mirror of
https://github.com/WordPress/WordPress.git
synced 2024-12-22 17:18:32 +01:00
aaf99e6913
WordPress' code just... wasn't. This is now dealt with. Props jrf, pento, netweb, GaryJ, jdgrimes, westonruter, Greg Sherwood from PHPCS, and everyone who's ever contributed to WPCS and PHPCS. Fixes #41057. Built from https://develop.svn.wordpress.org/trunk@42343 git-svn-id: http://core.svn.wordpress.org/trunk@42172 1a063a9b-81f0-0310-95a4-ce76da25c4cd
66 lines
1.6 KiB
PHP
66 lines
1.6 KiB
PHP
<?php
|
|
/**
|
|
* Handles Comment Post to WordPress and prevents duplicate comment posting.
|
|
*
|
|
* @package WordPress
|
|
*/
|
|
|
|
if ( 'POST' != $_SERVER['REQUEST_METHOD'] ) {
|
|
$protocol = $_SERVER['SERVER_PROTOCOL'];
|
|
if ( ! in_array( $protocol, array( 'HTTP/1.1', 'HTTP/2', 'HTTP/2.0' ) ) ) {
|
|
$protocol = 'HTTP/1.0';
|
|
}
|
|
|
|
header( 'Allow: POST' );
|
|
header( "$protocol 405 Method Not Allowed" );
|
|
header( 'Content-Type: text/plain' );
|
|
exit;
|
|
}
|
|
|
|
/** Sets up the WordPress Environment. */
|
|
require( dirname( __FILE__ ) . '/wp-load.php' );
|
|
|
|
nocache_headers();
|
|
|
|
$comment = wp_handle_comment_submission( wp_unslash( $_POST ) );
|
|
if ( is_wp_error( $comment ) ) {
|
|
$data = intval( $comment->get_error_data() );
|
|
if ( ! empty( $data ) ) {
|
|
wp_die(
|
|
'<p>' . $comment->get_error_message() . '</p>', __( 'Comment Submission Failure' ), array(
|
|
'response' => $data,
|
|
'back_link' => true,
|
|
)
|
|
);
|
|
} else {
|
|
exit;
|
|
}
|
|
}
|
|
|
|
$user = wp_get_current_user();
|
|
|
|
/**
|
|
* Perform other actions when comment cookies are set.
|
|
*
|
|
* @since 3.4.0
|
|
*
|
|
* @param WP_Comment $comment Comment object.
|
|
* @param WP_User $user User object. The user may not exist.
|
|
*/
|
|
do_action( 'set_comment_cookies', $comment, $user );
|
|
|
|
$location = empty( $_POST['redirect_to'] ) ? get_comment_link( $comment ) : $_POST['redirect_to'] . '#comment-' . $comment->comment_ID;
|
|
|
|
/**
|
|
* Filters the location URI to send the commenter after posting.
|
|
*
|
|
* @since 2.0.5
|
|
*
|
|
* @param string $location The 'redirect_to' URI sent via $_POST.
|
|
* @param WP_Comment $comment Comment object.
|
|
*/
|
|
$location = apply_filters( 'comment_post_redirect', $location, $comment );
|
|
|
|
wp_safe_redirect( $location );
|
|
exit;
|