mirror of
https://github.com/WordPress/WordPress.git
synced 2024-11-05 02:10:45 +01:00
d5f7417686
As of November 2021, the `HTTP/3` protocol is still officially an Internet Draft, but is already supported by 74% of running web browsers and, according to W3Techs, 23% of the top 10 million websites. It has been supported by Google Chrome (including Chrome for Android, and Microsoft Edge, which is based on it) since April 2020 and by Mozilla Firefox since May 2021. Safari 14 (on macOS Big Sur and iOS 14) has also implemented the protocol but support is hidden behind a feature flag. Based on the wide support, this change adds `HTTP/3` as a valid HTTP protocol. Props malthert. Fixes #54404. Built from https://develop.svn.wordpress.org/trunk@52087 git-svn-id: http://core.svn.wordpress.org/trunk@51679 1a063a9b-81f0-0310-95a4-ce76da25c4cd
82 lines
2.3 KiB
PHP
82 lines
2.3 KiB
PHP
<?php
|
|
/**
|
|
* Handles Comment Post to WordPress and prevents duplicate comment posting.
|
|
*
|
|
* @package WordPress
|
|
*/
|
|
|
|
if ( 'POST' !== $_SERVER['REQUEST_METHOD'] ) {
|
|
$protocol = $_SERVER['SERVER_PROTOCOL'];
|
|
if ( ! in_array( $protocol, array( 'HTTP/1.1', 'HTTP/2', 'HTTP/2.0', 'HTTP/3' ), true ) ) {
|
|
$protocol = 'HTTP/1.0';
|
|
}
|
|
|
|
header( 'Allow: POST' );
|
|
header( "$protocol 405 Method Not Allowed" );
|
|
header( 'Content-Type: text/plain' );
|
|
exit;
|
|
}
|
|
|
|
/** Sets up the WordPress Environment. */
|
|
require __DIR__ . '/wp-load.php';
|
|
|
|
nocache_headers();
|
|
|
|
$comment = wp_handle_comment_submission( wp_unslash( $_POST ) );
|
|
if ( is_wp_error( $comment ) ) {
|
|
$data = (int) $comment->get_error_data();
|
|
if ( ! empty( $data ) ) {
|
|
wp_die(
|
|
'<p>' . $comment->get_error_message() . '</p>',
|
|
__( 'Comment Submission Failure' ),
|
|
array(
|
|
'response' => $data,
|
|
'back_link' => true,
|
|
)
|
|
);
|
|
} else {
|
|
exit;
|
|
}
|
|
}
|
|
|
|
$user = wp_get_current_user();
|
|
$cookies_consent = ( isset( $_POST['wp-comment-cookies-consent'] ) );
|
|
|
|
/**
|
|
* Perform other actions when comment cookies are set.
|
|
*
|
|
* @since 3.4.0
|
|
* @since 4.9.6 The `$cookies_consent` parameter was added.
|
|
*
|
|
* @param WP_Comment $comment Comment object.
|
|
* @param WP_User $user Comment author's user object. The user may not exist.
|
|
* @param bool $cookies_consent Comment author's consent to store cookies.
|
|
*/
|
|
do_action( 'set_comment_cookies', $comment, $user, $cookies_consent );
|
|
|
|
$location = empty( $_POST['redirect_to'] ) ? get_comment_link( $comment ) : $_POST['redirect_to'] . '#comment-' . $comment->comment_ID;
|
|
|
|
// If user didn't consent to cookies, add specific query arguments to display the awaiting moderation message.
|
|
if ( ! $cookies_consent && 'unapproved' === wp_get_comment_status( $comment ) && ! empty( $comment->comment_author_email ) ) {
|
|
$location = add_query_arg(
|
|
array(
|
|
'unapproved' => $comment->comment_ID,
|
|
'moderation-hash' => wp_hash( $comment->comment_date_gmt ),
|
|
),
|
|
$location
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Filters the location URI to send the commenter after posting.
|
|
*
|
|
* @since 2.0.5
|
|
*
|
|
* @param string $location The 'redirect_to' URI sent via $_POST.
|
|
* @param WP_Comment $comment Comment object.
|
|
*/
|
|
$location = apply_filters( 'comment_post_redirect', $location, $comment );
|
|
|
|
wp_safe_redirect( $location );
|
|
exit;
|