Wordpress/Helix_Website
2
0
Fork 0
Code Issues 4 Pull Requests Packages Projects Releases Wiki Activity
bd0b1d07e4
Helix_Website/wp-content/plugins/members/admin/class-meta-box-content-permissions.php

313 lines
8.4 KiB
PHP
Raw Blame History

<?php
/**
* Content permissions meta box.
*
* @package Members
* @subpackage Admin
* @author Justin Tadlock <justintadlock@gmail.com>
* @copyright Copyright (c) 2009 - 2018, Justin Tadlock
* @link https://themehybrid.com/plugins/members
* @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
*/
namespace Members\Admin;
/**
* Class to handle the content permissios meta box and saving the meta.
*
* @since 2.0.0
* @access public
*/
final class Meta_Box_Content_Permissions {
/**
* Holds the instances of this class.
*
* @since 2.0.0
* @access private
* @var object
*/
private static $instance;
/**
* Whether this is a new post. Once the post is saved and we're
* no longer on the `post-new.php` screen, this is going to be
* `false`.
*
* @since 2.0.0
* @access public
* @var bool
*/
public $is_new_post = false;
/**
* Sets up the appropriate actions.
*
* @since 2.0.0
* @access protected
* @return void
*/
protected function __construct() {
// If content permissions is disabled, bail.
if ( ! members_content_permissions_enabled() )
return;
add_action( 'load-post.php', array( $this, 'load' ) );
add_action( 'load-post-new.php', array( $this, 'load' ) );
}
/**
* Fires on the page load hook to add actions specifically for the post and
* new post screens.
*
* @since 2.0.0
* @access public
* @return void
*/
public function load() {
// Make sure meta box is allowed for this post type.
if ( ! $this->maybe_enable() )
return;
// Is this a new post?
$this->is_new_post = 'load-post-new.php' === current_action();
// Enqueue scripts/styles.
add_action( 'admin_enqueue_scripts', array( $this, 'enqueue' ) );
// Add custom meta boxes.
add_action( 'add_meta_boxes', array( $this, 'add_meta_boxes' ) );
// Save metadata on post save.
add_action( 'save_post', array( $this, 'update' ), 10, 2 );
}
/**
* Enqueues scripts styles.
*
* @since 2.0.0
* @access public
* @return void
*/
public function enqueue() {
wp_enqueue_script( 'members-edit-post' );
wp_enqueue_style( 'members-admin' );
}
/**
* Adds the meta box.
*
* @since 2.0.0
* @access public
* @param string $post_type
* @return void
*/
public function add_meta_boxes( $post_type ) {
// If the current user can't restrict content, bail.
if ( ! current_user_can( 'restrict_content' ) )
return;
// Add the meta box.
add_meta_box( 'members-cp', esc_html__( 'Content Permissions', 'members' ), array( $this, 'meta_box' ), $post_type, 'advanced', 'high' );
}
/**
* Checks if Content Permissions should appear for the given post type.
*
* @since 2.0.0
* @access public
* @return bool
*/
public function maybe_enable() {
// Get the post type object.
$type = get_post_type_object( get_current_screen()->post_type );
// Only enable for public post types and non-attachments by default.
$enable = 'attachment' !== $type->name && $type->public;
return apply_filters( "members_enable_{$type->name}_content_permissions", $enable );
}
/**
* Outputs the meta box HTML.
*
* @since 2.0.0
* @access public
* @param object $post
* @global object $wp_roles
* @return void
*/
public function meta_box( $post ) {
global $wp_roles;
// Get roles and sort.
$_wp_roles = $wp_roles->role_names;
asort( $_wp_roles );
// Get the roles saved for the post.
$roles = get_post_meta( $post->ID, '_members_access_role', false );
if ( ! $roles && $this->is_new_post )
$roles = apply_filters( 'members_default_post_roles', array(), $post->ID );
// Convert old post meta to the new system if no roles were found.
if ( empty( $roles ) )
$roles = members_convert_old_post_meta( $post->ID );
// Nonce field to validate on save.
wp_nonce_field( 'members_cp_meta_nonce', 'members_cp_meta' );
// Hook for firing at the top of the meta box.
do_action( 'members_cp_meta_box_before', $post ); ?>
<div class="members-tabs members-cp-tabs">
<ul class="members-tab-nav">
<li class="members-tab-title">
<a href="#members-tab-cp-roles">
<i class="dashicons dashicons-groups"></i>
<span class="label"><?php esc_html_e( 'Roles', 'members' ); ?></span>
</a>
</li>
<li class="members-tab-title">
<a href="#members-tab-cp-message">
<i class="dashicons dashicons-edit"></i>
<span class="label"><?php esc_html_e( 'Error Message', 'members' ); ?></span>
</a>
</li>
</ul>
<div class="members-tab-wrap">
<div id="members-tab-cp-roles" class="members-tab-content">
<span class="members-tabs-label">
<?php esc_html_e( 'Limit access to the content to users of the selected roles.', 'members' ); ?>
</span>
<div class="members-cp-role-list-wrap">
<ul class="members-cp-role-list">
<?php foreach ( $_wp_roles as $role => $name ) : ?>
<li>
<label>
<input type="checkbox" name="members_access_role[]" <?php checked( is_array( $roles ) && in_array( $role, $roles ) ); ?> value="<?php echo esc_attr( $role ); ?>" />
<?php echo esc_html( members_translate_role( $role ) ); ?>
</label>
</li>
<?php endforeach; ?>
</ul>
</div>
<span class="members-tabs-description">
<?php printf( esc_html__( 'If no roles are selected, everyone can view the content. The author, any users who can edit the content, and users with the %s capability can view the content regardless of role.', 'members' ), '<code>restrict_content</code>' ); ?>
</span>
</div>
<div id="members-tab-cp-message" class="members-tab-content">
<?php wp_editor(
get_post_meta( $post->ID, '_members_access_error', true ),
'members_access_error',
array(
'drag_drop_upload' => true,
'editor_height' => 200
)
); ?>
</div>
</div><!-- .members-tab-wrap -->
</div><!-- .members-tabs --><?php
// Hook that fires at the end of the meta box.
do_action( 'members_cp_meta_box_after', $post );
}
/**
* Saves the post meta.
*
* @since 2.0.0
* @access public
* @param int $post_id
* @param object $post
* @return void
*/
public function update( $post_id, $post = '' ) {
$do_autosave = defined( 'DOING_AUTOSAVE' ) && DOING_AUTOSAVE;
$is_autosave = wp_is_post_autosave( $post_id );
$is_revision = wp_is_post_revision( $post_id );
if ( $do_autosave || $is_autosave || $is_revision )
return;
// Fix for attachment save issue in WordPress 3.5.
// @link http://core.trac.wordpress.org/ticket/21963
if ( ! is_object( $post ) )
$post = get_post();
// Verify the nonce.
if ( ! isset( $_POST['members_cp_meta'] ) || ! wp_verify_nonce( $_POST['members_cp_meta'], 'members_cp_meta_nonce' ) )
return;
/* === Roles === */
// Get the current roles.
$current_roles = members_get_post_roles( $post_id );
// Get the new roles.
$new_roles = isset( $_POST['members_access_role'] ) ? $_POST['members_access_role'] : '';
// If we have an array of new roles, set the roles.
if ( is_array( $new_roles ) )
members_set_post_roles( $post_id, array_map( 'members_sanitize_role', $new_roles ) );
// Else, if we have current roles but no new roles, delete them all.
elseif ( !empty( $current_roles ) )
members_delete_post_roles( $post_id );
/* === Error Message === */
// Get the old access message.
$old_message = members_get_post_access_message( $post_id );
// Get the new message.
$new_message = isset( $_POST['members_access_error'] ) ? wp_kses_post( wp_unslash( $_POST['members_access_error'] ) ) : '';
// If we have don't have a new message but do have an old one, delete it.
if ( '' == $new_message && $old_message )
members_delete_post_access_message( $post_id );
// If the new message doesn't match the old message, set it.
else if ( $new_message !== $old_message )
members_set_post_access_message( $post_id, $new_message );
}
/**
* Returns the instance.
*
* @since 2.0.0
* @access public
* @return object
*/
public static function get_instance() {
if ( ! self::$instance )
self::$instance = new self;
return self::$instance;
}
}
Meta_Box_Content_Permissions::get_instance();
Reference in New Issue View Git Blame Copy Permalink