[wp-trac] [WordPress Trac] #39701: Do not allow editing users from a different site in REST API
WordPress Trac
noreply at wordpress.org
Thu Feb 23 16:41:38 UTC 2017
#39701: Do not allow editing users from a different site in REST API
---------------------------------------------+------------------------
Reporter: flixos90 | Owner: flixos90
Type: defect (bug) | Status: accepted
Priority: normal | Milestone: 4.7.3
Component: REST API | Version: 4.7
Severity: normal | Resolution:
Keywords: has-patch has-unit-tests commit | Focuses: multisite
---------------------------------------------+------------------------
Changes (by flixos90):
* keywords: has-patch has-unit-tests => has-patch has-unit-tests commit
Comment:
I agree with @jnylen0 here. While it's certainly not optimal that this
behavior has been introduced at all, it would be much worse if we had to
live with it long-term, so I think it's a necessary fix. I think providing
a changelog like the above will be sufficient documentation for anyone who
uses the REST API currently to edit or view users from another site (which
should be a low number considering that this feature and generally any
multisite functionality have never been documented).
--
Ticket URL: <https://core.trac.wordpress.org/ticket/39701#comment:25>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list