summaryrefslogtreecommitdiff
blob: 7747c214de7b4199a0dc859118eac30ba7acb301 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
<?php

new WPCOM_JSON_API_Autosave_Post_v1_1_Endpoint( array(
	'description' => 'Create a post autosave.',
	'group'       => '__do_not_document',
	'stat'        => 'posts:autosave',
	'min_version' => '1.1',
	'method'      => 'POST',
	'path'        => '/sites/%s/posts/%d/autosave',
	'path_labels' => array(
		'$site'    => '(int|string) Site ID or domain',
		'$post_ID' => '(int) The post ID',
	),
	'request_format' => array(
		'content' => '(HTML) The post content.',
		'title'   => '(HTML) The post title.',
		'excerpt' => '(HTML) The post excerpt.',
	),
	'response_format' => array(
		'ID'          => '(int) autodraft post ID',
		'post_ID'     => '(int) post ID',
		'preview_URL' => '(string) preview URL for the post',
		'modified'    => '(ISO 8601 datetime) modified time',
	),

	'example_request' => 'https://public-api.wordpress.com/rest/v1.1/sites/82974409/posts/1/autosave',

	'example_request_data' => array(
		'headers' => array(
			'authorization' => 'Bearer YOUR_API_TOKEN'
		),

		'body' => array(
			'title'    => 'Howdy',
			'content'    => 'Hello. I am a test post. I was created by the API',
		)
	)
) );

class WPCOM_JSON_API_Autosave_Post_v1_1_Endpoint extends WPCOM_JSON_API_Post_v1_1_Endpoint {
	function __construct( $args ) {
		parent::__construct( $args );
	}

	// /sites/%s/posts/%d/autosave -> $blog_id, $post_id
	function callback( $path = '', $blog_id = 0, $post_id = 0 ) {

		$blog_id = $this->api->switch_to_blog_and_validate_user( $this->api->get_blog_id( $blog_id ) );
		if ( is_wp_error( $blog_id ) ) {
			return $blog_id;
		}

		$args = $this->query_args();

		$input = $this->input( false );

		if ( ! is_array( $input ) || ! $input ) {
			return new WP_Error( 'invalid_input', 'Invalid request input', 400 );
		}

		$post = get_post( $post_id );

		if ( ! $post || is_wp_error( $post ) ) {
			return new WP_Error( 'unknown_post', 'Unknown post', 404 );
		}

		if ( ! current_user_can( 'edit_post', $post->ID ) ) {
			return new WP_Error( 'unauthorized', 'User cannot edit post', 403 );
		}

		$post_data = array (
			'post_ID'      => $post_id,
			'post_title'   => $input['title'],
			'post_content' => $input['content'],
			'post_excerpt' => $input['excerpt'],
		);

		$preview_url = add_query_arg( 'preview', 'true', get_permalink( $post->ID ) );

		if ( ! wp_check_post_lock( $post->ID ) &&
			 get_current_user_id() == $post->post_author &&
			 ( 'auto-draft' == $post->post_status || 'draft' == $post->post_status )
		) {
			// Drafts and auto-drafts are just overwritten by autosave for the same user if the post is not locked
			$auto_ID = edit_post( wp_slash( $post_data ) );
		} else {
			// Non drafts or other users drafts are not overwritten. The autosave is stored in a special post revision for each user.
			$auto_ID = wp_create_post_autosave( wp_slash( $post_data ) );
			$nonce = wp_create_nonce( 'post_preview_' . $post->ID );
			$preview_url = add_query_arg( array( 'preview_id' => $auto_ID, 'preview_nonce' => $nonce ), $preview_url );
		}

		$updated_post = get_post( $auto_ID );

		if ( $updated_post && $updated_post->ID && $updated_post->post_modified ) {
			return array(
				'ID'          => $auto_ID,
				'post_ID'     => $post->ID,
				'modified'    => $this->format_date( $updated_post->post_modified ),
				'preview_URL' => $preview_url
			);
		} else {
			return new WP_Error( 'autosave_error', __( 'Autosave encountered an unexpected error', 'jetpack' ), 500 );
		}
	}
}