[wp-trac] [WordPress Trac] #38529: REST API controllers should not use the default sanitizers for polymorphic arguments
WordPress Trac
noreply at wordpress.org
Wed Nov 2 06:01:51 UTC 2016
#38529: REST API controllers should not use the default sanitizers for polymorphic
arguments
-------------------------------------+-----------------------
Reporter: joehoyle | Owner: joehoyle
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 4.7
Component: REST API | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch needs-refresh | Focuses:
-------------------------------------+-----------------------
Changes (by rmccue):
* status: assigned => closed
* resolution: => fixed
Comment:
In [changeset:"39089"]:
{{{
#!CommitTicketReference repository="" revision="39089"
REST API: Avoid default sanitization for polymorphic params.
Some parameters (`title`, `content`, etc) are objects in the output, but
allow objects or strings to be sent in updates for a more ergonomic
interface. This is pretty weird behaviour, so the default sanitisation
doesn't handle this. We instead handle this ourselves in the preparation.
Props joehoyle, rachelbaker.
Fixes #38529.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38529#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list