[wp-trac] [WordPress Trac] #40556: REST API: Allow for server generating a user's password
WordPress Trac
noreply at wordpress.org
Mon Apr 24 18:47:08 UTC 2017
#40556: REST API: Allow for server generating a user's password
-------------------------------+-----------------------------
Reporter: TimothyBlynJacobs | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: REST API | Version: 4.7
Severity: normal | Keywords:
Focuses: rest-api |
-------------------------------+-----------------------------
Currently the REST API requires the client to send a password when
creating a user. Ideally, the server should generate a random password
when none is provided.
In WP Admin contexts this can be worked around by using the existing WP
Ajax action to generate a password, but this does require a separate round
trip.
In non WP Admin contexts this forces the client to generate their own
password securely and it also means filters like `random_password` won't
be called.
Patch incoming to automatically generate a password if the request
parameter is omitted. If an empty string is passed, that still errors.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/40556>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list