map_meta_cap

February 12, 2011 by Thorsten 0 Comments

Definition:
function map_meta_cap( $cap, $user_id ) {}

Map meta capabilities to primitive capabilities.

This does not actually compare whether the user ID has the actual capability, just what the capability or capabilities are. Meta capability list value can be ‘delete_user’, ‘edit_user’, ‘remove_user’, ‘promote_user’, ‘delete_post’, ‘delete_page’, ‘edit_post’, ‘edit_page’, ‘read_post’, or ‘read_page’.

Parameters

string $cap: Capability name.
int $user_id: User ID.

Return values

returns:Actual capabilities for meta capability.

Defined filters

auth_post_meta_{$meta_key}
apply_filters( "auth_post_meta_{$meta_key}", false, $meta_key, $post->ID, $user_id, $cap, $caps )

Source code

function map_meta_cap( $cap, $user_id ) {

	$args = array_slice( func_get_args(), 2 );

	$caps = array();



	switch ( $cap ) {

	case 'remove_user':

		$caps[] = 'remove_users';

		break;

	case 'promote_user':

		$caps[] = 'promote_users';

		break;

	case 'edit_user':

		// Allow user to edit itself

		if ( isset( $args[0] ) && $user_id == $args[0] )

			break;

		// Fall through

	case 'edit_users':

		// If multisite these caps are allowed only for super admins.

		if ( is_multisite() && !is_super_admin( $user_id ) )

			$caps[] = 'do_not_allow';

		else

			$caps[] = 'edit_users'; // Explicit due to primitive fall through

		break;

	case 'delete_post':

	case 'delete_page':

		$author_data = get_userdata( $user_id );

		$post = get_post( $args[0] );



		if ( 'revision' == $post->post_type ) {

			$post = get_post( $post->post_parent );

		}



		$post_type = get_post_type_object( $post->post_type );



		if ( ! $post_type->map_meta_cap ) {

			$caps[] = $post_type->cap->$cap;

			// Prior to 3.1 we would re-call map_meta_cap here.

			if ( 'delete_post' == $cap )

				$cap = $post_type->cap->$cap;

			break;

		}



		if ( '' != $post->post_author ) {

			$post_author_data = get_userdata( $post->post_author );

		} else {

			// No author set yet, so default to current user for cap checks.

			$post_author_data = $author_data;

		}



		// If the user is the author...

		if ( is_object( $post_author_data ) && $user_id == $post_author_data->ID ) {

			// If the post is published...

			if ( 'publish' == $post->post_status ) {

				$caps[] = $post_type->cap->delete_published_posts;

			} elseif ( 'trash' == $post->post_status ) {

				if ('publish' == get_post_meta($post->ID, '_wp_trash_meta_status', true) )

					$caps[] = $post_type->cap->delete_published_posts;

			} else {

				// If the post is draft...

				$caps[] = $post_type->cap->delete_posts;

			}

		} else {

			// The user is trying to edit someone else's post.

			$caps[] = $post_type->cap->delete_others_posts;

			// The post is published, extra cap required.

			if ( 'publish' == $post->post_status )

				$caps[] = $post_type->cap->delete_published_posts;

			elseif ( 'private' == $post->post_status )

				$caps[] = $post_type->cap->delete_private_posts;

		}

		break;

		// edit_post breaks down to edit_posts, edit_published_posts, or

		// edit_others_posts

	case 'edit_post':

	case 'edit_page':

		$author_data = get_userdata( $user_id );

		$post = get_post( $args[0] );



		if ( 'revision' == $post->post_type ) {

			$post = get_post( $post->post_parent );

		}



		$post_type = get_post_type_object( $post->post_type );



		if ( ! $post_type->map_meta_cap ) {

			$caps[] = $post_type->cap->$cap;

			// Prior to 3.1 we would re-call map_meta_cap here.

			if ( 'edit_post' == $cap )

				$cap = $post_type->cap->$cap;

			break;

		}



		if ( '' != $post->post_author ) {

			$post_author_data = get_userdata( $post->post_author );

		} else {

			// No author set yet, so default to current user for cap checks.

			$post_author_data = $author_data;

		}



		//echo "current user id : $user_id, post author id: " . $post_author_data->ID . "<br />";

		// If the user is the author...

		if ( is_object( $post_author_data ) && $user_id == $post_author_data->ID ) {

			// If the post is published...

			if ( 'publish' == $post->post_status ) {

				$caps[] = $post_type->cap->edit_published_posts;

			} elseif ( 'trash' == $post->post_status ) {

				if ('publish' == get_post_meta($post->ID, '_wp_trash_meta_status', true) )

					$caps[] = $post_type->cap->edit_published_posts;

			} else {

				// If the post is draft...

				$caps[] = $post_type->cap->edit_posts;

			}

		} else {

			// The user is trying to edit someone else's post.

			$caps[] = $post_type->cap->edit_others_posts;

			// The post is published, extra cap required.

			if ( 'publish' == $post->post_status )

				$caps[] = $post_type->cap->edit_published_posts;

			elseif ( 'private' == $post->post_status )

				$caps[] = $post_type->cap->edit_private_posts;

		}

		break;

	case 'read_post':

	case 'read_page':

		$author_data = get_userdata( $user_id );

		$post = get_post( $args[0] );



		if ( 'revision' == $post->post_type ) {

			$post = get_post( $post->post_parent );

		}



		$post_type = get_post_type_object( $post->post_type );



		if ( ! $post_type->map_meta_cap ) {

			$caps[] = $post_type->cap->$cap;

			// Prior to 3.1 we would re-call map_meta_cap here.

			if ( 'read_post' == $cap )

				$cap = $post_type->cap->$cap;

			break;

		}



		if ( 'private' != $post->post_status ) {

			$caps[] = $post_type->cap->read;

			break;

		}



		if ( '' != $post->post_author ) {

			$post_author_data = get_userdata( $post->post_author );

		} else {

			// No author set yet, so default to current user for cap checks.

			$post_author_data = $author_data;

		}



		if ( is_object( $post_author_data ) && $user_id == $post_author_data->ID )

			$caps[] = $post_type->cap->read;

		else

			$caps[] = $post_type->cap->read_private_posts;

		break;

	case 'edit_post_meta':

	case 'delete_post_meta':

	case 'add_post_meta':

		$post = get_post( $args[0] );

		$post_type_object = get_post_type_object( $post->post_type );

		$caps = map_meta_cap( $post_type_object->cap->edit_post, $user_id, $post->ID );



		$meta_key = isset( $args[ 1 ] ) ? $args[ 1 ] : false;



		if ( $meta_key && has_filter( "auth_post_meta_{$meta_key}" ) ) {

			$allowed = apply_filters( "auth_post_meta_{$meta_key}", false, $meta_key, $post->ID, $user_id, $cap, $caps );

			if ( ! $allowed )

				$caps[] = $cap;

		} elseif ( $meta_key && is_protected_meta( $meta_key, 'post' ) ) {

2323

/wp-includes/capabilities.php, Documentation, Files, Filters, Filters by letter a, Functions, Functions by letter m

auth_post_meta_{$meta_key}, codex, idfbdc2f297ca119a02d863de26464b5ee, map_meta_cap

manage_columns_prefs

maybe_add_column

No comments yet... Be the first to leave a reply!

Ouch, we don’t have this here!

It seems that we do not have anything about this topic here, but you might want to do one of the following. If you were searching for a php function head over to the php manual and use one of their entry points

If you were searching for a WordPress related topic and did not find it here try one of the following options.

Use the search form in the navigation bar above
Use the WordPress search

If nothing like this helps try using Google or an other search engine

Google
Bing

Golden Q&A rules

Search first

Be sure that you first search in Google, the WordPress forums, Codex or this site ( using the form in the menu ). Sharing your previous results helps narrowing down the problem if you also tell us what you found and why it didn’t serve your needs.

Be specific

Give as much details about your problem as possible. Make sure to include examples, links and context related to your problem.

Be WordPress related

This site focuses on WordPress and related topics. Please make sure that your question is related to WordPress code, functionality or other related topics.

Be nice

Please keep in mind that this is a voluntary service. Answers might not always be correct or what you expect. Please be nice and let us know if any inappropriate answers come to your attention.

Latest
Popular
Comments

Speed up WordPress when you have a lot of terms February 15, 2014
WordPress Importer with remote lookup for assets. February 15, 2014
It’s been a while! Sorry for neglecting you! September 4, 2013
Cache posts in category/tag/taxonomy for better performing content blocks May 10, 2012
Lost in time(zones)? http://localtime.at can help May 5, 2012

WordPress Syntax mode for Panic Coda February 18, 2011
wp_tiny_mce February 12, 2011
Initialize WordPress from a PHP CLI script July 22, 2011
wp_save_image February 12, 2011
Caching WordPress navigation menus – wp_nav_menu() wrapper October 7, 2011