} // make sure the attempting uploader has permission to edit posts if (!current_user_can('edit_posts')) { die("<li class='error'>" . __('Your Admin account does not have permission to "edit_posts".', 'catablog') . "</li>"); } // make sure the attempting uploader had passed the correct nonce value check_admin_referer('catablog_swfupload'); // create global variable for catablog class global $wp_plugin_catablog_class; $tmp_name = $_FILES['Filedata']['tmp_name']; $_FILES['new_image'] = $_FILES['Filedata']; if (strlen($tmp_name) < 1) { die("<li class='error'>" . __('Image could not be uploaded to the server, please try again.', 'catablog') . "</li>"); } $new_item = new CataBlogItem(); $valid_image = $new_item->validateImage($tmp_name); if ($valid_image === true) { $new_item_title = $_FILES['Filedata']['name']; $new_item_title = preg_replace('/\\.[^.]+$/', '', $new_item_title); $new_item_title = str_replace(array('_', '-', '.'), ' ', $new_item_title); $new_item_order = wp_count_posts($new_item->getCustomPostName())->publish + 1; $new_item->setOrder($new_item_order); $new_item->setTitle($new_item_title); $new_item->setImage($tmp_name); $new_item->setSubImages(array()); $default_term = $wp_plugin_catablog_class->get_default_term(); $new_item->setCategories(array($default_term->term_id => $default_term->name)); $new_item->save(); // load the user settings for which fields to display in the quick edit form. $user = wp_get_current_user(); $user_settings = get_user_meta($user->ID, $wp_plugin_catablog_class->get_custom_user_meta_name(), true);
public function admin_create($init_run = false) { $error = false; $new_item = new CataBlogItem(); $nonce_verified = wp_verify_nonce($_REQUEST['_catablog_create_nonce'], 'catablog_create'); if ($nonce_verified) { $tmp_name = $_FILES['new_image']['tmp_name']; if ($this->string_length($tmp_name) > 0) { $validate = $new_item->validateImage($tmp_name); if ($validate === true) { $new_item_title = $_FILES['new_image']['name']; $new_item_title = preg_replace('/\\.[^.]+$/', '', $new_item_title); $new_item_title = str_replace(array('_', '-', '.'), ' ', $new_item_title); $new_item_order = wp_count_posts($this->custom_post_name)->publish + 1; $new_item->setOrder($new_item_order); $new_item->setTitle($new_item_title); $new_item->setImage($tmp_name); $new_item->setSubImages(array()); $default_term = $this->get_default_term(); $new_item->setCategories(array($default_term->term_id => $default_term->name)); $new_item->save(); // wp_redirect( self_admin_url("admin.php?page=catablog&id=".$new_item->getId()) ); header('Location: admin.php?page=catablog&id=' . $new_item->getId()); die; } else { $error = $validate; } } else { $error = __("The file you selected was to large or you didn't select anything at all, please try again.", 'catablog'); } } else { $error = __("WordPress Nonce Error, please reload the form and try again.", 'catablog'); } if (!$init_run && $error !== false) { $this->wp_error($error); include_once $this->directories['template'] . '/admin-new.php'; } }