locate_template( string|array $template_names, bool $load = false, bool $load_once = true, array $args = array() ): string

Retrieves the name of the highest priority template file that exists.

Contents

Description

Searches in the STYLESHEETPATH before TEMPLATEPATH and wp-includes/theme-compat so that themes which inherit from a parent theme can just overload one file.

Top ↑

Parameters

$template_names string|array Required
Template file(s) to search for, in order.
$load bool Optional
If true the template file will be loaded if it is found.

Default: false

$load_once bool Optional
Whether to require_once or require. Has no effect if $load is false.

Default: true

$args array Optional
Additional arguments passed to the template.

Default: array()

Top ↑

Return

string The template filename if one is located.

Top ↑

Source

File: wp-includes/template.php. View all references 

function locate_template( $template_names, $load = false, $load_once = true, $args = array() ) {
	$located = '';
	foreach ( (array) $template_names as $template_name ) {
		if ( ! $template_name ) {
			continue;
		}
		if ( file_exists( STYLESHEETPATH . '/' . $template_name ) ) {
			$located = STYLESHEETPATH . '/' . $template_name;
			break;
		} elseif ( file_exists( TEMPLATEPATH . '/' . $template_name ) ) {
			$located = TEMPLATEPATH . '/' . $template_name;
			break;
		} elseif ( file_exists( ABSPATH . WPINC . '/theme-compat/' . $template_name ) ) {
			$located = ABSPATH . WPINC . '/theme-compat/' . $template_name;
			break;
		}
	}

	if ( $load && '' !== $located ) {
		load_template( $located, $load_once, $args );
	}

	return $located;
}

View on Trac View on GitHub

Top ↑

Top ↑

Used By

Used By
Used By Description
get_header() wp-includes/general-template.php

Loads header template.
get_footer() wp-includes/general-template.php

Loads footer template.
get_sidebar() wp-includes/general-template.php

Loads sidebar template.
get_template_part() wp-includes/general-template.php

Loads a template part into a template.
get_search_form() wp-includes/general-template.php

Displays search form.
get_query_template() wp-includes/template.php

Retrieves path to a template.
Show 1 more used by Hide more used by

Top ↑

Changelog

Changelog
Version Description
5.5.0 The $args parameter was added.
2.7.0 Introduced.

Top ↑

User Contributed Notes

  1. Skip to note 1 content
    You must log in to vote on the helpfulness of this noteVote results for this note: 9You must log in to vote on the helpfulness of this note
    Contributed by Paul Ryan

    Note that locate_template() does not prevent directory traversal attacks, so if you’re passing a user-provided template name to the function, be sure to verify that it’s from one of the three appropriate locations (active theme directory, parent theme directory, or /wp-includes/theme-compat/ directory).

    Example:

    $template = locate_template( $template_filename_from_unsanitized_user_input );

// Only allow templates that are in the active theme directory, parent theme
// directory, or the /wp-includes/theme-compat/ directory (prevent directory 
// traversal attacks).
$template_in_theme_or_parent_theme_or_compat = (
	// Template is in current theme folder.
	0 === strpos( realpath( $template ), realpath( STYLESHEETPATH ) ) ||
	// Template is in current or parent theme folder.
	0 === strpos( realpath( $template ), realpath( TEMPLATEPATH ) ) ||
	// Template is in theme-compat folder.
	0 === strpos( realpath( $template ), realpath( ABSPATH . WPINC . '/theme-compat/' ) )
);

if ( $template_in_theme_or_parent_theme_or_compat ) {
	require_once( $template );
}

You must log in before being able to contribute a note or feedback.