[wp-trac] [WordPress Trac] #38855: REST API: Turn off unauthed comment write by default
WordPress Trac
noreply at wordpress.org
Sat Nov 19 01:15:39 UTC 2016
#38855: REST API: Turn off unauthed comment write by default
----------------------------+------------------
Reporter: helen | Owner:
Type: task (blessed) | Status: new
Priority: high | Milestone: 4.7
Component: REST API | Version:
Severity: major | Resolution:
Keywords: | Focuses:
----------------------------+------------------
Comment (by dd32):
I'm personally '''for''' unauthed comment writes by default - however, I
don't think it needs to be in the initial release while concerns around it
still exist and not everyone is on the same page.
Having it available to be enabled by a filter allows themes to potentially
use it if they wish, and should get the attention of anti-spam plugins to
review if their plugins still operate as required via the endpoint.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38855#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list