Skip to:
Content

bbPress.org


Ignore:
Timestamp:
08/14/2013 09:34:56 PM (10 years ago)
Author:
johnjamesjacoby
Message:

Shift output escaping around in admin links to allow for filtering and passing additional HTML into them. Hat tip mourdak. Fixes #2090.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/includes/topics/template.php

    r5060 r5069  
    24622462            'link_after'   => '',
    24632463            'sep'          => ' | ',
    2464             'trash_text'   => __( 'Trash',   'bbpress' ),
    2465             'restore_text' => __( 'Restore', 'bbpress' ),
    2466             'delete_text'  => __( 'Delete',  'bbpress' )
     2464            'trash_text'   => esc_html__( 'Trash',   'bbpress' ),
     2465            'restore_text' => esc_html__( 'Restore', 'bbpress' ),
     2466            'delete_text'  => esc_html__( 'Delete',  'bbpress' )
    24672467        ), 'get_topic_trash_link' );
    24682468
     
    24752475
    24762476        if ( bbp_is_topic_trash( $topic->ID ) ) {
    2477             $actions['untrash'] = '<a title="' . esc_attr__( 'Restore this item from the Trash', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'untrash', 'topic_id' => $topic->ID ) ), 'untrash-' . $topic->post_type . '_' . $topic->ID ) ) . '">' . esc_html( $r['restore_text'] ) . '</a>';
     2477            $actions['untrash'] = '<a title="' . esc_attr__( 'Restore this item from the Trash', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'untrash', 'topic_id' => $topic->ID ) ), 'untrash-' . $topic->post_type . '_' . $topic->ID ) ) . '">' . $r['restore_text'] . '</a>';
    24782478        } elseif ( EMPTY_TRASH_DAYS ) {
    2479             $actions['trash']   = '<a title="' . esc_attr__( 'Move this item to the Trash', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'trash', 'topic_id' => $topic->ID ) ), 'trash-' . $topic->post_type . '_' . $topic->ID ) ) . '">' . esc_html( $r['trash_text'] ) . '</a>';
     2479            $actions['trash']   = '<a title="' . esc_attr__( 'Move this item to the Trash', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'trash', 'topic_id' => $topic->ID ) ), 'trash-' . $topic->post_type . '_' . $topic->ID ) ) . '">' . $r['trash_text'] . '</a>';
    24802480        }
    24812481
    24822482        if ( bbp_is_topic_trash( $topic->ID ) || !EMPTY_TRASH_DAYS ) {
    2483             $actions['delete']  = '<a title="' . esc_attr__( 'Delete this item permanently', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'delete', 'topic_id' => $topic->ID ) ), 'delete-' . $topic->post_type . '_' . $topic->ID ) ) . '" onclick="return confirm(\'' . esc_js( __( 'Are you sure you want to delete that permanently?', 'bbpress' ) ) . '\' );">' . esc_html( $r['delete_text'] ) . '</a>';
     2483            $actions['delete']  = '<a title="' . esc_attr__( 'Delete this item permanently', 'bbpress' ) . '" href="' . esc_url( wp_nonce_url( add_query_arg( array( 'action' => 'bbp_toggle_topic_trash', 'sub_action' => 'delete', 'topic_id' => $topic->ID ) ), 'delete-' . $topic->post_type . '_' . $topic->ID ) ) . '" onclick="return confirm(\'' . esc_js( __( 'Are you sure you want to delete that permanently?', 'bbpress' ) ) . '\' );">' . $r['delete_text'] . '</a>';
    24842484        }
    24852485
     
    25922592            'link_before'  => '',
    25932593            'link_after'   => '',
    2594             'stick_text'   => __( 'Stick',    'bbpress' ),
    2595             'unstick_text' => __( 'Unstick',  'bbpress' ),
    2596             'super_text'   => __( 'to front', 'bbpress' ),
     2594            'stick_text'   => esc_html__( 'Stick',      'bbpress' ),
     2595            'unstick_text' => esc_html__( 'Unstick',    'bbpress' ),
     2596            'super_text'   => esc_html__( '(to front)', 'bbpress' ),
    25972597        ), 'get_topic_stick_link' );
    25982598
     
    26072607        $stick_uri = wp_nonce_url( $stick_uri, 'stick-topic_' . $topic->ID );
    26082608
    2609         $stick_display = true === $is_sticky ? $r['unstick_text'] : $r['stick_text'];
     2609        $stick_display = ( true === $is_sticky ) ? $r['unstick_text'] : $r['stick_text'];
    26102610        $stick_display = '<a href="' . esc_url( $stick_uri ) . '">' . $stick_display . '</a>';
    26112611
     
    26142614            $super_uri = wp_nonce_url( $super_uri, 'stick-topic_' . $topic->ID );
    26152615
    2616             $super_display = ' (<a href="' . esc_url( $super_uri ) . '">' . $r['super_text'] . '</a>)';
     2616            $super_display = ' <a href="' . esc_url( $super_uri ) . '">' . $r['super_text'] . '</a>';
    26172617        } else {
    26182618            $super_display = '';
     
    26632663            'link_before'  => '',
    26642664            'link_after'   => '',
    2665             'merge_text'   => __( 'Merge', 'bbpress' ),
     2665            'merge_text'   => esc_html__( 'Merge', 'bbpress' ),
    26662666        ), 'get_topic_merge_link' );
    26672667
     
    27192719            'link_after'   => '',
    27202720            'sep'          => ' | ',
    2721             'spam_text'    => __( 'Spam',   'bbpress' ),
    2722             'unspam_text'  => __( 'Unspam', 'bbpress' )
     2721            'spam_text'    => esc_html__( 'Spam',   'bbpress' ),
     2722            'unspam_text'  => esc_html__( 'Unspam', 'bbpress' )
    27232723        ), 'get_topic_spam_link' );
    27242724
     
    27682768            'link_before'  => '',
    27692769            'link_after'   => '',
    2770             'reply_text'   => __( 'Reply', 'bbpress' ),
     2770            'reply_text'   => esc_html__( 'Reply', 'bbpress' ),
    27712771        ), 'get_topic_reply_link' );
    27722772
     
    27822782        // Add $uri to the array, to be passed through the filter
    27832783        $r['uri'] = $uri;
    2784         $retval   = $r['link_before'] . '<a href="' . esc_url( $r['uri'] ) . '" class="bbp-topic-reply-link">' . esc_html( $r['reply_text'] ) . '</a>' . $r['link_after'];
     2784        $retval   = $r['link_before'] . '<a href="' . esc_url( $r['uri'] ) . '" class="bbp-topic-reply-link">' . $r['reply_text'] . '</a>' . $r['link_after'];
    27852785
    27862786        return apply_filters( 'bbp_get_topic_reply_link', $retval, $r, $args );
Note: See TracChangeset for help on using the changeset viewer.