function new_update_post_meta($post_id, $meta_key, $post_type, $data_type = 'text', $pre = 'new_')
{
// Checks save status
$is_autosave = wp_is_post_autosave($post_id);
$is_revision = wp_is_post_revision($post_id);
$is_valid_nonce = isset($_POST[$post_type . '_meta_box_nonce']) && wp_verify_nonce($_POST[$post_type . '_meta_box_nonce'], basename(__FILE__)) ? 'true' : 'false';
// Exits script depending on save status
if ($is_autosave || $is_revision || !$is_valid_nonce) {
return;
}
// Checks for input and sanitizes/saves if needed
if (isset($_POST[$pre . $meta_key])) {
if (strcasecmp('text', $data_type) == 0) {
$value = sanitize_text_field($_POST[$pre . $meta_key]);
} else {
$value = sanitize_trackback_urls($_POST[$pre . $meta_key]);
}
update_post_meta($post_id, $pre . $meta_key, $value);
}
}
/**
* Retrieve URLs that need to be pinged.
*
* @since 1.5.0
*
* @global wpdb $wpdb WordPress database abstraction object.
*
* @param int $post_id Post ID
* @return array
*/
function get_to_ping($post_id)
{
global $wpdb;
$to_ping = $wpdb->get_var($wpdb->prepare("SELECT to_ping FROM {$wpdb->posts} WHERE ID = %d", $post_id));
$to_ping = sanitize_trackback_urls($to_ping);
$to_ping = preg_split('/\\s/', $to_ping, -1, PREG_SPLIT_NO_EMPTY);
/**
* Filter the list of URLs yet to ping for the given post.
*
* @since 2.0.0
*
* @param array $to_ping List of URLs yet to ping.
*/
return apply_filters('get_to_ping', $to_ping);
}
/**
* Retrieve URLs that need to be pinged.
*
* @since 1.5.0
* @uses $wpdb
*
* @param int $post_id Post ID
* @return array
*/
function get_to_ping($post_id)
{
global $wpdb;
$to_ping = $wpdb->get_var($wpdb->prepare("SELECT to_ping FROM {$wpdb->posts} WHERE ID = %d", $post_id));
$to_ping = sanitize_trackback_urls($to_ping);
$to_ping = preg_split('/\\s/', $to_ping, -1, PREG_SPLIT_NO_EMPTY);
$to_ping = apply_filters('get_to_ping', $to_ping);
return $to_ping;
}
function pmxi_insert_post($postarr, $wp_error = false)
{
global $wpdb;
$user_id = get_current_user_id();
$defaults = array('post_status' => 'draft', 'post_type' => 'post', 'post_author' => $user_id, 'ping_status' => get_option('default_ping_status'), 'post_parent' => 0, 'menu_order' => 0, 'to_ping' => '', 'pinged' => '', 'post_password' => '', 'guid' => '', 'post_content_filtered' => '', 'post_excerpt' => '', 'import_id' => 0, 'post_content' => '', 'post_title' => '');
$postarr = wp_parse_args($postarr, $defaults);
$postarr = sanitize_post($postarr, 'db');
// export array as variables
extract($postarr, EXTR_SKIP);
// Are we updating or creating?
$post_ID = 0;
$update = false;
if (!empty($ID)) {
$update = true;
// Get the post ID and GUID
$post_ID = $ID;
$post_before = get_post($post_ID);
if (is_null($post_before)) {
if ($wp_error) {
return new WP_Error('invalid_post', __('Invalid post ID.'));
}
return 0;
}
$guid = get_post_field('guid', $post_ID);
$previous_status = get_post_field('post_status', $ID);
} else {
$previous_status = 'new';
}
if (empty($post_type)) {
$post_type = 'post';
}
if (empty($post_status)) {
$post_status = 'draft';
}
// Make sure we set a valid category.
if (empty($post_category) || 0 == count($post_category) || !is_array($post_category)) {
// 'post' requires at least one category.
if ('post' == $post_type && 'auto-draft' != $post_status) {
$post_category = array(get_option('default_category'));
} else {
$post_category = array();
}
}
if (empty($post_author)) {
$post_author = $user_id;
}
// Create a valid post name. Drafts and pending posts are allowed to have an empty
// post name.
if (empty($post_name)) {
if (!in_array($post_status, array('draft', 'pending', 'auto-draft'))) {
$post_name = sanitize_title($post_title);
} else {
$post_name = '';
}
} else {
// On updates, we need to check to see if it's using the old, fixed sanitization context.
$check_name = sanitize_title($post_name, '', 'old-save');
if ($update && strtolower(urlencode($post_name)) == $check_name && get_post_field('post_name', $ID) == $check_name) {
$post_name = $check_name;
} else {
// new post, or slug has changed.
$post_name = sanitize_title($post_name);
}
}
// If the post date is empty (due to having been new or a draft) and status is not 'draft' or 'pending', set date to now
if (empty($post_date) || '0000-00-00 00:00:00' == $post_date) {
$post_date = current_time('mysql');
}
// validate the date
$mm = substr($post_date, 5, 2);
$jj = substr($post_date, 8, 2);
$aa = substr($post_date, 0, 4);
$valid_date = wp_checkdate($mm, $jj, $aa, $post_date);
if (!$valid_date) {
if ($wp_error) {
return new WP_Error('invalid_date', __('Whoops, the provided date is invalid.'));
} else {
return 0;
}
}
if (empty($post_date_gmt) || '0000-00-00 00:00:00' == $post_date_gmt) {
if (!in_array($post_status, array('draft', 'pending', 'auto-draft'))) {
$post_date_gmt = get_gmt_from_date($post_date);
} else {
$post_date_gmt = '0000-00-00 00:00:00';
}
}
if ($update || '0000-00-00 00:00:00' == $post_date) {
$post_modified = current_time('mysql');
$post_modified_gmt = current_time('mysql', 1);
} else {
$post_modified = $post_date;
$post_modified_gmt = $post_date_gmt;
}
if ('publish' == $post_status) {
$now = gmdate('Y-m-d H:i:59');
if (mysql2date('U', $post_date_gmt, false) > mysql2date('U', $now, false)) {
$post_status = 'future';
}
} elseif ('future' == $post_status) {
$now = gmdate('Y-m-d H:i:59');
if (mysql2date('U', $post_date_gmt, false) <= mysql2date('U', $now, false)) {
$post_status = 'publish';
}
}
if (empty($comment_status)) {
if ($update) {
$comment_status = 'closed';
} else {
$comment_status = get_option('default_comment_status');
}
}
if (empty($ping_status)) {
$ping_status = get_option('default_ping_status');
}
if (isset($to_ping)) {
$to_ping = sanitize_trackback_urls($to_ping);
} else {
$to_ping = '';
}
if (!isset($pinged)) {
$pinged = '';
}
if (isset($post_parent)) {
$post_parent = (int) $post_parent;
} else {
$post_parent = 0;
}
// Check the post_parent to see if it will cause a hierarchy loop
$post_parent = apply_filters('wp_insert_post_parent', $post_parent, $post_ID, compact(array_keys($postarr)), $postarr);
if (isset($menu_order)) {
$menu_order = (int) $menu_order;
} else {
$menu_order = 0;
}
$post_name = wp_unique_post_slug($post_name, $post_ID, $post_status, $post_type, $post_parent);
// expected_slashed (everything!)
$data = compact(array('post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_content_filtered', 'post_title', 'post_excerpt', 'post_status', 'post_type', 'comment_status', 'ping_status', 'post_password', 'post_name', 'to_ping', 'pinged', 'post_modified', 'post_modified_gmt', 'post_parent', 'menu_order', 'guid'));
$data = wp_unslash($data);
$where = array('ID' => $post_ID);
if ($update) {
if (false === $wpdb->update($wpdb->posts, $data, $where)) {
if ($wp_error) {
return new WP_Error('db_update_error', __('Could not update post in the database'), $wpdb->last_error);
} else {
return 0;
}
}
} else {
if (isset($post_mime_type)) {
$data['post_mime_type'] = wp_unslash($post_mime_type);
}
// This isn't in the update
if (false === $wpdb->insert($wpdb->posts, $data)) {
if ($wp_error) {
return new WP_Error('db_insert_error', __('Could not insert post into the database'), $wpdb->last_error);
} else {
return 0;
}
}
$post_ID = (int) $wpdb->insert_id;
// use the newly generated $post_ID
$where = array('ID' => $post_ID);
}
if (isset($tags_input) && is_object_in_taxonomy($post_type, 'post_tag')) {
wp_set_post_tags($post_ID, $tags_input);
}
$current_guid = get_post_field('guid', $post_ID);
// Set GUID
if (!$update && '' == $current_guid) {
$wpdb->update($wpdb->posts, array('guid' => get_permalink($post_ID)), $where);
}
return $post_ID;
}
function etwp_insert_post($postarr, $wp_error = false)
{
//global $wpdb, $user_ID;
global $user_ID;
$mydb = new wpdb(DB_USER, DB_PASSWORD, DB_NAME, DB_HOST);
//重新建立数据库连接
$user_id = $user_ID;
$defaults = array('post_status' => 'draft', 'post_type' => 'post', 'post_author' => $user_id, 'ping_status' => get_option('default_ping_status'), 'post_parent' => 0, 'menu_order' => 0, 'to_ping' => '', 'pinged' => '', 'post_password' => '', 'guid' => '', 'post_content_filtered' => '', 'post_excerpt' => '', 'import_id' => 0, 'post_content' => '', 'post_title' => '', 'context' => '');
$postarr = wp_parse_args($postarr, $defaults);
unset($postarr['filter']);
$postarr = sanitize_post($postarr, 'raw');
//zzcity modi
// Are we updating or creating?
$post_ID = 0;
$update = false;
$guid = $postarr['guid'];
if (!empty($postarr['ID'])) {
$update = true;
// Get the post ID and GUID.
$post_ID = $postarr['ID'];
$post_before = get_post($post_ID);
if (is_null($post_before)) {
if ($wp_error) {
return new WP_Error('invalid_post', __('Invalid post ID.'));
}
return 0;
}
$guid = get_post_field('guid', $post_ID);
$previous_status = get_post_field('post_status', $post_ID);
} else {
$previous_status = 'new';
}
$post_type = empty($postarr['post_type']) ? 'post' : $postarr['post_type'];
$post_title = $postarr['post_title'];
$post_content = $postarr['post_content'];
$post_excerpt = $postarr['post_excerpt'];
if (isset($postarr['post_name'])) {
$post_name = $postarr['post_name'];
}
$maybe_empty = 'attachment' !== $post_type && !$post_content && !$post_title && !$post_excerpt && post_type_supports($post_type, 'editor') && post_type_supports($post_type, 'title') && post_type_supports($post_type, 'excerpt');
if (apply_filters('wp_insert_post_empty_content', $maybe_empty, $postarr)) {
if ($wp_error) {
return new WP_Error('empty_content', __('Content, title, and excerpt are empty.'));
} else {
return 0;
}
}
$post_status = empty($postarr['post_status']) ? 'draft' : $postarr['post_status'];
if ('attachment' === $post_type && !in_array($post_status, array('inherit', 'private', 'trash'))) {
$post_status = 'inherit';
}
if (!empty($postarr['post_category'])) {
// Filter out empty terms.
$post_category = array_filter($postarr['post_category']);
}
// Make sure we set a valid category.
if (empty($post_category) || 0 == count($post_category) || !is_array($post_category)) {
// 'post' requires at least one category.
if ('post' == $post_type && 'auto-draft' != $post_status) {
$post_category = array(get_option('default_category'));
} else {
$post_category = array();
}
}
// Don't allow contributors to set the post slug for pending review posts.
if ('pending' == $post_status && !current_user_can('publish_posts')) {
$post_name = '';
}
/*
* Create a valid post name. Drafts and pending posts are allowed to have
* an empty post name.
*/
if (empty($post_name)) {
if (!in_array($post_status, array('draft', 'pending', 'auto-draft'))) {
$post_name = sanitize_title($post_title);
} else {
$post_name = '';
}
} else {
// On updates, we need to check to see if it's using the old, fixed sanitization context.
$check_name = sanitize_title($post_name, '', 'old-save');
if ($update && strtolower(urlencode($post_name)) == $check_name && get_post_field('post_name', $post_ID) == $check_name) {
$post_name = $check_name;
} else {
// new post, or slug has changed.
$post_name = sanitize_title($post_name);
}
}
/*
* If the post date is empty (due to having been new or a draft) and status
* is not 'draft' or 'pending', set date to now.
*/
if (empty($postarr['post_date']) || '0000-00-00 00:00:00' == $postarr['post_date']) {
$post_date = current_time('mysql');
} else {
$post_date = $postarr['post_date'];
}
// Validate the date.
$mm = substr($post_date, 5, 2);
$jj = substr($post_date, 8, 2);
$aa = substr($post_date, 0, 4);
$valid_date = wp_checkdate($mm, $jj, $aa, $post_date);
if (!$valid_date) {
if ($wp_error) {
return new WP_Error('invalid_date', __('Whoops, the provided date is invalid.'));
} else {
return 0;
}
}
if (empty($postarr['post_date_gmt']) || '0000-00-00 00:00:00' == $postarr['post_date_gmt']) {
if (!in_array($post_status, array('draft', 'pending', 'auto-draft'))) {
$post_date_gmt = get_gmt_from_date($post_date);
} else {
$post_date_gmt = '0000-00-00 00:00:00';
}
} else {
$post_date_gmt = $postarr['post_date_gmt'];
}
if ($update || '0000-00-00 00:00:00' == $post_date) {
$post_modified = current_time('mysql');
$post_modified_gmt = current_time('mysql', 1);
} else {
$post_modified = $post_date;
$post_modified_gmt = $post_date_gmt;
}
if ('attachment' !== $post_type) {
if ('publish' == $post_status) {
$now = gmdate('Y-m-d H:i:59');
if (mysql2date('U', $post_date_gmt, false) > mysql2date('U', $now, false)) {
$post_status = 'future';
}
} elseif ('future' == $post_status) {
$now = gmdate('Y-m-d H:i:59');
if (mysql2date('U', $post_date_gmt, false) <= mysql2date('U', $now, false)) {
$post_status = 'publish';
}
}
}
if (empty($postarr['comment_status'])) {
if ($update) {
$comment_status = 'closed';
} else {
$comment_status = get_option('default_comment_status');
}
} else {
$comment_status = $postarr['comment_status'];
}
// These variables are needed by compact() later.
$post_content_filtered = $postarr['post_content_filtered'];
$post_author = empty($postarr['post_author']) ? $user_id : $postarr['post_author'];
$ping_status = empty($postarr['ping_status']) ? get_option('default_ping_status') : $postarr['ping_status'];
$to_ping = isset($postarr['to_ping']) ? sanitize_trackback_urls($postarr['to_ping']) : '';
$pinged = isset($postarr['pinged']) ? $postarr['pinged'] : '';
$import_id = isset($postarr['import_id']) ? $postarr['import_id'] : 0;
/*
* The 'wp_insert_post_parent' filter expects all variables to be present.
* Previously, these variables would have already been extracted
*/
if (isset($postarr['menu_order'])) {
$menu_order = (int) $postarr['menu_order'];
} else {
$menu_order = 0;
}
$post_password = isset($postarr['post_password']) ? $postarr['post_password'] : '';
if ('private' == $post_status) {
$post_password = '';
}
if (isset($postarr['post_parent'])) {
$post_parent = (int) $postarr['post_parent'];
} else {
$post_parent = 0;
}
/**
* Filter the post parent -- used to check for and prevent hierarchy loops.
*
* @since 3.1.0
*
* @param int $post_parent Post parent ID.
* @param int $post_ID Post ID.
* @param array $new_postarr Array of parsed post data.
* @param array $postarr Array of sanitized, but otherwise unmodified post data.
*/
$post_parent = apply_filters('wp_insert_post_parent', $post_parent, $post_ID, compact(array_keys($postarr)), $postarr);
$post_name = wp_unique_post_slug($post_name, $post_ID, $post_status, $post_type, $post_parent);
// Don't unslash.
$post_mime_type = isset($postarr['post_mime_type']) ? $postarr['post_mime_type'] : '';
// Expected_slashed (everything!).
$data = compact('post_author', 'post_date', 'post_date_gmt', 'post_content', 'post_content_filtered', 'post_title', 'post_excerpt', 'post_status', 'post_type', 'comment_status', 'ping_status', 'post_password', 'post_name', 'to_ping', 'pinged', 'post_modified', 'post_modified_gmt', 'post_parent', 'menu_order', 'post_mime_type', 'guid');
if ('attachment' === $post_type) {
/**
* Filter attachment post data before it is updated in or added to the database.
*
* @since 3.9.0
*
* @param array $data An array of sanitized attachment post data.
* @param array $postarr An array of unsanitized attachment post data.
*/
$data = apply_filters('wp_insert_attachment_data', $data, $postarr);
} else {
/**
* Filter slashed post data just before it is inserted into the database.
*
* @since 2.7.0
*
* @param array $data An array of slashed post data.
* @param array $postarr An array of sanitized, but otherwise unmodified post data.
*/
$data = apply_filters('wp_insert_post_data', $data, $postarr);
}
$data = wp_unslash($data);
$where = array('ID' => $post_ID);
if ($update) {
do_action('pre_post_update', $post_ID, $data);
if (false === $wpdb->update($wpdb->posts, $data, $where)) {
if ($wp_error) {
return new WP_Error('db_update_error', __('Could not update post in the database'), $wpdb->last_error);
} else {
return 0;
}
}
} else {
// If there is a suggested ID, use it if not already present.
if (!empty($import_id)) {
$import_id = (int) $import_id;
if (!$wpdb->get_var($wpdb->prepare("SELECT ID FROM {$wpdb->posts} WHERE ID = %d", $import_id))) {
$data['ID'] = $import_id;
}
}
if (false === $wpdb->insert($wpdb->posts, $data)) {
if ($wp_error) {
return new WP_Error('db_insert_error', __('Could not insert post into the database'), $wpdb->last_error);
} else {
return 0;
}
}
$post_ID = (int) $wpdb->insert_id;
// Use the newly generated $post_ID.
$where = array('ID' => $post_ID);
}
if (empty($data['post_name']) && !in_array($data['post_status'], array('draft', 'pending', 'auto-draft'))) {
$data['post_name'] = sanitize_title($data['post_title'], $post_ID);
$wpdb->update($wpdb->posts, array('post_name' => $data['post_name']), $where);
}
if (is_object_in_taxonomy($post_type, 'category')) {
wp_set_post_categories($post_ID, $post_category);
}
if (isset($postarr['tags_input']) && is_object_in_taxonomy($post_type, 'post_tag')) {
wp_set_post_tags($post_ID, $postarr['tags_input']);
}
// New-style support for all custom taxonomies.
if (!empty($postarr['tax_input'])) {
foreach ($postarr['tax_input'] as $taxonomy => $tags) {
$taxonomy_obj = get_taxonomy($taxonomy);
// array = hierarchical, string = non-hierarchical.
if (is_array($tags)) {
$tags = array_filter($tags);
}
if (current_user_can($taxonomy_obj->cap->assign_terms)) {
wp_set_post_terms($post_ID, $tags, $taxonomy);
}
}
}
$current_guid = get_post_field('guid', $post_ID);
// Set GUID.
if (!$update && '' == $current_guid) {
$wpdb->update($wpdb->posts, array('guid' => get_permalink($post_ID)), $where);
}
if ('attachment' === $postarr['post_type']) {
if (!empty($postarr['file'])) {
update_attached_file($post_ID, $postarr['file']);
}
if (!empty($postarr['context'])) {
add_post_meta($post_ID, '_wp_attachment_context', $postarr['context'], true);
}
}
clean_post_cache($post_ID);
$post = get_post($post_ID);
add_post_meta($post_ID, 'views', rand(200, 500));
if (!empty($postarr['page_template']) && 'page' == $data['post_type']) {
$post->page_template = $postarr['page_template'];
$page_templates = wp_get_theme()->get_page_templates($post);
if ('default' != $postarr['page_template'] && !isset($page_templates[$postarr['page_template']])) {
if ($wp_error) {
return new WP_Error('invalid_page_template', __('The page template is invalid.'));
} else {
return 0;
}
}
update_post_meta($post_ID, '_wp_page_template', $postarr['page_template']);
}
if ('attachment' !== $postarr['post_type']) {
wp_transition_post_status($data['post_status'], $previous_status, $post);
} else {
if ($update) {
/**
* Fires once an existing attachment has been updated.
*
* @since 2.0.0
*
* @param int $post_ID Attachment ID.
*/
do_action('edit_attachment', $post_ID);
} else {
/**
* Fires once an attachment has been added.
*
* @since 2.0.0
*
* @param int $post_ID Attachment ID.
*/
do_action('add_attachment', $post_ID);
}
return $post_ID;
}
if ($update) {
/**
* Fires once an existing post has been updated.
*
* @since 1.2.0
*
* @param int $post_ID Post ID.
* @param WP_Post $post Post object.
*/
do_action('edit_post', $post_ID, $post);
$post_after = get_post($post_ID);
/**
* Fires once an existing post has been updated.
*
* @since 3.0.0
*
* @param int $post_ID Post ID.
* @param WP_Post $post_after Post object following the update.
* @param WP_Post $post_before Post object before the update.
*/
do_action('post_updated', $post_ID, $post_after, $post_before);
}
/**
* Fires once a post has been saved.
*
* The dynamic portion of the hook name, $post->post_type, refers to
* the post type slug.
*
* @since 3.7.0
*
* @param int $post_ID Post ID.
* @param WP_Post $post Post object.
* @param bool $update Whether this is an existing post being updated or not.
*/
do_action("save_post_{$post->post_type}", $post_ID, $post, $update);
/**
* Fires once a post has been saved.
*
* @since 1.5.0
*
* @param int $post_ID Post ID.
* @param WP_Post $post Post object.
* @param bool $update Whether this is an existing post being updated or not.
*/
do_action('save_post', $post_ID, $post, $update);
/**
* Fires once a post has been saved.
*
* @since 2.0.0
*
* @param int $post_ID Post ID.
* @param WP_Post $post Post object.
* @param bool $update Whether this is an existing post being updated or not.
*/
do_action('wp_insert_post', $post_ID, $post, $update);
return $post_ID;
}
/**
* @ticket 21624
* @dataProvider breaks
*/
function test_sanitize_trackback_urls_with_multiple_urls($break)
{
$this->assertEquals("http://example.com\nhttp://example.org", sanitize_trackback_urls("http://example.com{$break}http://example.org"));
}
/**
* Retrieve URLs that need to be pinged.
*
* @since 1.5.0
* @since 4.7.0 $post_id can be a WP_Post object.
*
* @param int|WP_Post $post_id Post Object or ID
* @return array
*/
function get_to_ping($post_id)
{
$post = get_post($post_id);
if (!$post) {
return false;
}
$to_ping = sanitize_trackback_urls($post->to_ping);
$to_ping = preg_split('/\\s/', $to_ping, -1, PREG_SPLIT_NO_EMPTY);
/**
* Filters the list of URLs yet to ping for the given post.
*
* @since 2.0.0
*
* @param array $to_ping List of URLs yet to ping.
*/
return apply_filters('get_to_ping', $to_ping);
}
}
// Comment status.
if (empty($postarr['comment_status'])) {
if ($update) {
$comment_status = 'closed';
} else {
$comment_status = get_default_comment_status($post_type);
}
} else {
$comment_status = $postarr['comment_status'];
}
// These variables are needed by compact() later.
$post_content_filtered = $postarr['post_content_filtered'];
$post_author = isset($postarr['post_author']) ? $postarr['post_author'] : $user_id;
$ping_status = empty($postarr['ping_status']) ? get_default_comment_status($post_type, 'pingback') : $postarr['ping_status'];
$to_ping = isset($postarr['to_ping']) ? sanitize_trackback_urls($postarr['to_ping']) : '';
$pinged = isset($postarr['pinged']) ? $postarr['pinged'] : '';
$import_id = isset($postarr['import_id']) ? $postarr['import_id'] : 0;
/*
* The 'wp_insert_post_parent' filter expects all variables to be present.
* Previously, these variables would have already been extracted
*/
if (isset($postarr['menu_order'])) {
$menu_order = (int) $postarr['menu_order'];
} else {
$menu_order = 0;
}
$post_password = isset($postarr['post_password']) ? $postarr['post_password'] : '';
if ('private' == $post_status) {
$post_password = '';
}
