sergiotarxz
/
Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Eliminate the use of `extract()` in `wp_insert_attachment()`. 

`wp_insert_attachment()` and `wp_insert_post()` are incredibly similar, but have branched logic. I have annotated many places where they diverge.

See #22400.


git-svn-id: https://develop.svn.wordpress.org/trunk@28470 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Scott Taylor 2014-05-17 16:53:44 +00:00
parent 9787ea4e2a
commit b76a0d791b
1 changed files with 137 additions and 84 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

221
src/wp-includes/post.php
View File

@ -4453,97 +4453,135 @@ function wp_insert_attachment($object, $file = false, $parent = 0) {
$user_id = get_current_user_id(); $user_id = get_current_user_id();
$defaults = array('post_status' => 'inherit', 'post_type' => 'post', 'post_author' => $user_id, $defaults = array('post_status' => 'inherit', 'post_type' => 'post', 'post_author' => $user_id,
'ping_status' => get_option('default_ping_status'), 'post_parent' => 0, 'post_title' => '', 'ping_status' => get_option('default_ping_status'), 'post_parent' => 0,
'menu_order' => 0, 'to_ping' => '', 'pinged' => '', 'post_password' => '', 'post_content' => '', 'menu_order' => 0, 'to_ping' => '', 'pinged' => '', 'post_password' => '',
'guid' => '', 'post_content_filtered' => '', 'post_excerpt' => '', 'import_id' => 0, 'context' => ''); 'guid' => '', 'post_content_filtered' => '', 'post_excerpt' => '', 'import_id' => 0,
'post_title' => '', 'post_content' => '', 'context' => '');
$object = wp_parse_args($object, $defaults); $object = wp_parse_args($object, $defaults);
if ( !empty($parent) ) if ( ! empty( $parent ) ) {
$object['post_parent'] = $parent; $object['post_parent'] = $parent;
}
unset( $object[ 'filter' ] ); unset( $object[ 'filter' ] );
$object = sanitize_post($object, 'db'); $object = sanitize_post($object, 'db');
// export array as variables $post_ID = 0;
extract($object, EXTR_SKIP); $update = false;
$guid = $object['guid'];
if ( empty($post_author) ) // Are we updating or creating?
$post_author = $user_id; if ( ! empty( $object['ID'] ) ) {
$update = true;
$post_ID = (int) $object['ID'];
// wp_insert_post() checks for the existence of this post....
}
$post_type = 'attachment'; $post_type = 'attachment';
if ( ! in_array( $post_status, array( 'inherit', 'private' ) ) ) $post_title = $object['post_title'];
$post_status = 'inherit'; $post_content = $object['post_content'];
$post_excerpt = $object['post_excerpt'];
if ( isset( $object['post_name'] ) ) {
$post_name = $object['post_name'];
}
if ( !empty($post_category) ) // wp_insert_post() checks $maybe_empty
$post_category = array_filter($post_category); // Filter out empty terms
$post_status = $object['post_status'];
if ( ! in_array( $post_status, array( 'inherit', 'private' ) ) ) {
$post_status = 'inherit';
}
if ( ! empty( $object['post_category'] ) ) {
$post_category = array_filter( $object['post_category'] ); // Filter out empty terms
}
// Make sure we set a valid category. // Make sure we set a valid category.
if ( empty($post_category) || 0 == count($post_category) || !is_array($post_category) ) { if ( empty( $post_category ) || 0 == count( $post_category ) || ! is_array( $post_category ) ) {
// ironically, the default post_type for this function is 'post'
// as such, this should be probably have the same checks as wp_insert_post(),
// since all 'post's require a category. BUT, you can't override the post_type, because the
// variable is explicitly set.
$post_category = array(); $post_category = array();
} }
// Are we updating or creating? // Create a valid post name.
if ( !empty($ID) ) { if ( empty( $post_name ) ) {
$update = true; $post_name = sanitize_title($post_title);
$post_ID = (int) $ID;
} else { } else {
$update = false; // missing check from wp_insert_post on update:
$post_ID = 0; // "On updates, we need to check to see if it's using the old, fixed sanitization context."
$post_name = sanitize_title( $post_name );
} }
// Create a valid post name. if ( isset( $object['post_parent'] ) ) {
if ( empty($post_name) ) $post_parent = (int) $object['post_parent'];
$post_name = sanitize_title($post_title); } else {
else $post_parent = 0;
$post_name = sanitize_title($post_name); }
if ( empty( $object['post_date'] ) || '0000-00-00 00:00:00' == $object['post_date'] ) {
$post_date = current_time( 'mysql' );
} else {
$post_date = $object['post_date'];
}
// wp_insert_post() validates the date here
if ( empty( $object['post_date_gmt'] ) || '0000-00-00 00:00:00' == $object['post_date_gmt'] ) {
$post_date_gmt = get_gmt_from_date( $post_date );
} else {
$post_date_gmt = $object['post_date_gmt'];
}
if ( $update || '0000-00-00 00:00:00' == $post_date ) {
$post_modified = current_time( 'mysql' );
$post_modified_gmt = current_time( 'mysql', 1 );
} else {
$post_modified = $post_date;
$post_modified_gmt = $post_date_gmt;
}
// wp_insert_post() does "future" checks
if ( empty( $object['comment_status'] ) ) {
if ( $update ) {
$comment_status = 'closed';
} else {
$comment_status = get_option('default_comment_status');
}
} else {
$comment_status = $object['comment_status'];
}
// these variables are needed by compact() later
$post_content_filtered = $object['post_content_filtered'];
$post_author = empty( $object['post_author'] ) ? $user_id : $object['post_author'];
$ping_status = empty( $object['ping_status'] ) ? get_option( 'default_ping_status' ) : $object['ping_status'];
$to_ping = isset( $object['to_ping'] ) ? sanitize_trackback_urls( $object['to_ping'] ) : '';
$pinged = isset( $object['pinged'] ) ? $object['pinged'] : '';
$import_id = isset( $object['import_id'] ) ? $object['import_id'] : 0;
if ( isset( $object['menu_order'] ) ) {
$menu_order = (int) $object['menu_order'];
} else {
$menu_order = 0;
}
$post_password = isset( $object['post_password'] ) ? $object['post_password'] : '';
// skips the 'wp_insert_post_parent' filter, present in wp_insert_post()
// expected_slashed ($post_name) // expected_slashed ($post_name)
$post_name = wp_unique_post_slug($post_name, $post_ID, $post_status, $post_type, $post_parent); $post_name = wp_unique_post_slug( $post_name, $post_ID, $post_status, $post_type, $post_parent );
if ( empty($post_date) ) // don't unslash
$post_date = current_time('mysql'); $post_mime_type = isset( $object['post_mime_type'] ) ? $object['post_mime_type'] : '';
if ( empty($post_date_gmt) )
$post_date_gmt = current_time('mysql', 1);
if ( empty($post_modified) )
$post_modified = $post_date;
if ( empty($post_modified_gmt) )
$post_modified_gmt = $post_date_gmt;
if ( empty($comment_status) ) {
if ( $update )
$comment_status = 'closed';
else
$comment_status = get_option('default_comment_status');
}
if ( empty($ping_status) )
$ping_status = get_option('default_ping_status');
if ( isset($to_ping) )
$to_ping = preg_replace('|\s+|', "\n", $to_ping);
else
$to_ping = '';
if ( isset($post_parent) )
$post_parent = (int) $post_parent;
else
$post_parent = 0;
if ( isset($menu_order) )
$menu_order = (int) $menu_order;
else
$menu_order = 0;
if ( !isset($post_password) )
$post_password = '';
if ( ! isset($pinged) )
$pinged = '';
// expected_slashed (everything!) // expected_slashed (everything!)
$data = compact( array( 'post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_content_filtered', 'post_title', 'post_excerpt', 'post_status', 'post_type', 'comment_status', 'ping_status', 'post_password', 'post_name', 'to_ping', 'pinged', 'post_modified', 'post_modified_gmt', 'post_parent', 'menu_order', 'post_mime_type', 'guid' ) ); $data = compact( 'post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_content_filtered', 'post_title', 'post_excerpt', 'post_status', 'post_type', 'comment_status', 'ping_status', 'post_password', 'post_name', 'to_ping', 'pinged', 'post_modified', 'post_modified_gmt', 'post_parent', 'menu_order', 'post_mime_type', 'guid' );
/** /**
* Filter attachment post data before it is updated in or added * Filter attachment post data before it is updated in or added
@ -4556,53 +4594,68 @@ function wp_insert_attachment($object, $file = false, $parent = 0) {
*/ */
$data = apply_filters( 'wp_insert_attachment_data', $data, $object ); $data = apply_filters( 'wp_insert_attachment_data', $data, $object );
$data = wp_unslash( $data ); $data = wp_unslash( $data );
$where = array( 'ID' => $post_ID );
if ( $update ) { if ( $update ) {
$wpdb->update( $wpdb->posts, $data, array( 'ID' => $post_ID ) ); // skips 'pre_post_update' action
$wpdb->update( $wpdb->posts, $data, $where );
} else { } else {
// If there is a suggested ID, use it if not already present // If there is a suggested ID, use it if not already present
if ( !empty($import_id) ) { if ( ! empty( $import_id ) ) {
$import_id = (int) $import_id; $import_id = (int) $import_id;
if ( ! $wpdb->get_var( $wpdb->prepare("SELECT ID FROM $wpdb->posts WHERE ID = %d", $import_id) ) ) { if ( ! $wpdb->get_var( $wpdb->prepare( "SELECT ID FROM $wpdb->posts WHERE ID = %d", $import_id ) ) ) {
$data['ID'] = $import_id; $data['ID'] = $import_id;
} }
} }
$wpdb->insert( $wpdb->posts, $data ); $wpdb->insert( $wpdb->posts, $data );
$post_ID = (int) $wpdb->insert_id; $post_ID = (int) $wpdb->insert_id;
$where = array( 'ID' => $post_ID );
} }
if ( empty($post_name) ) { if ( empty( $data['post_name'] ) ) {
$post_name = sanitize_title($post_title, $post_ID); $data['post_name'] = sanitize_title( $data['post_title'], $post_ID );
$wpdb->update( $wpdb->posts, compact("post_name"), array( 'ID' => $post_ID ) ); $wpdb->update( $wpdb->posts, array( 'post_name' => $data['post_name'] ), $where );
} }
if ( is_object_in_taxonomy($post_type, 'category') ) if ( is_object_in_taxonomy( $data['post_type'], 'category' ) ) {
wp_set_post_categories( $post_ID, $post_category ); wp_set_post_categories( $post_ID, $post_category );
}
if ( isset( $tags_input ) && is_object_in_taxonomy($post_type, 'post_tag') ) if ( isset( $object['tags_input'] ) && is_object_in_taxonomy( $data['post_type'], 'post_tag' ) ) {
wp_set_post_tags( $post_ID, $tags_input ); wp_set_post_tags( $post_ID, $object['tags_input'] );
}
// support for all custom taxonomies // new-style support for all custom taxonomies
if ( !empty($tax_input) ) { if ( ! empty( $object['tax_input'] ) ) {
foreach ( $tax_input as $taxonomy => $tags ) { foreach ( $object['tax_input'] as $taxonomy => $tags ) {
$taxonomy_obj = get_taxonomy($taxonomy); $taxonomy_obj = get_taxonomy($taxonomy);
if ( is_array($tags) ) // array = hierarchical, string = non-hierarchical. if ( is_array( $tags ) ) { // array = hierarchical, string = non-hierarchical.
$tags = array_filter($tags); $tags = array_filter($tags);
if ( current_user_can($taxonomy_obj->cap->assign_terms) ) }
if ( current_user_can( $taxonomy_obj->cap->assign_terms ) ) {
wp_set_post_terms( $post_ID, $tags, $taxonomy ); wp_set_post_terms( $post_ID, $tags, $taxonomy );
}
} }
} }
if ( $file ) if ( $file ) {
update_attached_file( $post_ID, $file ); update_attached_file( $post_ID, $file );
}
// wp_insert_post() fills in guid if it is empty
clean_post_cache( $post_ID ); clean_post_cache( $post_ID );
if ( ! empty( $context ) ) if ( ! empty( $object['context'] ) ) {
add_post_meta( $post_ID, '_wp_attachment_context', $context, true ); add_post_meta( $post_ID, '_wp_attachment_context', $object['context'], true );
}
if ( $update) { // skips wp_transition_post_status
// the actions completely diverge from wp_insert_post()
if ( $update ) {
/** /**
* Fires once an existing attachment has been updated. * Fires once an existing attachment has been updated.
* *