[wp-trac] [WordPress Trac] #35322: OEmbed generates link to an image in the wp-admin directory
WordPress Trac
noreply at wordpress.org
Tue Jan 5 22:33:43 UTC 2016
#35322: OEmbed generates link to an image in the wp-admin directory
---------------------------+-----------------------------
Reporter: nachtwaechter | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version: 4.4
Severity: normal | Keywords:
Focuses: |
---------------------------+-----------------------------
The embedded article contains a link to the WordPress logo in the wp-admin
directory, if no website icon is specified explicitly.
For most users, it is not an issue. But some people – like me – prefer to
have HTTP authentification on the whole wp-admin directory to harden their
installation. For those people, an embedded post or page in social media
sites or something similar gives an authentification dialog window in the
browser while displaying, which is ugly, unwanted and looks like a bug.
There is a very simple workaround, which I am going to describe in a
German posting soon: Just set a website icon, which is then used instead
of the default WordPress logo. (Why German? Because it is my native tongue
and it is spoken by all of my readers.)
But from my point of view, it is an error in the WordPress core. The error
is in the sometimes wrong assumption, wp-admin is a world-readable
directory in every installation.
I suggest placing a WordPress logo in the wp-includes directory and using
this version in embedded views, allowing for using HTTP authentification
in wp-admin.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/35322>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list