mirror of
https://github.com/WordPress/WordPress.git
synced 2024-10-02 09:07:59 +02:00
940c2238ec
Ensures that users who copy HTML from the Text widget in legacy mode over to the Custom HTML widget will continue to get all of the same filters applied, including tag balancing and shortcodes, if a plugin added support. Plugins still have the `widget_text_content` and `widget_custom_html_content` filters they can use to target the specific widget types. Merges [41086] onto 4.8 branch. Amends [40893]. See #40951. Fixes #40907 for 4.8.1. Built from https://develop.svn.wordpress.org/branches/4.8@41087 git-svn-id: http://core.svn.wordpress.org/branches/4.8@40927 1a063a9b-81f0-0310-95a4-ce76da25c4cd
202 lines
6.5 KiB
PHP
202 lines
6.5 KiB
PHP
<?php
|
|
/**
|
|
* Widget API: Default core widgets
|
|
*
|
|
* @package WordPress
|
|
* @subpackage Widgets
|
|
* @since 2.8.0
|
|
*/
|
|
|
|
/** WP_Widget_Pages class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-pages.php' );
|
|
|
|
/** WP_Widget_Links class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-links.php' );
|
|
|
|
/** WP_Widget_Search class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-search.php' );
|
|
|
|
/** WP_Widget_Archives class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-archives.php' );
|
|
|
|
/** WP_Widget_Media class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-media.php' );
|
|
|
|
/** WP_Widget_Media_Audio class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-media-audio.php' );
|
|
|
|
/** WP_Widget_Media_Image class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-media-image.php' );
|
|
|
|
/** WP_Widget_Media_Video class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-media-video.php' );
|
|
|
|
/** WP_Widget_Meta class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-meta.php' );
|
|
|
|
/** WP_Widget_Meta class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-meta.php' );
|
|
|
|
/** WP_Widget_Calendar class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-calendar.php' );
|
|
|
|
/** WP_Widget_Text class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-text.php' );
|
|
|
|
/** WP_Widget_Categories class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-categories.php' );
|
|
|
|
/** WP_Widget_Recent_Posts class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-recent-posts.php' );
|
|
|
|
/** WP_Widget_Recent_Comments class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-recent-comments.php' );
|
|
|
|
/** WP_Widget_RSS class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-rss.php' );
|
|
|
|
/** WP_Widget_Tag_Cloud class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-widget-tag-cloud.php' );
|
|
|
|
/** WP_Nav_Menu_Widget class */
|
|
require_once( ABSPATH . WPINC . '/widgets/class-wp-nav-menu-widget.php' );
|
|
|
|
/**
|
|
* Core class used to implement a Custom HTML widget.
|
|
*
|
|
* Note that this class is only located in this file in the 4.8 branch
|
|
* for the sake of automatic updates. In 4.9 and above, it is located at
|
|
* `wp-includes/widgets/class-wp-widget-custom-html.php`.
|
|
*
|
|
* @since 4.8.1
|
|
*
|
|
* @see WP_Widget
|
|
*/
|
|
class WP_Widget_Custom_HTML extends WP_Widget {
|
|
|
|
/**
|
|
* Default instance.
|
|
*
|
|
* @since 4.8.1
|
|
* @var array
|
|
*/
|
|
protected $default_instance = array(
|
|
'title' => '',
|
|
'content' => '',
|
|
);
|
|
|
|
/**
|
|
* Sets up a new Custom HTML widget instance.
|
|
*
|
|
* @since 4.8.1
|
|
*/
|
|
public function __construct() {
|
|
$widget_ops = array(
|
|
'classname' => 'widget_custom_html',
|
|
'description' => __( 'Arbitrary HTML code.' ),
|
|
'customize_selective_refresh' => true,
|
|
);
|
|
$control_ops = array(
|
|
'width' => 400,
|
|
'height' => 350,
|
|
);
|
|
parent::__construct( 'custom_html', __( 'Custom HTML' ), $widget_ops, $control_ops );
|
|
}
|
|
|
|
/**
|
|
* Outputs the content for the current Custom HTML widget instance.
|
|
*
|
|
* @since 4.8.1
|
|
*
|
|
* @param array $args Display arguments including 'before_title', 'after_title',
|
|
* 'before_widget', and 'after_widget'.
|
|
* @param array $instance Settings for the current Custom HTML widget instance.
|
|
*/
|
|
public function widget( $args, $instance ) {
|
|
|
|
$instance = array_merge( $this->default_instance, $instance );
|
|
|
|
/** This filter is documented in wp-includes/widgets/class-wp-widget-pages.php */
|
|
$title = apply_filters( 'widget_title', $instance['title'], $instance, $this->id_base );
|
|
|
|
/** This filter is documented in wp-includes/widgets/class-wp-widget-text.php */
|
|
$content = apply_filters( 'widget_text', $instance['content'], $instance, $this );
|
|
|
|
/**
|
|
* Filters the content of the Custom HTML widget.
|
|
*
|
|
* @since 4.8.1
|
|
*
|
|
* @param string $content The widget content.
|
|
* @param array $instance Array of settings for the current widget.
|
|
* @param WP_Widget_Custom_HTML $this Current Custom HTML widget instance.
|
|
*/
|
|
$content = apply_filters( 'widget_custom_html_content', $content, $instance, $this );
|
|
|
|
echo $args['before_widget'];
|
|
if ( ! empty( $title ) ) {
|
|
echo $args['before_title'] . $title . $args['after_title'];
|
|
}
|
|
echo $content;
|
|
echo $args['after_widget'];
|
|
}
|
|
|
|
/**
|
|
* Handles updating settings for the current Custom HTML widget instance.
|
|
*
|
|
* @since 4.8.1
|
|
*
|
|
* @param array $new_instance New settings for this instance as input by the user via
|
|
* WP_Widget::form().
|
|
* @param array $old_instance Old settings for this instance.
|
|
* @return array Settings to save or bool false to cancel saving.
|
|
*/
|
|
public function update( $new_instance, $old_instance ) {
|
|
$instance = array_merge( $this->default_instance, $old_instance );
|
|
$instance['title'] = sanitize_text_field( $new_instance['title'] );
|
|
if ( current_user_can( 'unfiltered_html' ) ) {
|
|
$instance['content'] = $new_instance['content'];
|
|
} else {
|
|
$instance['content'] = wp_kses_post( $new_instance['content'] );
|
|
}
|
|
return $instance;
|
|
}
|
|
|
|
/**
|
|
* Outputs the Custom HTML widget settings form.
|
|
*
|
|
* @since 4.8.1
|
|
*
|
|
* @param array $instance Current instance.
|
|
* @returns void
|
|
*/
|
|
public function form( $instance ) {
|
|
$instance = wp_parse_args( (array) $instance, $this->default_instance );
|
|
?>
|
|
<p>
|
|
<label for="<?php echo $this->get_field_id( 'title' ); ?>"><?php _e( 'Title:' ); ?></label>
|
|
<input class="widefat" id="<?php echo $this->get_field_id( 'title' ); ?>" name="<?php echo $this->get_field_name( 'title' ); ?>" type="text" value="<?php echo esc_attr( $instance['title'] ); ?>"/>
|
|
</p>
|
|
|
|
<p>
|
|
<label for="<?php echo $this->get_field_id( 'content' ); ?>"><?php _e( 'Content:' ); ?></label>
|
|
<textarea class="widefat code" rows="16" cols="20" id="<?php echo $this->get_field_id( 'content' ); ?>" name="<?php echo $this->get_field_name( 'content' ); ?>"><?php echo esc_textarea( $instance['content'] ); ?></textarea>
|
|
</p>
|
|
|
|
<?php if ( ! current_user_can( 'unfiltered_html' ) ) : ?>
|
|
<?php
|
|
$probably_unsafe_html = array( 'script', 'iframe', 'form', 'input', 'style' );
|
|
$allowed_html = wp_kses_allowed_html( 'post' );
|
|
$disallowed_html = array_diff( $probably_unsafe_html, array_keys( $allowed_html ) );
|
|
?>
|
|
<?php if ( ! empty( $disallowed_html ) ) : ?>
|
|
<p>
|
|
<?php _e( 'Some HTML tags are not permitted, including:' ); ?>
|
|
<code><?php echo join( '</code>, <code>', $disallowed_html ); ?></code>
|
|
</p>
|
|
<?php endif; ?>
|
|
<?php endif; ?>
|
|
<?php
|
|
}
|
|
}
|