[wp-trac] [WordPress Trac] #29156: $rp_path does not respect SITECOOKIEPATH/COOKIEPATH
WordPress Trac
noreply at wordpress.org
Mon Aug 25 21:11:06 UTC 2014
#29156: $rp_path does not respect SITECOOKIEPATH/COOKIEPATH
------------------------------------+-----------------------------
Reporter: WALoeIII | Owner:
Type: defect (bug) | Status: new
Priority: high | Milestone: 4.0
Component: Login and Registration | Version: trunk
Severity: major | Resolution:
Keywords: | Focuses: administration
------------------------------------+-----------------------------
Changes (by nacin):
* keywords: reporter-feedback =>
* priority: normal => high
* severity: normal => major
Comment:
Okay, I could see how this could go wrong.
You're going to http://domain.com/wp-login.php. This is the network site
url, but not the site url for the main site. That'd be
http://domain.com/wordpress/wp-login.php. http://domain.com/wp-login.php
isn't actually the site url for any site in this setup.
When you submit, you're actually submitting to http://domain.com/wordpress
/wp-login.php, since the form actions are site_url() throughout this
process. The email uses network_site_url() though, which links you back to
http://domain.com/wp-login.php. At that point, you then get redirected
(after the key and username is stripped from the URL) to http://domain.com
/wp-login.php again. But the form action submits to site_url(), which is
http://domain.com/wordpress/wp-login.php.
Two possible solutions:
* Always post to network_site_url().
* Link to site_url() in the email.
I like the first one, since for whatever reason we already seem to want it
to go through the central location.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/29156#comment:15>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list