diff options
Diffstat (limited to 'plugins/jetpack/modules/contact-form/admin.php')
| -rw-r--r-- | plugins/jetpack/modules/contact-form/admin.php | 513 |
1 files changed, 513 insertions, 0 deletions
diff --git a/plugins/jetpack/modules/contact-form/admin.php b/plugins/jetpack/modules/contact-form/admin.php new file mode 100644 index 00000000..9ac40f9e --- /dev/null +++ b/plugins/jetpack/modules/contact-form/admin.php @@ -0,0 +1,513 @@ +<?php + +// feedback specific css items +add_action( 'admin_print_styles', 'grunion_admin_css' ); +function grunion_admin_css() { + global $current_screen; + if ( 'edit-feedback' != $current_screen->id ) + return; + + wp_enqueue_script( 'wp-lists' ); +?> + +<style type='text/css'> +.add-new-h2, .view-switch, body.no-js .tablenav select[name^=action], body.no-js #doaction, body.no-js #doaction2 { + display: none +} + +.column-feedback_from img { + float:left; + margin-right:10px; + margin-top:3px; +} + +.widefat .column-feedback_from { + width: 17%; +} +.widefat .column-feedback_date { + width: 17%; +} + +.spam a { + color: #BC0B0B; +} + +.untrash a { + color: #D98500; +} + +.unspam a { +color: #D98500; +} + +#icon-edit { background-position: -432px -5px; } + +#icon-edit, #icon-post { background: url("<?php echo GRUNION_PLUGIN_URL; ?>/images/grunion-menu-big.png") no-repeat !important; } +</style> + +<?php +} + +// remove admin UI parts that we don't support in feedback management +add_action( 'admin_menu', 'grunion_admin_menu' ); +function grunion_admin_menu() { + global $menu, $submenu; + unset( $submenu['edit.php?post_type=feedback'] ); +} + +add_filter( 'bulk_actions-edit-feedback', 'grunion_admin_bulk_actions' ); +function grunion_admin_bulk_actions( $actions ) { + global $current_screen; + if ( 'edit-feedback' != $current_screen->id ) + return $actions; + + unset( $actions['edit'] ); + return $actions; +} + +add_filter( 'views_edit-feedback', 'grunion_admin_view_tabs' ); +function grunion_admin_view_tabs( $views ) { + global $current_screen; + if ( 'edit-feedback' != $current_screen->id ) + return $actions; + + unset( $views['publish'] ); + + preg_match( '|post_type=feedback\'( class="current")?\>(.*)\<span class=|', $views['all'], $match ); + if ( !empty( $match[2] ) ) + $views['all'] = str_replace( $match[2], 'Messages ', $views['all'] ); + + return $views; +} + +add_filter( 'manage_feedback_posts_columns', 'grunion_post_type_columns_filter' ); +function grunion_post_type_columns_filter( $cols ) { + $cols = array( + 'cb' => '<input type="checkbox" />', + 'feedback_from' => __( 'From', 'jetpack' ), + 'feedback_message' => __( 'Message', 'jetpack' ), + 'feedback_date' => __( 'Date', 'jetpack' ) + ); + + return $cols; +} + +add_action( 'manage_posts_custom_column', 'grunion_manage_post_columns', 10, 2 ); +function grunion_manage_post_columns( $col, $post_id ) { + global $post; + + switch ( $col ) { + case 'feedback_from': + $author_name = get_post_meta( $post_id, '_feedback_author', TRUE ); + $author_email = get_post_meta( $post_id, '_feedback_author_email', TRUE ); + $author_url = get_post_meta( $post_id, '_feedback_author_url', TRUE ); + $author_ip = get_post_meta( $post_id, '_feedback_ip', TRUE ); + $form_url = get_post_meta( $post_id, '_feedback_contact_form_url', TRUE ); + + $author_name_line = ''; + if ( !empty( $author_name ) ) { + if ( !empty( $author_email ) ) + $author_name_line = get_avatar( $author_email, 32 ); + + $author_name_line .= "<strong>{$author_name}</strong><br />"; + } + + $author_email_line = ''; + if ( !empty( $author_email ) ) { + $author_email_line = "<a href='mailto:{$author_email}'>"; + $author_email_line .= "{$author_email}</a><br />"; + } + + $author_url_line = ''; + if ( !empty( $author_url ) ) { + $author_url_line = "<a href='{$author_url}'>"; + $author_url_line .= "{$author_url}</a><br />"; + + } + + echo $author_name_line; + echo $author_email_line; + echo $author_url_line; + echo "<a href='edit.php?post_type=feedback&s={$author_ip}"; + echo "&mode=detail'>{$author_ip}</a><br />"; + echo "<a href='{$form_url}'>{$form_url}</a>"; + break; + + case 'feedback_message': + $post = get_post( $post_id ); + $post_type_object = get_post_type_object( $post->post_type ); + echo '<strong>'; + echo esc_html( get_post_meta( $post_id, '_feedback_subject', TRUE ) ); + echo '</strong><br />'; + echo sanitize_text_field( get_the_content( '' ) ); + echo '<br />'; + + $extra_fields = get_post_meta( $post_id, '_feedback_extra_fields', TRUE ); + if ( !empty( $extra_fields ) ) { + echo '<br /><hr />'; + echo '<table cellspacing="0" cellpadding="0" style="">' . "\n"; + foreach ( (array) $extra_fields as $k => $v ) { + echo "<tr><td align='right'><b>". esc_html( $k ) ."</b></td><td>". sanitize_text_field( $v ) ."</td></tr>\n"; + } + echo '</table>'; + } + + echo '<div class="row-actions">'; + if ( $post->post_status == 'trash' ) { + echo '<span class="untrash" id="feedback-restore-' . $post_id; + echo '"><a title="'; + echo esc_attr__( 'Restore this item from the Trash', 'jetpack' ); + echo '" href="' . wp_nonce_url( admin_url( sprintf( $post_type_object->_edit_link . '&action=untrash', $post->ID ) ), 'untrash-' . $post->post_type . '_' . $post->ID ); + echo '">' . __( 'Restore', 'jetpack' ) . '</a></span> | '; + + echo "<span class='delete'> <a class='submitdelete' title='"; + echo esc_attr( __( 'Delete this item permanently', 'jetpack' ) ); + echo "' href='" . get_delete_post_link( $post->ID, '', true ); + echo "'>" . __( 'Delete Permanently', 'jetpack' ) . "</a></span>"; +?> + +<script> +jQuery(document).ready(function($) { +$('#feedback-restore-<?php echo $post_id; ?>').click(function(e) { + e.preventDefault(); + $.post(ajaxurl, { + action: 'grunion_ajax_spam', + post_id: '<?php echo $post_id; ?>', + make_it: 'publish', + sub_menu: jQuery('.subsubsub .current').attr('href'), + _ajax_nonce: '<?php echo wp_create_nonce( 'grunion-post-status-' . $post_id ); ?>' + }, + function(r) { + $('#post-<?php echo $post_id; ?>') + .css({backgroundColor: '#59C859'}) + .fadeOut(350, function() { + $(this).remove(); + $('.subsubsub').html(r); + }); + } + ); +}); +}); +</script> + +<?php + } elseif ( $post->post_status == 'publish' ) { + echo '<span class="spam" id="feedback-spam-' . $post_id; + echo '"><a title="'; + echo __( 'Mark this message as spam', 'jetpack' ); + echo '" href="' . wp_nonce_url( admin_url( 'admin-ajax.php?post_id=' . $post_id . '&action=spam' ), 'spam-feedback_' . $post_id ); + echo '">Spam</a></span>'; + echo ' | '; + + echo '<span class="delete" id="feedback-trash-' . $post_id; + echo '">'; + echo '<a class="submitdelete" title="' . esc_attr__( 'Trash', 'jetpack' ); + echo '" href="' . get_delete_post_link( $post_id ); + echo '">' . __( 'Trash', 'jetpack' ) . '</a></span>'; + +?> + +<script> +jQuery(document).ready( function($) { + $('#feedback-spam-<?php echo $post_id; ?>').click( function(e) { + e.preventDefault(); + $.post( ajaxurl, { + action: 'grunion_ajax_spam', + post_id: '<?php echo $post_id; ?>', + make_it: 'spam', + sub_menu: jQuery('.subsubsub .current').attr('href'), + _ajax_nonce: '<?php echo wp_create_nonce( 'grunion-post-status-' . $post_id ); ?>' + }, + function( r ) { + $('#post-<?php echo $post_id; ?>') + .css( {backgroundColor:'#FF7979'} ) + .fadeOut(350, function() { + $(this).remove(); + $('.subsubsub').html(r); + }); + }); + }); + + $('#feedback-trash-<?php echo $post_id; ?>').click(function(e) { + e.preventDefault(); + $.post(ajaxurl, { + action: 'grunion_ajax_spam', + post_id: '<?php echo $post_id; ?>', + make_it: 'trash', + sub_menu: jQuery('.subsubsub .current').attr('href'), + _ajax_nonce: '<?php echo wp_create_nonce( 'grunion-post-status-' . $post_id ); ?>' + }, + function(r) { + $('#post-<?php echo $post_id; ?>') + .css({backgroundColor: '#FF7979'}) + .fadeOut(350, function() { + $(this).remove(); + $('.subsubsub').html(r); + }); + } + ); + }); +}); +</script> + +<?php + } elseif ( $post->post_status == 'spam' ) { + echo '<span class="unspam unapprove" id="feedback-ham-' . $post_id; + echo '"><a title="'; + echo __( 'Mark this message as NOT spam', 'jetpack' ); + echo '" href="">Not Spam</a></span>'; + echo ' | '; + + echo "<span class='delete' id='feedback-trash-" . $post_id; + echo "'> <a class='submitdelete' title='"; + echo esc_attr( __( 'Delete this item permanently', 'jetpack' ) ); + echo "' href='" . get_delete_post_link( $post->ID, '', true ); + echo "'>" . __( 'Delete Permanently', 'jetpack' ) . "</a></span>"; +?> + +<script> +jQuery(document).ready( function($) { + $('#feedback-ham-<?php echo $post_id; ?>').click( function(e) { + e.preventDefault(); + $.post( ajaxurl, { + action: 'grunion_ajax_spam', + post_id: '<?php echo $post_id; ?>', + make_it: 'ham', + sub_menu: jQuery('.subsubsub .current').attr('href'), + _ajax_nonce: '<?php echo wp_create_nonce( 'grunion-post-status-' . $post_id ); ?>' + }, + function( r ) { + $('#post-<?php echo $post_id; ?>') + .css( {backgroundColor:'#59C859'} ) + .fadeOut(350, function() { + $(this).remove(); + $('.subsubsub').html(r); + }); + }); + }); +}); +</script> + +<?php + } + break; + + case 'feedback_date': + echo get_the_date( __( 'Y-m-d @ g:i:s A', 'jetpack' ) ); + break; + } +} + +function grunion_esc_attr( $attr ) { + $out = esc_attr( $attr ); + // we also have to entity-encode square brackets so they don't interfere with the shortcode parser + // FIXME: do this better - just stripping out square brackets for now since they mysteriously keep reappearing + $out = str_replace( '[', '', $out ); + $out = str_replace( ']', '', $out ); + return $out; +} + +function grunion_sort_objects( $a, $b ) { + if ( isset($a['order']) && isset($b['order']) ) + return $a['order'] - $b['order']; + return 0; +} + +// take an array of field types from the form builder, and construct a shortcode form +// returns both the shortcode form, and HTML markup representing a preview of the form +function grunion_ajax_shortcode() { + check_ajax_referer( 'grunion_shortcode' ); + + $atts = ''; + if ( trim( $_POST['subject'] ) ) + $atts .= ' subject="'.grunion_esc_attr($_POST['subject']).'"'; + if ( trim( $_POST['to'] ) ) + $atts .= ' to="'.grunion_esc_attr($_POST['to']).'"'; + + $shortcode = '[contact-form'.$atts.']'; + $shortcode .= "\n"; + if ( is_array( $_POST['fields'] ) ) { + usort( $_POST['fields'], 'grunion_sort_objects' ); + foreach ( $_POST['fields'] as $field ) { + $req = $opts = ''; + if ( $field['required'] == 'true' ) + $req = ' required="true"'; + if ( isset( $field['options'] ) && $field['options'] ) { + $opts = ' options="'; + foreach ( $field['options'] as $option ) { + $option = wp_kses( $option, array() ); + $option = grunion_esc_attr( $option ); + + # we need to be very specific about how we + # encode these values + $option = str_replace( ',', ',', $option ); + $option = str_replace( '"', '"', $option ); + $option = str_replace( "'", ''', $option ); + $option = str_replace( '&', '&', $option ); + + $opts .= $option . ','; + } + $opts = rtrim( $opts, ',' ) . '"'; + } + + $field['label'] = wp_kses( $field['label'], array() ); + $field['label'] = str_replace( '"', '"', $field['label'] ); + + $shortcode .= '[contact-field label="'. $field['label'] .'" type="'.grunion_esc_attr($field['type']).'"' . $req . $opts .' /]'."\n"; + } + } + $shortcode .= '[/contact-form]'; + + die( "\n$shortcode\n" ); +} + +// takes a post_id, extracts the contact-form shortcode from that post (if there is one), parses it, +// and constructs a json object representing its contents and attributes +function grunion_ajax_shortcode_to_json() { + global $post, $grunion_form; + + check_ajax_referer( 'grunion_shortcode_to_json' ); + if ( isset( $_POST['content'] ) && is_numeric( $_POST['post_id'] ) ) { + $content = stripslashes( $_POST['content'] ); + $post = get_post( $_POST['post_id'] ); + // does it look like a post with a [contact-form] already? + if ( strpos( $content, '[contact-form' ) !== false ) { + $out = do_shortcode($content); + global $contact_form_fields; + if ( is_array($contact_form_fields) && !empty($contact_form_fields) ) { + foreach ( $contact_form_fields as $field_id => $field ) { + # need to dig deeper on select field options + if ( preg_match( "|^(.*)\-select$|", $field_id ) ) { + foreach ( (array) $field['options'] as $opt_i => $opt ) { + $contact_form_fields[$field_id]['options'][$opt_i] = html_entity_decode( $opt ); + } + } + $contact_form_fields[$field_id]['label'] = html_entity_decode( $contact_form_fields[$field_id]['label'] ); + $contact_form_fields[$field_id]['label'] = wp_kses( $contact_form_fields[$field_id]['label'], array() ); + } + + $out = array( 'fields' => $contact_form_fields, 'to' => $grunion_form->to, 'subject' => $grunion_form->subject ); + die( json_encode( $out ) ); + } + } + die( '' ); + } + + die( -1 ); +} + + +add_action( 'wp_ajax_grunion_shortcode', 'grunion_ajax_shortcode' ); +add_action( 'wp_ajax_grunion_shortcode_to_json', 'grunion_ajax_shortcode_to_json' ); + + +// process row-action spam/not spam clicks +add_action( 'wp_ajax_grunion_ajax_spam', 'grunion_ajax_spam' ); +function grunion_ajax_spam() { + global $wpdb; + + if ( empty( $_POST['make_it'] ) ) + return; + + $post_id = (int) $_POST['post_id']; + check_ajax_referer( 'grunion-post-status-' . $post_id ); + if ( !current_user_can("edit_page", $post_id) ) + wp_die( __( 'You are not allowed to manage this item.', 'jetpack' ) ); + + require_once dirname( __FILE__ ) . '/grunion-contact-form.php'; + + $current_menu = ''; + if ( preg_match( '|post_type=feedback|', $_POST['sub_menu'] ) ) { + if ( preg_match( '|post_status=spam|', $_POST['sub_menu'] ) ) + $current_menu = 'spam'; + else if ( preg_match( '|post_status=trash|', $_POST['sub_menu'] ) ) + $current_menu = 'trash'; + else + $current_menu = 'messages'; + + } + + $post = get_post( $post_id ); + $post_type_object = get_post_type_object( $post->post_type ); + $akismet_values = get_post_meta( $post_id, '_feedback_akismet_values', TRUE ); + if ( $_POST['make_it'] == 'spam' ) { + $post->post_status = 'spam'; + $status = wp_insert_post( $post ); + wp_transition_post_status( 'spam', 'publish', $post ); + do_action( 'contact_form_akismet', 'spam', $akismet_values ); + } elseif ( $_POST['make_it'] == 'ham' ) { + $post->post_status = 'publish'; + $status = wp_insert_post( $post ); + wp_transition_post_status( 'publish', 'spam', $post ); + do_action( 'contact_form_akismet', 'spam', $akismet_values ); + + // resend the original email + $email = get_post_meta( $post_id, '_feedback_email', TRUE ); + wp_mail( $email['to'], $email['subject'], $email['message'], $email['headers'] ); + } elseif( $_POST['make_it'] == 'publish' ) { + if ( !current_user_can($post_type_object->cap->delete_post, $post_id) ) + wp_die( __( 'You are not allowed to move this item out of the Trash.', 'jetpack' ) ); + + if ( ! wp_untrash_post($post_id) ) + wp_die( __( 'Error in restoring from Trash.', 'jetpack' ) ); + + } elseif( $_POST['make_it'] == 'trash' ) { + if ( !current_user_can($post_type_object->cap->delete_post, $post_id) ) + wp_die( __( 'You are not allowed to move this item to the Trash.', 'jetpack' ) ); + + if ( ! wp_trash_post($post_id) ) + wp_die( __( 'Error in moving to Trash.', 'jetpack' ) ); + + } + + $sql = " + SELECT post_status, + COUNT( * ) AS post_count + FROM `{$wpdb->posts}` + WHERE post_type = 'feedback' + GROUP BY post_status + "; + $status_count = (array) $wpdb->get_results( $sql, ARRAY_A ); + + $status = array(); + $status_html = ''; + foreach ( $status_count as $i => $row ) { + $status[$row['post_status']] = $row['post_count']; + } + + if ( isset( $status['publish'] ) ) { + $status_html .= '<li><a href="edit.php?post_type=feedback"'; + if ( $current_menu == 'messages' ) + $status_html .= ' class="current"'; + + $status_html .= '>' . __( 'Messages', 'jetpack' ) . ' <span class="count">'; + $status_html .= '(' . number_format( $status['publish'] ) . ')'; + $status_html .= '</span></a> |</li>'; + } + + if ( isset( $status['trash'] ) ) { + $status_html .= '<li><a href="edit.php?post_status=trash&post_type=feedback"'; + if ( $current_menu == 'trash' ) + $status_html .= ' class="current"'; + + $status_html .= '>' . __( 'Trash', 'jetpack' ) . ' <span class="count">'; + $status_html .= '(' . number_format( $status['trash'] ) . ')'; + $status_html .= '</span></a>'; + if ( isset( $status['spam'] ) ) + $status_html .= ' |'; + $status_html .= '</li>'; + } + + if ( isset( $status['spam'] ) ) { + $status_html .= '<li><a href="edit.php?post_status=spam&post_type=feedback"'; + if ( $current_menu == 'spam' ) + $status_html .= ' class="current"'; + + $status_html .= '>' . __( 'Spam', 'jetpack' ) . ' <span class="count">'; + $status_html .= '(' . number_format( $status['spam'] ) . ')'; + $status_html .= '</span></a></li>'; + } + + echo $status_html; + exit; +} |