[wp-trac] [WordPress Trac] #43359: REST API: /users accessible without authentication
WordPress Trac
noreply at wordpress.org
Mon Feb 19 19:31:35 UTC 2018
#43359: REST API: /users accessible without authentication
-------------------------+-----------------------------
Reporter: rdjong | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: HTTP API | Version: 4.9.4
Severity: normal | Keywords:
Focuses: rest-api |
-------------------------+-----------------------------
Hello,
On May 25, the new privacy law (GDPR: General Data Protection Regulation)
will become into effect within the European Union.
At the moment, the REST API (GET /users) allows everyone to read out names
without having to identify them. I believe that this does not comply with
these new regulations.
Is it possible to add an option to the settings page for manage the REST-
API-calls?
Thanks.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43359>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list