云策 WordPress 开发者社区

函数文档

wp_ajax_send_attachment_to_editor()

查看官方原文 ↗
💡 云策文档标注

概述

wp_ajax_send_attachment_to_editor() 是一个 WordPress AJAX 处理函数,用于生成附件 HTML 并发送到编辑器。它支持向后兼容,通过 'media_send_to_editor' 过滤器进行自定义。

关键要点

  • 函数通过 AJAX 处理附件发送到编辑器,生成 HTML 输出。
  • 支持图像、视频、音频和其他附件类型,根据 MIME 类型生成不同 HTML。
  • 包含安全检查,如 check_ajax_referer() 和权限验证 current_user_can()。
  • 使用 apply_filters('media_send_to_editor') 允许开发者过滤 HTML 输出。
  • 自动处理未附加附件的关联,通过 wp_update_post() 设置 post_parent。

代码示例

function wp_ajax_send_attachment_to_editor() {
	check_ajax_referer( 'media-send-to-editor', 'nonce' );

	$attachment = wp_unslash( $_POST['attachment'] );

	$id = (int) $attachment['id'];

	$post = get_post( $id );
	if ( ! $post ) {
		wp_send_json_error();
	}

	if ( 'attachment' !== $post->post_type ) {
		wp_send_json_error();
	}

	if ( current_user_can( 'edit_post', $id ) ) {
		// If this attachment is unattached, attach it. Primarily a back compat thing.
		$insert_into_post_id = (int) $_POST['post_id'];

		if ( 0 === $post->post_parent && $insert_into_post_id ) {
			wp_update_post(
				array(
					'ID'          => $id,
					'post_parent' => $insert_into_post_id,
				)
			);
		}
	}

	$url = empty( $attachment['url'] ) ? '' : $attachment['url'];
	$rel = ( str_contains( $url, 'attachment_id' ) || get_attachment_link( $id ) === $url );

	remove_filter( 'media_send_to_editor', 'image_media_send_to_editor' );

	if ( str_starts_with( $post->post_mime_type, 'image' ) ) {
		$align = isset( $attachment['align'] ) ? $attachment['align'] : 'none';
		$size  = isset( $attachment['image-size'] ) ? $attachment['image-size'] : 'medium';
		$alt   = isset( $attachment['image_alt'] ) ? $attachment['image_alt'] : '';

		// No whitespace-only captions.
		$caption = isset( $attachment['post_excerpt'] ) ? $attachment['post_excerpt'] : '';
		if ( '' === trim( $caption ) ) {
			$caption = '';
		}

		$title = ''; // We no longer insert title tags into  tags, as they are redundant.
		$html  = get_image_send_to_editor( $id, $caption, $title, $align, $url, $rel, $size, $alt );
	} elseif ( wp_attachment_is( 'video', $post ) || wp_attachment_is( 'audio', $post ) ) {
		$html = stripslashes_deep( $_POST['html'] );
	} else {
		$html = isset( $attachment['post_title'] ) ? $attachment['post_title'] : '';
		$rel  = $rel ? ' rel="attachment wp-att-' . $id . '"' : ''; // Hard-coded string, $id is already sanitized.

		if ( ! empty( $url ) ) {
			$html = '' . $html . '';
		}
	}

	/** This filter is documented in wp-admin/includes/media.php */
	$html = apply_filters( 'media_send_to_editor', $html, $id, $attachment );

	wp_send_json_success( $html );
}

注意事项

  • 函数依赖于 AJAX 请求,需确保正确传递 nonce 和附件数据。
  • 对于图像附件,使用 get_image_send_to_editor() 生成 HTML;视频/音频直接使用 POST 数据。
  • 注意权限检查,仅允许有 edit_post 权限的用户操作。
  • 使用 apply_filters('media_send_to_editor') 可自定义输出,但需注意兼容性。
📄 原文内容

Handles sending an attachment to the editor via AJAX.

Description

Generates the HTML to send an attachment to the editor.
Backward compatible with the ‘media_send_to_editor’ filter and the chain of filters that follow.

Source

function wp_ajax_send_attachment_to_editor() {
	check_ajax_referer( 'media-send-to-editor', 'nonce' );

	$attachment = wp_unslash( $_POST['attachment'] );

	$id = (int) $attachment['id'];

	$post = get_post( $id );
	if ( ! $post ) {
		wp_send_json_error();
	}

	if ( 'attachment' !== $post->post_type ) {
		wp_send_json_error();
	}

	if ( current_user_can( 'edit_post', $id ) ) {
		// If this attachment is unattached, attach it. Primarily a back compat thing.
		$insert_into_post_id = (int) $_POST['post_id'];

		if ( 0 === $post->post_parent && $insert_into_post_id ) {
			wp_update_post(
				array(
					'ID'          => $id,
					'post_parent' => $insert_into_post_id,
				)
			);
		}
	}

	$url = empty( $attachment['url'] ) ? '' : $attachment['url'];
	$rel = ( str_contains( $url, 'attachment_id' ) || get_attachment_link( $id ) === $url );

	remove_filter( 'media_send_to_editor', 'image_media_send_to_editor' );

	if ( str_starts_with( $post->post_mime_type, 'image' ) ) {
		$align = isset( $attachment['align'] ) ? $attachment['align'] : 'none';
		$size  = isset( $attachment['image-size'] ) ? $attachment['image-size'] : 'medium';
		$alt   = isset( $attachment['image_alt'] ) ? $attachment['image_alt'] : '';

		// No whitespace-only captions.
		$caption = isset( $attachment['post_excerpt'] ) ? $attachment['post_excerpt'] : '';
		if ( '' === trim( $caption ) ) {
			$caption = '';
		}

		$title = ''; // We no longer insert title tags into <img> tags, as they are redundant.
		$html  = get_image_send_to_editor( $id, $caption, $title, $align, $url, $rel, $size, $alt );
	} elseif ( wp_attachment_is( 'video', $post ) || wp_attachment_is( 'audio', $post ) ) {
		$html = stripslashes_deep( $_POST['html'] );
	} else {
		$html = isset( $attachment['post_title'] ) ? $attachment['post_title'] : '';
		$rel  = $rel ? ' rel="attachment wp-att-' . $id . '"' : ''; // Hard-coded string, $id is already sanitized.

		if ( ! empty( $url ) ) {
			$html = '<a href="' . esc_url( $url ) . '"' . $rel . '>' . $html . '</a>';
		}
	}

	/** This filter is documented in wp-admin/includes/media.php */
	$html = apply_filters( 'media_send_to_editor', $html, $id, $attachment );

	wp_send_json_success( $html );
}

View all references View on Trac View on GitHub

Hooks

apply_filters( ‘media_send_to_editor’, string $html, int $send_id, array $attachment )

Filters the HTML markup for a media item sent to the editor.

Uses Description
wp_attachment_is()wp-includes/post.php

Verifies an attachment is of a given type.
get_image_send_to_editor()wp-admin/includes/media.php

Retrieves the image HTML to send to the editor.
stripslashes_deep()wp-includes/formatting.php

Navigates through an array, object, or scalar, and removes slashes from the values.
get_attachment_link()wp-includes/link-template.php

Retrieves the permalink for an attachment.
wp_update_post()wp-includes/post.php

Updates a post with new post data.
current_user_can()wp-includes/capabilities.php

Returns whether the current user has the specified capability.
wp_unslash()wp-includes/formatting.php

Removes slashes from a string or recursively removes slashes from strings within an array.
esc_url()wp-includes/formatting.php

Checks and cleans a URL.
check_ajax_referer()wp-includes/pluggable.php

Verifies the Ajax request to prevent processing requests external of the blog.
wp_send_json_error()wp-includes/functions.php

Sends a JSON response back to an Ajax request, indicating failure.
wp_send_json_success()wp-includes/functions.php

Sends a JSON response back to an Ajax request, indicating success.
remove_filter()wp-includes/plugin.php

Removes a callback function from a filter hook.
apply_filters()wp-includes/plugin.php

Calls the callback functions that have been added to a filter hook.
get_post()wp-includes/post.php

Retrieves post data given a post ID or post object.

Show 9 moreShow less

Changelog

Version Description
3.5.0 Introduced.