[wp-trac] [WordPress Trac] #23165: Admin validation errors on form nonce element IDs (_wpnonce)
WordPress Trac
noreply at wordpress.org
Wed Apr 3 03:21:54 UTC 2013
#23165: Admin validation errors on form nonce element IDs (_wpnonce)
-----------------------------------+------------------------------
Reporter: bpetty | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Validation | Version:
Severity: normal | Resolution:
Keywords: needs-codex has-patch |
-----------------------------------+------------------------------
Comment (by WraithKenny):
For Approach A patch it looks as tho you are creating unique names for all
of core's nonces. Would it be sufficient for now just to add the
_doing_it_wrong check, explicitly pass the name "_wpnonce" for the main
core nonces (to avoid _doing_it_wrong), and add unique names only to any
secondary nonce that don't have them (if any)? It'd at least cut down on
the `check_admin_referer` edits in the patch, and be easier to test
(mostly unchanged output). (It's late, forgive me if I'm just missing
something. :)
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23165#comment:4>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list