Commit Graph

78 Commits

Author SHA1 Message Date
markjaquith
611b037efa use clean_url() instead of attribute_escape() when dealing with src/href to protect against XSS. props xknown. fixes #3986 for trunk.
git-svn-id: http://svn.automattic.com/wordpress/trunk@5056 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-03-17 08:46:59 +00:00
markjaquith
a5dc6a5271 wp-admin colonectomy by foolswisdom. fixes #3630
git-svn-id: http://svn.automattic.com/wordpress/trunk@4787 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-01-23 07:43:56 +00:00
ryan
8c6162e883 Autosave fixes from mdawaffe. fixes #3601
git-svn-id: http://svn.automattic.com/wordpress/trunk@4760 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2007-01-18 03:32:54 +00:00
markjaquith
8a678f3841 i18n fixes, logic cleanup, wording clarifications, and more from nbachiyski. fixes #3474
git-svn-id: http://svn.automattic.com/wordpress/trunk@4658 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-12-21 23:06:18 +00:00
markjaquith
5a76c03203 new function for escaping within attributes: attribute_escape()
git-svn-id: http://svn.automattic.com/wordpress/trunk@4656 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-12-21 10:10:04 +00:00
markjaquith
deb53f7027 No need to backslash escape single quotes and line breaks when using js_escape()
git-svn-id: http://svn.automattic.com/wordpress/trunk@4655 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-12-21 06:04:39 +00:00
ryan
cc44db510d Use js_escape. Props nbachiyski. fixes #3399
git-svn-id: http://svn.automattic.com/wordpress/trunk@4535 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-11-28 21:51:13 +00:00
ryan
9f534ebae6 Remove trailing spaces and convert spaces to tabs. Props Nazgul. fixes #986
git-svn-id: http://svn.automattic.com/wordpress/trunk@4495 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-11-19 07:56:05 +00:00
matt
c14edc434a This is vestigal
git-svn-id: http://svn.automattic.com/wordpress/trunk@4397 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-15 01:44:37 +00:00
ryan
b5741c1270 Uploader improvements from mdawaffe. fixes #3191
git-svn-id: http://svn.automattic.com/wordpress/trunk@4274 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-03 07:15:13 +00:00
ryan
13eb3fbb0d Add and use delete class on delete buttons. Props mdawaffe. fixes #3187
git-svn-id: http://svn.automattic.com/wordpress/trunk@4267 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-10-02 18:34:08 +00:00
ryan
6b7de4afd3 Validate good times, come on. Props Viper007Bond. fixes #3113
git-svn-id: http://svn.automattic.com/wordpress/trunk@4169 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-09-07 17:28:29 +00:00
ryan
f600dfacfa Capitalization fixes from foolswisdom and davidosier. fixes #3077
git-svn-id: http://svn.automattic.com/wordpress/trunk@4125 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-30 01:47:01 +00:00
ryan
a458715afa Fix autosave redirects
git-svn-id: http://svn.automattic.com/wordpress/trunk@4088 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-11 19:13:00 +00:00
ryan
7ac67243e8 autosave fix ups
git-svn-id: http://svn.automattic.com/wordpress/trunk@4086 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-11 18:50:28 +00:00
ryan
c4a4c6c371 autosave span from masquerade
git-svn-id: http://svn.automattic.com/wordpress/trunk@4084 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-08-11 07:26:48 +00:00
ryan
fbfe98308d Custom field AJAX fix from mdawaffe. fixes #2970
git-svn-id: http://svn.automattic.com/wordpress/trunk@4029 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-07-23 17:14:51 +00:00
matt
157786ecaa Some renames
git-svn-id: http://svn.automattic.com/wordpress/trunk@3999 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-07-06 04:27:45 +00:00
ryan
f02a7931d8 Validation fixes from leftjustified. fixes #2907
git-svn-id: http://svn.automattic.com/wordpress/trunk@3983 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-07-05 20:28:02 +00:00
ryan
281418c54e Add delete page nonce. fixes #2847
git-svn-id: http://svn.automattic.com/wordpress/trunk@3932 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-27 07:01:16 +00:00
ryan
ec9b6242a3 Use wp_get_referer(). fixes #2800
git-svn-id: http://svn.automattic.com/wordpress/trunk@3918 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-24 07:34:35 +00:00
ryan
e232ef9a32 js_escape() in onclicks. fixes #2851
git-svn-id: http://svn.automattic.com/wordpress/trunk@3907 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-06-24 01:28:08 +00:00
ryan
96c3f739a8 Update nonce action strings. Props mdawaffe.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3804 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-05-26 23:08:05 +00:00
ryan
e92d1c8341 Fix cap. Props ryanscheuermann. fixes #2723
git-svn-id: http://svn.automattic.com/wordpress/trunk@3775 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-05-17 21:32:16 +00:00
ryan
3f57a94f4c Nonce from above. #2678
git-svn-id: http://svn.automattic.com/wordpress/trunk@3759 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-05-02 22:36:06 +00:00
ryan
a7337fded7 tinyMCE 2.0.5 coming at you live. fixes #2598
git-svn-id: http://svn.automattic.com/wordpress/trunk@3664 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-03-30 07:50:33 +00:00
ryan
baa30dd4d8 AJAX, cause you love it. Props mdawaffe. fixes #2561
git-svn-id: http://svn.automattic.com/wordpress/trunk@3660 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-03-29 01:51:55 +00:00
ryan
29540c8e2b Breakup post.php into post.php, comment.php, page.php, post-new.php
git-svn-id: http://svn.automattic.com/wordpress/trunk@3563 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-21 06:11:46 +00:00
ryan
c8e61c99b8 Oops. Missing paren.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3562 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-20 21:23:09 +00:00
ryan
0cda0d89f0 Check Published for future posts. fixes #2488
git-svn-id: http://svn.automattic.com/wordpress/trunk@3560 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-20 21:00:19 +00:00
ryan
2fc8c248b3 Add Publish button for pages. fixes #2451
git-svn-id: http://svn.automattic.com/wordpress/trunk@3550 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-19 05:57:54 +00:00
ryan
e297c36253 Move raquo into gettext. Props SteveAgl. fixes #2453
git-svn-id: http://svn.automattic.com/wordpress/trunk@3541 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-17 01:29:33 +00:00
ryan
d6d431c1be Add new page caps now that pages can be draft or publish. Brings page caps to parity with posts. Add delete caps for posts and pages. fixes #2382 #2336 #2301
git-svn-id: http://svn.automattic.com/wordpress/trunk@3513 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-11 09:56:02 +00:00
ryan
f812294867 Allow draft pages. Use post_type for object types. Reserve post_status strictly for status. fixes #1820
git-svn-id: http://svn.automattic.com/wordpress/trunk@3510 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-02-09 10:03:48 +00:00
ryan
19b29d08ee Check upload_files cap for inline uploader. Props David House and doit-cu. fixes #2302
git-svn-id: http://svn.automattic.com/wordpress/trunk@3456 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-01-18 19:16:31 +00:00
ryan
f7ed2d60d3 Relocate edit_page_form hook for consistency. Props Denis-de-Bernardy. fixes #2118
git-svn-id: http://svn.automattic.com/wordpress/trunk@3434 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-01-13 22:42:45 +00:00
ryan
410206ab66 dbx hooks from Owen. fixes #2250
git-svn-id: http://svn.automattic.com/wordpress/trunk@3415 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2006-01-09 22:44:42 +00:00
ryan
06c51d01c2 MCE fix-em-ups from skeltoac. fixes #1962
git-svn-id: http://svn.automattic.com/wordpress/trunk@3283 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-12-09 19:24:14 +00:00
ryan
e1f22d2364 Restore accidental reversion.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3149 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-18 10:03:27 +00:00
ryan
544842e3dc Big tiny fixes from skeltoac. fixes #1897
git-svn-id: http://svn.automattic.com/wordpress/trunk@3136 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-17 17:47:29 +00:00
matt
32daaee631 Some changes and tweaks to how the inline image uploading works.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3126 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-17 03:19:19 +00:00
ryan
5f5430e9dc A button called Save. Props morydd. fixes #1411
git-svn-id: http://svn.automattic.com/wordpress/trunk@3100 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-16 02:15:24 +00:00
ryan
6705b20ff7 TinyMCE tweaks from skeltoac. fixes #1852
git-svn-id: http://svn.automattic.com/wordpress/trunk@3015 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-08 19:17:08 +00:00
ryan
acfd349d19 Rename image-uploading to inline-uploading. Props skeltoac. fixes #1834
git-svn-id: http://svn.automattic.com/wordpress/trunk@2994 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-11-06 03:40:43 +00:00
ryan
faa8397c00 Put the preview anchors on the h2. Props: markjaquith fixes #1765
git-svn-id: http://svn.automattic.com/wordpress/trunk@2973 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-10-29 01:52:56 +00:00
ryan
0b735b842f Image uploading for pages. Props skeltoac. fixes #1759
git-svn-id: http://svn.automattic.com/wordpress/trunk@2951 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-10-14 21:52:56 +00:00
ryan
14eb9ebc01 Partial migration to roles.
git-svn-id: http://svn.automattic.com/wordpress/trunk@2900 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-09-21 05:13:49 +00:00
matt
8f184fb7a3 Fixes #972 for 1.6
git-svn-id: http://svn.automattic.com/wordpress/trunk@2826 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-08-30 23:06:04 +00:00
matt
d171aa7ec4 Move JS below edit form, fixes #1555
git-svn-id: http://svn.automattic.com/wordpress/trunk@2804 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-08-23 07:46:33 +00:00
matt
77e8b6fcc4 Clap on Clap off
git-svn-id: http://svn.automattic.com/wordpress/trunk@2789 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2005-08-18 01:51:59 +00:00