You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
835 lines
26 KiB
835 lines
26 KiB
<?php
|
|
|
|
if (!defined('UPDRAFTCENTRAL_CLIENT_DIR')) die('No access.');
|
|
|
|
class UpdraftCentral_Comments_Commands extends UpdraftCentral_Commands {
|
|
|
|
/**
|
|
* The _search_comments function searches all available comments based
|
|
* on the following query parameters (type, status, search)
|
|
*
|
|
* Search Parameters/Filters:
|
|
* type - comment types can be 'comment', 'trackback' and 'pingback', defaults to 'comment'
|
|
* status - comment status can be 'hold' or unapprove, 'approve', 'spam', 'trash'
|
|
* search - user generated content or keyword
|
|
*
|
|
* @param array $query The query to search comments
|
|
* @return array
|
|
*/
|
|
private function _search_comments($query) {
|
|
|
|
// Basic parameters to the query and should display
|
|
// the results in descending order (latest comments) first
|
|
// based on their generated IDs
|
|
|
|
$args = array(
|
|
'orderby' => 'ID',
|
|
'order' => 'DESC',
|
|
'type' => $query['type'],
|
|
'status' => $query['status'],
|
|
'search' => esc_attr($query['search']),
|
|
);
|
|
|
|
$query = new WP_Comment_Query;
|
|
$found_comments = $query->query($args);
|
|
|
|
$comments = array();
|
|
foreach ($found_comments as $comment) {
|
|
|
|
// We're returning a collection of comment in an array,
|
|
// in sync with the originator of the request on the ui side
|
|
// so, we're pulling it one by one into the array before
|
|
// returning it.
|
|
|
|
if (!in_array($comment, $comments)) {
|
|
array_push($comments, $comment);
|
|
}
|
|
}
|
|
|
|
return $comments;
|
|
}
|
|
|
|
/**
|
|
* The _calculate_pages function generates and builds the pagination links
|
|
* based on the current search parameters/filters. Please see _search_comments
|
|
* for the breakdown of these parameters.
|
|
*
|
|
* @param array $query Query to generate pagination links
|
|
* @return array
|
|
*/
|
|
private function _calculate_pages($query) {
|
|
$per_page_options = array(10, 20, 30, 40, 50);
|
|
|
|
if (!empty($query)) {
|
|
if (!empty($query['search'])) {
|
|
return array(
|
|
'page_count' => 1,
|
|
'page_no' => 1
|
|
);
|
|
}
|
|
|
|
$pages = array();
|
|
$page_query = new WP_Comment_Query;
|
|
|
|
// Here, we're pulling the comments based on the
|
|
// two parameters namely type and status.
|
|
//
|
|
// The number of results/comments found will then
|
|
// be use to compute for the number of pages to be
|
|
// displayed as navigation links when browsing all
|
|
// comments from the frontend.
|
|
|
|
$comments = $page_query->query(array(
|
|
'type' => $query['type'],
|
|
'status' => $query['status']
|
|
));
|
|
|
|
$total_comments = count($comments);
|
|
$page_count = ceil($total_comments / $query['per_page']);
|
|
|
|
if ($page_count > 1) {
|
|
for ($i = 0; $i < $page_count; $i++) {
|
|
if ($i + 1 == $query['page_no']) {
|
|
$paginator_item = array(
|
|
'value' => $i+1,
|
|
'setting' => 'disabled'
|
|
);
|
|
} else {
|
|
$paginator_item = array(
|
|
'value' => $i+1
|
|
);
|
|
}
|
|
array_push($pages, $paginator_item);
|
|
}
|
|
|
|
if ($query['page_no'] >= $page_count) {
|
|
$page_next = array(
|
|
'value' => $page_count,
|
|
'setting' => 'disabled'
|
|
);
|
|
} else {
|
|
$page_next = array(
|
|
'value' => $query['page_no'] + 1
|
|
);
|
|
}
|
|
|
|
if (1 === $query['page_no']) {
|
|
$page_prev = array(
|
|
'value' => 1,
|
|
'setting' => 'disabled'
|
|
);
|
|
} else {
|
|
$page_prev = array(
|
|
'value' => $query['page_no'] - 1
|
|
);
|
|
}
|
|
|
|
return array(
|
|
'page_no' => $query['page_no'],
|
|
'per_page' => $query['per_page'],
|
|
'page_count' => $page_count,
|
|
'pages' => $pages,
|
|
'page_next' => $page_next,
|
|
'page_prev' => $page_prev,
|
|
'total_results' => $total_comments,
|
|
'per_page_options' => $per_page_options
|
|
);
|
|
|
|
} else {
|
|
return array(
|
|
'page_no' => $query['page_no'],
|
|
'per_page' => $query['per_page'],
|
|
'page_count' => $page_count,
|
|
'total_results' => $total_comments,
|
|
'per_page_options' => $per_page_options
|
|
);
|
|
}
|
|
} else {
|
|
return array(
|
|
'per_page_options' => $per_page_options
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* The get_blog_sites function pulls blog sites available for the current WP instance.
|
|
* If Multisite is enabled on the server, then sites under the network will be pulled, otherwise, it will return an empty array.
|
|
*
|
|
* @return array
|
|
*/
|
|
private function get_blog_sites() {
|
|
|
|
if (!is_multisite()) return array();
|
|
|
|
// Initialize array container
|
|
$sites = $network_sites = array();
|
|
|
|
// Check to see if latest get_sites (available on WP version >= 4.6) function is
|
|
// available to pull any available sites from the current WP instance. If not, then
|
|
// we're going to use the fallback function wp_get_sites (for older version).
|
|
|
|
if (function_exists('get_sites') && class_exists('WP_Site_Query')) {
|
|
$network_sites = get_sites();
|
|
} else {
|
|
if (function_exists('wp_get_sites')) {
|
|
$network_sites = wp_get_sites();
|
|
}
|
|
}
|
|
|
|
// We only process if sites array is not empty, otherwise, bypass
|
|
// the next block.
|
|
|
|
if (!empty($network_sites)) {
|
|
foreach ($network_sites as $site) {
|
|
|
|
// Here we're checking if the site type is an array, because
|
|
// we're pulling the blog_id property based on the type of
|
|
// site returned.
|
|
// get_sites returns an array of object, whereas the wp_get_sites
|
|
// function returns an array of array.
|
|
|
|
$blog_id = (is_array($site)) ? $site['blog_id'] : $site->blog_id;
|
|
|
|
|
|
// We're saving the blog_id and blog name as an associative item
|
|
// into the sites array, that will be used as "Sites" option in
|
|
// the frontend.
|
|
|
|
$sites[$blog_id] = get_blog_details($blog_id)->blogname;
|
|
}
|
|
}
|
|
|
|
return $sites;
|
|
}
|
|
|
|
/**
|
|
* The get_wp_option function pulls current blog options
|
|
* from the database using either following functions:
|
|
* - get_blog_option (for multisite)
|
|
* - get_option (for ordinary blog)
|
|
*
|
|
* @param array $blog_id This is the specific blog ID
|
|
* @param array $setting specifies settings
|
|
* @return array
|
|
*/
|
|
private function _get_wp_option($blog_id, $setting) {
|
|
return is_multisite() ? get_blog_option($blog_id, $setting) : get_option($setting);
|
|
}
|
|
|
|
/**
|
|
* The get_comments function pull all the comments from the database
|
|
* based on the current search parameters/filters. Please see _search_comments
|
|
* for the breakdown of these parameters.
|
|
*
|
|
* @param array $query Specific query to pull comments
|
|
* @return array
|
|
*/
|
|
public function get_comments($query) {
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($query['blog_id'])) $blog_id = $query['blog_id'];
|
|
|
|
|
|
// Here, we're switching to the actual blog that we need
|
|
// to pull comments from.
|
|
|
|
$switched = false;
|
|
if (function_exists('switch_to_blog')) {
|
|
$switched = switch_to_blog($blog_id);
|
|
}
|
|
|
|
if (!empty($query['search'])) {
|
|
// If a search keyword is present, then we'll call the _search_comments
|
|
// function to process the query.
|
|
|
|
$comments = $this->_search_comments($query);
|
|
} else {
|
|
// Set default parameter values if the designated
|
|
// parameters are empty.
|
|
|
|
if (empty($query['per_page'])) {
|
|
$query['per_page'] = 10;
|
|
}
|
|
if (empty($query['page_no'])) {
|
|
$query['page_no'] = 1;
|
|
}
|
|
if (empty($query['type'])) {
|
|
$query['type'] = '';
|
|
}
|
|
if (empty($query['status'])) {
|
|
$query['status'] = '';
|
|
}
|
|
|
|
// Since WP_Comment_Query parameters doesn't have a "page" attribute, we
|
|
// need to compute for the offset to get the exact content based on the
|
|
// current page and the number of items per page.
|
|
|
|
$offset = ((int) $query['page_no'] - 1) * (int) $query['per_page'];
|
|
$args = array(
|
|
'orderby' => 'ID',
|
|
'order' => 'DESC',
|
|
'number' => $query['per_page'],
|
|
'offset' => $offset,
|
|
'type' => $query['type'],
|
|
'status' => $query['status']
|
|
);
|
|
|
|
$comments_query = new WP_Comment_Query;
|
|
$comments = $comments_query->query($args);
|
|
}
|
|
|
|
// If no comments are found based on the current query then
|
|
// we return with error.
|
|
|
|
if (empty($comments)) {
|
|
$result = array('message' => 'comments_not_found');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Otherwise, we're going to process each comment
|
|
// before we return it to the one issuing the request.
|
|
//
|
|
// Process in the sense that we add additional related info
|
|
// such as the post tile where the comment belongs to, the
|
|
// comment status, a formatted date field, and to which parent comment
|
|
// does the comment was intended to be as a reply.
|
|
|
|
foreach ($comments as &$comment) {
|
|
$comment = get_comment($comment->comment_ID, ARRAY_A);
|
|
if ($comment) {
|
|
$post = get_post($comment['comment_post_ID']);
|
|
|
|
if ($post) $comment['in_response_to'] = $post->post_title;
|
|
if (!empty($comment['comment_parent'])) {
|
|
$parent_comment = get_comment($comment['comment_parent'], ARRAY_A);
|
|
if ($parent_comment) $comment['in_reply_to'] = $parent_comment['comment_author'];
|
|
}
|
|
|
|
// We're formatting the comment_date to be exactly the same
|
|
// with that of WP Comments table (e.g. 2016/12/21 at 10:30 PM)
|
|
|
|
$comment['comment_date'] = date('Y/m/d \a\t g:i a', strtotime($comment['comment_date']));
|
|
|
|
$status = wp_get_comment_status($comment['comment_ID']);
|
|
if ($status) {
|
|
$comment['comment_status'] = $status;
|
|
}
|
|
}
|
|
}
|
|
|
|
// We return the following to the one issuing
|
|
// the request.
|
|
|
|
$result = array(
|
|
'comments' => $comments,
|
|
'paging' => $this->_calculate_pages($query)
|
|
);
|
|
|
|
|
|
// Here, we're restoring to the current (default) blog before we
|
|
// do the switched.
|
|
|
|
if (function_exists('restore_current_blog') && $switched) {
|
|
restore_current_blog();
|
|
}
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The get_comment_filters function builds a array of options
|
|
* to be use as filters for the search function on the frontend.
|
|
*/
|
|
public function get_comment_filters() {
|
|
// Options for comment_types field
|
|
$comment_types = apply_filters('admin_comment_types_dropdown', array(
|
|
'comment' => __('Comments'),
|
|
'pings' => __('Pings'),
|
|
));
|
|
|
|
// Options for comment_status field
|
|
$comment_statuses = array(
|
|
'approve' => __('Approve'),
|
|
'hold' => __('Hold or Unapprove'),
|
|
'trash' => __('Trash'),
|
|
'spam' => __('Spam'),
|
|
);
|
|
|
|
// Pull sites options if available.
|
|
$sites = $this->get_blog_sites();
|
|
|
|
$result = array(
|
|
'sites' => $sites,
|
|
'types' => $comment_types,
|
|
'statuses' => $comment_statuses,
|
|
'paging' => $this->_calculate_pages(null),
|
|
);
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The get_settings function pulls the current discussion settings
|
|
* option values.
|
|
*
|
|
* @param array $params Passing specific params for getting current discussion settings
|
|
* @return array
|
|
*/
|
|
public function get_settings($params) {
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to manage and edit
|
|
// WP options then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'manage_options')) {
|
|
$result = array('error' => true, 'message' => 'insufficient_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Pull sites options if available.
|
|
$sites = $this->get_blog_sites();
|
|
|
|
// Wrap current discussion settings values into an array item
|
|
// named settings.
|
|
|
|
$result = array(
|
|
'settings' => array(
|
|
'default_pingback_flag' => $this->_get_wp_option($blog_id, 'default_pingback_flag'),
|
|
'default_ping_status' => $this->_get_wp_option($blog_id, 'default_ping_status'),
|
|
'default_comment_status' => $this->_get_wp_option($blog_id, 'default_comment_status'),
|
|
'require_name_email' => $this->_get_wp_option($blog_id, 'require_name_email'),
|
|
'comment_registration' => $this->_get_wp_option($blog_id, 'comment_registration'),
|
|
'close_comments_for_old_posts' => $this->_get_wp_option($blog_id, 'close_comments_for_old_posts'),
|
|
'close_comments_days_old' => $this->_get_wp_option($blog_id, 'close_comments_days_old'),
|
|
'thread_comments' => $this->_get_wp_option($blog_id, 'thread_comments'),
|
|
'thread_comments_depth' => $this->_get_wp_option($blog_id, 'thread_comments_depth'),
|
|
'page_comments' => $this->_get_wp_option($blog_id, 'page_comments'),
|
|
'comments_per_page' => $this->_get_wp_option($blog_id, 'comments_per_page'),
|
|
'default_comments_page' => $this->_get_wp_option($blog_id, 'default_comments_page'),
|
|
'comment_order' => $this->_get_wp_option($blog_id, 'comment_order'),
|
|
'comments_notify' => $this->_get_wp_option($blog_id, 'comments_notify'),
|
|
'moderation_notify' => $this->_get_wp_option($blog_id, 'moderation_notify'),
|
|
'comment_moderation' => $this->_get_wp_option($blog_id, 'comment_moderation'),
|
|
'comment_whitelist' => $this->_get_wp_option($blog_id, 'comment_whitelist'),
|
|
'comment_max_links' => $this->_get_wp_option($blog_id, 'comment_max_links'),
|
|
'moderation_keys' => $this->_get_wp_option($blog_id, 'moderation_keys'),
|
|
'blacklist_keys' => $this->_get_wp_option($blog_id, 'blacklist_keys'),
|
|
),
|
|
'sites' => $sites,
|
|
);
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The update_settings function updates the discussion settings
|
|
* basing on the user generated content/option from the frontend
|
|
* form.
|
|
*
|
|
* @param array $params Specific params to update settings based on discussion
|
|
* @return array
|
|
*/
|
|
public function update_settings($params) {
|
|
|
|
// Extract settings values from passed parameters.
|
|
$settings = $params['settings'];
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to manage and edit
|
|
// WP options then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'manage_options')) {
|
|
$result = array('error' => true, 'message' => 'insufficient_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Here, we're sanitizing the input fields before we save them to the database
|
|
// for safety and security reason. The "explode" and "implode" functions are meant
|
|
// to maintain the line breaks associated with a textarea input/value.
|
|
|
|
foreach ($settings as $key => $value) {
|
|
|
|
// We're using update_blog_option and update_option altogether to update the current
|
|
// discussion settings.
|
|
|
|
if (is_multisite()) {
|
|
update_blog_option($blog_id, $key, implode("\n", array_map('sanitize_text_field', explode("\n", $value))));
|
|
} else {
|
|
update_option($key, implode("\n", array_map('sanitize_text_field', explode("\n", $value))));
|
|
}
|
|
}
|
|
|
|
// We're not checking for errors here, but instead we're directly returning a success (error = false)
|
|
// status always, because WP's update_option will return fail if values were not changed, meaning
|
|
// previous values were not changed by the user's current request, not an actual exception thrown.
|
|
// Thus, giving a false positive message or report to the frontend.
|
|
|
|
$result = array('error' => false, 'message' => 'settings_updated', 'values' => array());
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The get_comment function pulls a single comment based
|
|
* on a comment ID.
|
|
*
|
|
* @param array $params Specific params for getting a single comment
|
|
* @return array
|
|
*/
|
|
public function get_comment($params) {
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to moderate or edit
|
|
// a comment then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'moderate_comments')) {
|
|
$result = array('error' => true, 'message' => 'insufficient_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Here, we're switching to the actual blog that we need
|
|
// to pull comments from.
|
|
|
|
$switched = false;
|
|
if (function_exists('switch_to_blog')) {
|
|
$switched = switch_to_blog($blog_id);
|
|
}
|
|
|
|
// Get comment by comment_ID parameter and return result as an array.
|
|
$result = array(
|
|
'comment' => get_comment($params['comment_id'], ARRAY_A)
|
|
);
|
|
|
|
|
|
// Here, we're restoring to the current (default) blog before we
|
|
// do the switched.
|
|
|
|
if (function_exists('restore_current_blog') && $switched) {
|
|
restore_current_blog();
|
|
}
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The reply_comment function creates a new comment as a reply
|
|
* to a certain/selected comment.
|
|
*
|
|
* @param array $params Specific params to create a new comment reply
|
|
* @return array
|
|
*/
|
|
public function reply_comment($params) {
|
|
|
|
// Extract reply info from the passed parameters
|
|
$reply = $params['comment'];
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to moderate or edit
|
|
// a comment then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'moderate_comments')) {
|
|
$result = array('error' => true, 'message' => 'comment_reply_no_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Here, we're switching to the actual blog that we need
|
|
// to apply our changes.
|
|
|
|
$switched = false;
|
|
if (function_exists('switch_to_blog')) {
|
|
$switched = switch_to_blog($blog_id);
|
|
}
|
|
|
|
|
|
// Get comment by comment_ID parameter.
|
|
$comment = get_comment($reply['comment_id']);
|
|
if ($comment) {
|
|
|
|
// Get the currently logged in user
|
|
$user = wp_get_current_user();
|
|
|
|
// If the current comment was not approved yet then
|
|
// we need to approve it before we create a reply to
|
|
// to the comment, mimicking exactly the WP behaviour
|
|
// in terms of creating a reply to a comment.
|
|
|
|
if (empty($comment->comment_approved)) {
|
|
$update_data = array(
|
|
'comment_ID' => $reply['comment_id'],
|
|
'comment_approved' => 1
|
|
);
|
|
wp_update_comment($update_data);
|
|
}
|
|
|
|
// Build new comment parameters based on current user info and
|
|
// the target comment for the reply.
|
|
$data = array(
|
|
'comment_post_ID' => $comment->comment_post_ID,
|
|
'comment_author' => $user->display_name,
|
|
'comment_author_email' => $user->user_email,
|
|
'comment_author_url' => $user->user_url,
|
|
'comment_content' => $reply['message'],
|
|
'comment_parent' => $reply['comment_id'],
|
|
'user_id' => $user->ID,
|
|
'comment_date' => current_time('mysql'),
|
|
'comment_approved' => 1
|
|
);
|
|
|
|
// Create new comment based on the parameters above, and return
|
|
// the status accordingly.
|
|
|
|
if (wp_insert_comment($data)) {
|
|
$result = array('error' => false, 'message' => 'comment_replied_with_comment_author', 'values' => array($comment->comment_author));
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_reply_failed_with_error', 'values' => array($comment->comment_ID));
|
|
}
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_does_not_exists_error', 'values' => array($reply['comment_id']));
|
|
}
|
|
|
|
|
|
// Here, we're restoring to the current (default) blog before we
|
|
// do the switched.
|
|
|
|
if (function_exists('restore_current_blog') && $switched) {
|
|
restore_current_blog();
|
|
}
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The edit_comment function saves new information for the
|
|
* currently selected comment.
|
|
*
|
|
* @param array $params Specific params for editing a coment
|
|
* @return array
|
|
*/
|
|
public function edit_comment($params) {
|
|
|
|
// Extract new comment info from the passed parameters
|
|
$comment = $params['comment'];
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to moderate or edit
|
|
// a comment then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'moderate_comments')) {
|
|
$result = array('error' => true, 'message' => 'comment_edit_no_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Here, we're switching to the actual blog that we need
|
|
// to apply our changes.
|
|
|
|
$switched = false;
|
|
if (function_exists('switch_to_blog')) {
|
|
$switched = switch_to_blog($blog_id);
|
|
}
|
|
|
|
|
|
// Get current comment details
|
|
$original_comment = get_comment($comment['comment_id']);
|
|
if ($original_comment) {
|
|
$data = array();
|
|
|
|
// Replace "comment_id" with "comment_ID" since WP does not recognize
|
|
// the small case "id".
|
|
$comment['comment_ID'] = $original_comment->comment_ID;
|
|
unset($comment['comment_id']);
|
|
|
|
// Here, we're sanitizing the input fields before we save them to the database
|
|
// for safety and security reason. The "explode" and "implode" functions are meant
|
|
// to maintain the line breaks associated with a textarea input/value.
|
|
|
|
foreach ($comment as $key => $value) {
|
|
$data[$key] = implode("\n", array_map('sanitize_text_field', explode("\n", $value)));
|
|
}
|
|
|
|
// Update existing comment based on the passed parameter fields and
|
|
// return the status accordingly.
|
|
|
|
if (wp_update_comment($data)) {
|
|
$result = array('error' => false, 'message' => 'comment_edited_with_comment_author', 'values' => array($original_comment->comment_author));
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_edit_failed_with_error', 'values' => array($original_comment->comment_ID));
|
|
}
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_does_not_exists_error', 'values' => array($comment['comment_id']));
|
|
}
|
|
|
|
// Here, we're restoring to the current (default) blog before we
|
|
// do the switched.
|
|
|
|
if (function_exists('restore_current_blog') && $switched) {
|
|
restore_current_blog();
|
|
}
|
|
|
|
return $this->_response($result);
|
|
}
|
|
|
|
/**
|
|
* The update_comment_status function is a generic handler for the following
|
|
* comment actions:
|
|
*
|
|
* - approve comment
|
|
* - unapprove comment
|
|
* - set comment as spam
|
|
* - move commment to trash
|
|
* - delete comment permanently
|
|
* - unset comment as spam
|
|
* - restore comment
|
|
*
|
|
* @param array $params Specific params to update comment status
|
|
* @return array
|
|
*/
|
|
public function update_comment_status($params) {
|
|
|
|
// Here, we're getting the current blog id. If blog id
|
|
// is passed along with the parameters then we override
|
|
// that current (default) value with the parameter blog id value.
|
|
|
|
$blog_id = get_current_blog_id();
|
|
if (isset($params['blog_id'])) $blog_id = $params['blog_id'];
|
|
|
|
|
|
// If user does not have sufficient privileges to moderate or edit
|
|
// a comment then we return with error.
|
|
|
|
if (!current_user_can_for_blog($blog_id, 'moderate_comments')) {
|
|
$result = array('error' => true, 'message' => 'comment_change_status_no_permission');
|
|
return $this->_response($result);
|
|
}
|
|
|
|
// Here, we're switching to the actual blog that we need
|
|
// to apply our changes.
|
|
|
|
$switched = false;
|
|
if (function_exists('switch_to_blog')) {
|
|
$switched = switch_to_blog($blog_id);
|
|
}
|
|
|
|
|
|
// We make sure that we still have a valid comment from the server
|
|
// before we apply the currently selected action.
|
|
|
|
$comment = get_comment($params['comment_id']);
|
|
if ($comment) {
|
|
$post = get_post($comment->comment_post_ID);
|
|
|
|
if ($post) $comment->in_response_to = $post->post_title;
|
|
if (!empty($comment->comment_parent)) {
|
|
$parent_comment = get_comment($comment->comment_parent);
|
|
if ($parent_comment) $comment->in_reply_to = $parent_comment->comment_author;
|
|
}
|
|
|
|
// We're formatting the comment_date to be exactly the same
|
|
// with that of WP Comments table (e.g. 2016/12/21 at 10:30 PM)
|
|
|
|
$comment->comment_date = date('Y/m/d \a\t g:i a', strtotime($comment->comment_date));
|
|
|
|
$status = wp_get_comment_status($comment->comment_ID);
|
|
if ($status) {
|
|
$comment->comment_status = $status;
|
|
}
|
|
|
|
$succeeded = false;
|
|
$message = '';
|
|
|
|
// Here, we're using WP's wp_set_comment_status function to change the state
|
|
// of the selected comment based on the current action, except for the "delete" action
|
|
// where we use the wp_delete_comment to delete the comment permanently by passing
|
|
// "true" to the second argument.
|
|
|
|
switch ($params['action']) {
|
|
case 'approve':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'approve');
|
|
$message = 'comment_approve_with_comment_author';
|
|
break;
|
|
case 'unapprove':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'hold');
|
|
$message = 'comment_unapprove_with_comment_author';
|
|
break;
|
|
case 'spam':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'spam');
|
|
$message = 'comment_spam_with_comment_author';
|
|
break;
|
|
case 'trash':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'trash');
|
|
$message = 'comment_trash_with_comment_author';
|
|
break;
|
|
case 'delete':
|
|
$succeeded = wp_delete_comment($params['comment_id'], true);
|
|
$message = 'comment_delete_with_comment_author';
|
|
break;
|
|
case 'notspam':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'hold');
|
|
$message = 'comment_not_spam_with_comment_author';
|
|
break;
|
|
case 'restore':
|
|
$succeeded = wp_set_comment_status($params['comment_id'], 'hold');
|
|
$message = 'comment_restore_with_comment_author';
|
|
break;
|
|
}
|
|
|
|
// If the current action succeeded, then we return a success message, otherwise,
|
|
// we return an error message to the user issuing the request.
|
|
|
|
if ($succeeded) {
|
|
$result = array('error' => false, 'message' => $message, 'values' => array($comment->comment_author), 'status' => $comment->comment_status, 'approved' => $comment->comment_approved);
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_change_status_failed_with_error', 'values' => array($comment->comment_ID));
|
|
}
|
|
} else {
|
|
$result = array('error' => true, 'message' => 'comment_does_not_exists_error', 'values' => array($params['comment_id']));
|
|
}
|
|
|
|
// Here, we're restoring to the current (default) blog before we
|
|
// do the switched.
|
|
|
|
if (function_exists('restore_current_blog') && $switched) {
|
|
restore_current_blog();
|
|
}
|
|
|
|
return $this->_response($result);
|
|
}
|
|
}
|