cats ;
$result = wp_update_post ( $postdata );
return $result ;
}
2004-09-16 15:26:06 +02:00
/* PingBack functions
* specs on www . hixie . ch / specs / pingback / pingback
*/
/* pingback.ping gets a pingback and registers it */
function pingback_ping ( $args ) {
// original code by Mort (http://mort.mine.nu:8080 -- site seems dead)
// refactored to return error codes and avoid deep ifififif headaches
global $wpdb , $wp_version ;
$pagelinkedfrom = $args [ 0 ];
$pagelinkedto = $args [ 1 ];
$title = '' ;
$pagelinkedfrom = str_replace ( '&' , '&' , $pagelinkedfrom );
$pagelinkedto = preg_replace ( '#&([^amp\;])#is' , '&$1' , $pagelinkedto );
$error_code = - 1 ;
// Check if the page linked to is in our site
$pos1 = strpos ( $pagelinkedto , str_replace ( 'http://' , '' , str_replace ( 'www.' , '' , get_settings ( 'home' ))));
if ( ! $pos1 ) {
return '0' ;
}
// let's find which post is linked to
$urltest = parse_url ( $pagelinkedto );
if ( $post_ID = url_to_postid ( $pagelinkedto )) {
$way = 'url_to_postid()' ;
} elseif ( preg_match ( '#p/[0-9]{1,}#' , $urltest [ 'path' ], $match )) {
// the path defines the post_ID (archives/p/XXXX)
$blah = explode ( '/' , $match [ 0 ]);
$post_ID = $blah [ 1 ];
$way = 'from the path' ;
} elseif ( preg_match ( '#p=[0-9]{1,}#' , $urltest [ 'query' ], $match )) {
// the querystring defines the post_ID (?p=XXXX)
$blah = explode ( '=' , $match [ 0 ]);
$post_ID = $blah [ 1 ];
$way = 'from the querystring' ;
} elseif ( isset ( $urltest [ 'fragment' ])) {
// an #anchor is there, it's either...
if ( intval ( $urltest [ 'fragment' ])) {
// ...an integer #XXXX (simpliest case)
$post_ID = $urltest [ 'fragment' ];
$way = 'from the fragment (numeric)' ;
} elseif ( preg_match ( '/post-[0-9]+/' , $urltest [ 'fragment' ])) {
// ...a post id in the form 'post-###'
$post_ID = preg_replace ( '/[^0-9]+/' , '' , $urltest [ 'fragment' ]);
$way = 'from the fragment (post-###)' ;
} elseif ( is_string ( $urltest [ 'fragment' ])) {
// ...or a string #title, a little more complicated
$title = preg_replace ( '/[^a-zA-Z0-9]/' , '.' , $urltest [ 'fragment' ]);
$sql = " SELECT ID FROM $wpdb->posts WHERE post_title RLIKE ' $title ' " ;
if ( ! ( $post_ID = $wpdb -> get_var ( $sql )) ) {
// returning unknown error '0' is better than die()ing
return '0' ;
}
$way = 'from the fragment (title)' ;
}
} else {
// TODO: Attempt to extract a post ID from the given URL
return '0x0021' ;
}
logIO ( " O " , " (PB) URI=' $pagelinkedto ' ID=' $post_ID ' Found=' $way ' " );
$sql = 'SELECT post_author FROM ' . $wpdb -> posts . ' WHERE ID = ' . $post_ID ;
$result = $wpdb -> get_results ( $sql );
if ( ! $wpdb -> num_rows ) {
// Post_ID not found
return '0x0021' ;
}
// Let's check that the remote site didn't already pingback this entry
$sql = 'SELECT * FROM ' . $wpdb -> comments . '
WHERE comment_post_ID = '.$post_ID.'
AND comment_author_url = \ '' . $pagelinkedfrom . ' \ '
AND comment_type = \ 'pingback\'' ;
$result = $wpdb -> get_results ( $sql );
//return($sql);
if ( $wpdb -> num_rows ) {
// We already have a Pingback from this URL
return '0x0030' ;
}
// very stupid, but gives time to the 'from' server to publish !
sleep ( 1 );
// Let's check the remote site
$fp = @ fopen ( $pagelinkedfrom , 'r' );
if ( ! $fp ) {
// The source URI does not exist
return '0x0010' ;
}
$puntero = 4096 ;
while ( $remote_read = fread ( $fp , $puntero )) {
$linea .= $remote_read ;
}
// Work around bug in strip_tags():
$linea = str_replace ( '<!DOCTYPE' , '<DOCTYPE' , $linea );
$linea = strip_tags ( $linea , '<title><a>' );
$linea = strip_all_but_one_link ( $linea , $pagelinkedto );
// I don't think we need this? -- emc3
//$linea = preg_replace('#&([^amp\;])#is', '&$1', $linea);
if ( empty ( $matchtitle )) {
preg_match ( '|<title>([^<]*?)</title>|is' , $linea , $matchtitle );
}
$pos2 = strpos ( $linea , $pagelinkedto );
$pos3 = strpos ( $linea , str_replace ( 'http://www.' , 'http://' , $pagelinkedto ));
if ( is_integer ( $pos2 ) || is_integer ( $pos3 )) {
// The page really links to us :)
$pos4 = ( is_integer ( $pos2 )) ? $pos2 : $pos3 ;
$start = $pos4 - 100 ;
$context = substr ( $linea , $start , 250 );
$context = str_replace ( " \n " , ' ' , $context );
$context = str_replace ( '&' , '&' , $context );
}
fclose ( $fp );
if ( empty ( $context )) {
// URL pattern not found
return '0x0011' ;
}
// Check if pings are on, inelegant exit
$pingstatus = $wpdb -> get_var ( " SELECT ping_status FROM $wpdb->posts WHERE ID = $post_ID " );
if ( 'closed' == $pingstatus ) {
return '0x0021' ;
}
$pagelinkedfrom = preg_replace ( '#&([^amp\;])#is' , '&$1' , $pagelinkedfrom );
$title = ( ! strlen ( $matchtitle [ 1 ])) ? $pagelinkedfrom : $matchtitle [ 1 ];
$original_context = strip_tags ( $context );
$context = '[...] ' ;
$context = htmlspecialchars ( $original_context );
$context .= ' [...]' ;
$original_pagelinkedfrom = $pagelinkedfrom ;
$pagelinkedfrom = addslashes ( $pagelinkedfrom );
$original_title = $title ;
$title = addslashes ( strip_tags ( trim ( $title )));
$user_ip = $_SERVER [ 'REMOTE_ADDR' ];
$user_agent = addslashes ( $_SERVER [ 'HTTP_USER_AGENT' ]);
$now = current_time ( 'mysql' );
$now_gmt = current_time ( 'mysql' , 1 );
// Check if the entry allows pings
if ( ! check_comment ( $title , '' , $pagelinkedfrom , $context , $user_ip , $user_agent ) ) {
return '0x0031' ;
}
$consulta = $wpdb -> query ( " INSERT INTO $wpdb->comments
( comment_post_ID , comment_author , comment_author_url , comment_author_IP , comment_date , comment_date_gmt , comment_content , comment_approved , comment_agent , comment_type )
VALUES
( $post_ID , '$title' , '$pagelinkedfrom' , '$user_ip' , '$now' , '$now_gmt' , '$context' , '1' , '$user_agent' , 'pingback' )
" );
$comment_ID = $wpdb -> get_var ( 'SELECT last_insert_id()' );
if ( get_settings ( 'comments_notify' )) {
wp_notify_postauthor ( $comment_ID , 'pingback' );
}
do_action ( 'pingback_post' , $comment_ID );
return " Pingback from $pagelinkedfrom to $pagelinkedto registered. Keep the web talking! :-) " ;
}
2004-05-23 18:42:23 +02:00
}
2004-05-23 06:02:53 +02:00
2004-08-25 17:24:09 +02:00
2004-05-23 06:02:53 +02:00
$wp_xmlrpc_server = new wp_xmlrpc_server ();
?>