[wp-trac] [WordPress Trac] #38855: REST API: Turn off unauthed comment write by default
WordPress Trac
noreply at wordpress.org
Fri Nov 18 21:47:49 UTC 2016
#38855: REST API: Turn off unauthed comment write by default
----------------------------+------------------
Reporter: helen | Owner:
Type: task (blessed) | Status: new
Priority: high | Milestone: 4.7
Component: REST API | Version:
Severity: major | Resolution:
Keywords: | Focuses:
----------------------------+------------------
Comment (by joehoyle):
I agree with this - though it's nice to have unauth'ed comment creation,
at least at this point it seems pertinent to err on the side of caution.
Themes that want to build comment experiences with the REST API can also
use the PHP filter to change this if they wanted. It's more the widespread
enabling that I think is likely to be a problem.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38855#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list