3
* Sets up the default filters and actions for most
4
* of the WordPress hooks.
6
* If you need to remove a default hook, this file will
7
* give you the priority for which to use to remove the
10
* Not all of the default hooks are found in default-filters.php
15
// Strip, trim, kses, special chars for string saves
16
foreach ( array( 'pre_term_name', 'pre_comment_author_name', 'pre_link_name', 'pre_link_target', 'pre_link_rel', 'pre_user_display_name', 'pre_user_first_name', 'pre_user_last_name', 'pre_user_nickname' ) as $filter ) {
17
add_filter( $filter, 'sanitize_text_field' );
18
add_filter( $filter, 'wp_filter_kses' );
19
add_filter( $filter, '_wp_specialchars', 30 );
22
// Strip, kses, special chars for string display
23
foreach ( array( 'term_name', 'comment_author_name', 'link_name', 'link_target', 'link_rel', 'user_display_name', 'user_first_name', 'user_last_name', 'user_nickname' ) as $filter ) {
25
// These are expensive. Run only on admin pages for defense in depth.
26
add_filter( $filter, 'sanitize_text_field' );
27
add_filter( $filter, 'wp_kses_data' );
29
add_filter( $filter, '_wp_specialchars', 30 );
32
// Kses only for textarea saves
33
foreach ( array( 'pre_term_description', 'pre_link_description', 'pre_link_notes', 'pre_user_description' ) as $filter ) {
34
add_filter( $filter, 'wp_filter_kses' );
37
// Kses only for textarea admin displays
39
foreach ( array( 'term_description', 'link_description', 'link_notes', 'user_description' ) as $filter ) {
40
add_filter( $filter, 'wp_kses_data' );
42
add_filter( 'comment_text', 'wp_kses_post' );
46
foreach ( array( 'pre_comment_author_email', 'pre_user_email' ) as $filter ) {
47
add_filter( $filter, 'trim' );
48
add_filter( $filter, 'sanitize_email' );
49
add_filter( $filter, 'wp_filter_kses' );
52
// Email admin display
53
foreach ( array( 'comment_author_email', 'user_email' ) as $filter ) {
54
add_filter( $filter, 'sanitize_email' );
56
add_filter( $filter, 'wp_kses_data' );
60
foreach ( array( 'pre_comment_author_url', 'pre_user_url', 'pre_link_url', 'pre_link_image',
61
'pre_link_rss', 'pre_post_guid' ) as $filter ) {
62
add_filter( $filter, 'wp_strip_all_tags' );
63
add_filter( $filter, 'esc_url_raw' );
64
add_filter( $filter, 'wp_filter_kses' );
68
foreach ( array( 'user_url', 'link_url', 'link_image', 'link_rss', 'comment_url', 'post_guid' ) as $filter ) {
70
add_filter( $filter, 'wp_strip_all_tags' );
71
add_filter( $filter, 'esc_url' );
73
add_filter( $filter, 'wp_kses_data' );
77
add_filter( 'pre_term_slug', 'sanitize_title' );
80
foreach ( array( 'pre_post_type', 'pre_post_status', 'pre_post_comment_status', 'pre_post_ping_status' ) as $filter ) {
81
add_filter( $filter, 'sanitize_key' );
85
add_filter( 'pre_post_mime_type', 'sanitize_mime_type' );
86
add_filter( 'post_mime_type', 'sanitize_mime_type' );
88
// Places to balance tags on input
89
foreach ( array( 'content_save_pre', 'excerpt_save_pre', 'comment_save_pre', 'pre_comment_content' ) as $filter ) {
90
add_filter( $filter, 'balanceTags', 50 );
93
// Format strings for display.
94
foreach ( array( 'comment_author', 'term_name', 'link_name', 'link_description', 'link_notes', 'bloginfo', 'wp_title', 'widget_title' ) as $filter ) {
95
add_filter( $filter, 'wptexturize' );
96
add_filter( $filter, 'convert_chars' );
97
add_filter( $filter, 'esc_html' );
101
foreach ( array( 'the_content', 'the_title', 'wp_title' ) as $filter )
102
add_filter( $filter, 'capital_P_dangit', 11 );
103
add_filter( 'comment_text', 'capital_P_dangit', 31 );
106
foreach ( array( 'single_post_title', 'single_cat_title', 'single_tag_title', 'single_month_title', 'nav_menu_attr_title', 'nav_menu_description' ) as $filter ) {
107
add_filter( $filter, 'wptexturize' );
108
add_filter( $filter, 'strip_tags' );
111
// Format text area for display.
112
foreach ( array( 'term_description' ) as $filter ) {
113
add_filter( $filter, 'wptexturize' );
114
add_filter( $filter, 'convert_chars' );
115
add_filter( $filter, 'wpautop' );
116
add_filter( $filter, 'shortcode_unautop');
120
add_filter( 'term_name_rss', 'convert_chars' );
122
// Pre save hierarchy
123
add_filter( 'wp_insert_post_parent', 'wp_check_post_hierarchy_for_loops', 10, 2 );
124
add_filter( 'wp_update_term_parent', 'wp_check_term_hierarchy_for_loops', 10, 3 );
127
add_filter( 'the_title', 'wptexturize' );
128
add_filter( 'the_title', 'convert_chars' );
129
add_filter( 'the_title', 'trim' );
131
add_filter( 'the_content', 'wptexturize' );
132
add_filter( 'the_content', 'convert_smilies' );
133
add_filter( 'the_content', 'convert_chars' );
134
add_filter( 'the_content', 'wpautop' );
135
add_filter( 'the_content', 'shortcode_unautop' );
136
add_filter( 'the_content', 'prepend_attachment' );
138
add_filter( 'the_excerpt', 'wptexturize' );
139
add_filter( 'the_excerpt', 'convert_smilies' );
140
add_filter( 'the_excerpt', 'convert_chars' );
141
add_filter( 'the_excerpt', 'wpautop' );
142
add_filter( 'the_excerpt', 'shortcode_unautop');
143
add_filter( 'get_the_excerpt', 'wp_trim_excerpt' );
145
add_filter( 'comment_text', 'wptexturize' );
146
add_filter( 'comment_text', 'convert_chars' );
147
add_filter( 'comment_text', 'make_clickable', 9 );
148
add_filter( 'comment_text', 'force_balance_tags', 25 );
149
add_filter( 'comment_text', 'convert_smilies', 20 );
150
add_filter( 'comment_text', 'wpautop', 30 );
152
add_filter( 'comment_excerpt', 'convert_chars' );
154
add_filter( 'list_cats', 'wptexturize' );
156
add_filter( 'wp_sprintf', 'wp_sprintf_l', 10, 2 );
159
add_filter( 'the_title_rss', 'strip_tags' );
160
add_filter( 'the_title_rss', 'ent2ncr', 8 );
161
add_filter( 'the_title_rss', 'esc_html' );
162
add_filter( 'the_content_rss', 'ent2ncr', 8 );
163
add_filter( 'the_excerpt_rss', 'convert_chars' );
164
add_filter( 'the_excerpt_rss', 'ent2ncr', 8 );
165
add_filter( 'comment_author_rss', 'ent2ncr', 8 );
166
add_filter( 'comment_text_rss', 'ent2ncr', 8 );
167
add_filter( 'comment_text_rss', 'esc_html' );
168
add_filter( 'bloginfo_rss', 'ent2ncr', 8 );
169
add_filter( 'the_author', 'ent2ncr', 8 );
172
add_filter( 'option_ping_sites', 'privacy_ping_filter' );
173
add_filter( 'option_blog_charset', '_wp_specialchars' ); // IMPORTANT: This must not be wp_specialchars() or esc_html() or it'll cause an infinite loop
174
add_filter( 'option_blog_charset', '_canonical_charset' );
175
add_filter( 'option_home', '_config_wp_home' );
176
add_filter( 'option_siteurl', '_config_wp_siteurl' );
177
add_filter( 'tiny_mce_before_init', '_mce_set_direction' );
178
add_filter( 'pre_kses', 'wp_pre_kses_less_than' );
179
add_filter( 'sanitize_title', 'sanitize_title_with_dashes', 10, 3 );
180
add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 3 );
181
add_filter( 'comment_flood_filter', 'wp_throttle_comment_flood', 10, 3 );
182
add_filter( 'pre_comment_content', 'wp_rel_nofollow', 15 );
183
add_filter( 'comment_email', 'antispambot' );
184
add_filter( 'option_tag_base', '_wp_filter_taxonomy_base' );
185
add_filter( 'option_category_base', '_wp_filter_taxonomy_base' );
186
add_filter( 'the_posts', '_close_comments_for_old_posts', 10, 2);
187
add_filter( 'comments_open', '_close_comments_for_old_post', 10, 2 );
188
add_filter( 'pings_open', '_close_comments_for_old_post', 10, 2 );
189
add_filter( 'editable_slug', 'urldecode' );
190
add_filter( 'editable_slug', 'esc_textarea' );
191
add_filter( 'nav_menu_meta_box_object', '_wp_nav_menu_meta_box_object' );
192
add_filter( 'pingback_ping_source_uri', 'pingback_ping_source_uri' );
193
add_filter( 'xmlrpc_pingback_error', 'xmlrpc_pingback_error' );
195
add_filter( 'http_request_host_is_external', 'allowed_http_request_hosts', 10, 2 );
198
add_action( 'wp_head', 'wp_enqueue_scripts', 1 );
199
add_action( 'wp_head', 'feed_links', 2 );
200
add_action( 'wp_head', 'feed_links_extra', 3 );
201
add_action( 'wp_head', 'rsd_link' );
202
add_action( 'wp_head', 'wlwmanifest_link' );
203
add_action( 'wp_head', 'adjacent_posts_rel_link_wp_head', 10, 0 );
204
add_action( 'wp_head', 'locale_stylesheet' );
205
add_action( 'publish_future_post', 'check_and_publish_future_post', 10, 1 );
206
add_action( 'wp_head', 'noindex', 1 );
207
add_action( 'wp_head', 'wp_print_styles', 8 );
208
add_action( 'wp_head', 'wp_print_head_scripts', 9 );
209
add_action( 'wp_head', 'wp_generator' );
210
add_action( 'wp_head', 'rel_canonical' );
211
add_action( 'wp_footer', 'wp_print_footer_scripts', 20 );
212
add_action( 'wp_head', 'wp_shortlink_wp_head', 10, 0 );
213
add_action( 'template_redirect', 'wp_shortlink_header', 11, 0 );
214
add_action( 'wp_print_footer_scripts', '_wp_footer_scripts' );
215
add_action( 'init', 'check_theme_switched', 99 );
216
add_action( 'after_switch_theme', '_wp_sidebars_changed' );
218
if ( isset( $_GET['replytocom'] ) )
219
add_action( 'wp_head', 'wp_no_robots' );
222
add_action( 'login_head', 'wp_print_head_scripts', 9 );
223
add_action( 'login_footer', 'wp_print_footer_scripts', 20 );
224
add_action( 'login_init', 'send_frame_options_header', 10, 0 );
226
// Feed Generator Tags
227
foreach ( array( 'rss2_head', 'commentsrss2_head', 'rss_head', 'rdf_header', 'atom_head', 'comments_atom_head', 'opml_head', 'app_head' ) as $action ) {
228
add_action( $action, 'the_generator' );
232
if ( !defined( 'DOING_CRON' ) )
233
add_action( 'init', 'wp_cron' );
235
// 2 Actions 2 Furious
236
add_action( 'do_feed_rdf', 'do_feed_rdf', 10, 1 );
237
add_action( 'do_feed_rss', 'do_feed_rss', 10, 1 );
238
add_action( 'do_feed_rss2', 'do_feed_rss2', 10, 1 );
239
add_action( 'do_feed_atom', 'do_feed_atom', 10, 1 );
240
add_action( 'do_pings', 'do_all_pings', 10, 1 );
241
add_action( 'do_robots', 'do_robots' );
242
add_action( 'set_comment_cookies', 'wp_set_comment_cookies', 10, 2 );
243
add_action( 'sanitize_comment_cookies', 'sanitize_comment_cookies' );
244
add_action( 'admin_print_scripts', 'print_head_scripts', 20 );
245
add_action( 'admin_print_footer_scripts', '_wp_footer_scripts' );
246
add_action( 'admin_print_styles', 'print_admin_styles', 20 );
247
add_action( 'init', 'smilies_init', 5 );
248
add_action( 'plugins_loaded', 'wp_maybe_load_widgets', 0 );
249
add_action( 'plugins_loaded', 'wp_maybe_load_embeds', 0 );
250
add_action( 'shutdown', 'wp_ob_end_flush_all', 1 );
251
add_action( 'post_updated', 'wp_save_post_revision', 10, 1 );
252
add_action( 'publish_post', '_publish_post_hook', 5, 1 );
253
add_action( 'transition_post_status', '_transition_post_status', 5, 3 );
254
add_action( 'transition_post_status', '_update_term_count_on_transition_post_status', 10, 3 );
255
add_action( 'comment_form', 'wp_comment_form_unfiltered_html_nonce' );
256
add_action( 'wp_scheduled_delete', 'wp_scheduled_delete' );
257
add_action( 'wp_scheduled_auto_draft_delete', 'wp_delete_auto_drafts' );
258
add_action( 'admin_init', 'send_frame_options_header', 10, 0 );
259
add_action( 'importer_scheduled_cleanup', 'wp_delete_attachment' );
260
add_action( 'upgrader_scheduled_cleanup', 'wp_delete_attachment' );
261
add_action( 'welcome_panel', 'wp_welcome_panel' );
263
// Navigation menu actions
264
add_action( 'delete_post', '_wp_delete_post_menu_item' );
265
add_action( 'delete_term', '_wp_delete_tax_menu_item', 10, 3 );
266
add_action( 'transition_post_status', '_wp_auto_add_pages_to_menu', 10, 3 );
268
// Post Thumbnail CSS class filtering
269
add_action( 'begin_fetch_post_thumbnail_html', '_wp_post_thumbnail_class_filter_add' );
270
add_action( 'end_fetch_post_thumbnail_html', '_wp_post_thumbnail_class_filter_remove' );
272
// Redirect Old Slugs
273
add_action( 'template_redirect', 'wp_old_slug_redirect' );
274
add_action( 'post_updated', 'wp_check_for_changed_slugs', 12, 3 );
276
// Nonce check for Post Previews
277
add_action( 'init', '_show_post_preview' );
280
add_filter( 'pre_option_gmt_offset','wp_timezone_override_offset' );
282
// Admin Color Schemes
283
add_action( 'admin_init', 'register_admin_color_schemes', 1);
284
add_action( 'admin_color_scheme_picker', 'admin_color_scheme_picker' );
286
// If the upgrade hasn't run yet, assume link manager is used.
287
add_filter( 'default_option_link_manager_enabled', '__return_true' );
289
// This option no longer exists; tell plugins we always support auto-embedding.
290
add_filter( 'default_option_embed_autourls', '__return_true' );
292
// Default settings for heartbeat
293
add_filter( 'heartbeat_settings', 'wp_heartbeat_settings' );
295
// Check if the user is logged out
296
add_action( 'admin_enqueue_scripts', 'wp_auth_check_load' );
297
add_filter( 'heartbeat_send', 'wp_auth_check' );
298
add_filter( 'heartbeat_nopriv_send', 'wp_auth_check' );
300
// Default authentication filters
301
add_filter( 'authenticate', 'wp_authenticate_username_password', 20, 3 );
302
add_filter( 'authenticate', 'wp_authenticate_spam_check', 99 );
303
add_filter( 'determine_current_user', 'wp_validate_auth_cookie' );
304
add_filter( 'determine_current_user', 'wp_validate_logged_in_cookie', 20 );
306
unset($filter, $action);