[wp-trac] [WordPress Trac] #42948: Backbone client sending empty string in X-WP-Nonce header by default in some cases
WordPress Trac
noreply at wordpress.org
Mon Feb 26 22:40:35 UTC 2018
#42948: Backbone client sending empty string in X-WP-Nonce header by default in
some cases
--------------------------+------------------------------
Reporter: FPCSJames | Owner: adamsilverstein
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: 4.9.5
Component: REST API | Version: 4.9.1
Severity: normal | Resolution:
Keywords: | Focuses:
--------------------------+------------------------------
Changes (by adamsilverstein):
* milestone: Awaiting Review => 4.9.5
Comment:
In [attachment:42948.diff]:
* Don't set the returned nonce if it is blank.
I looked thru the code the creates and returns the nonce and it should
never be blank - https://core.trac.wordpress.org/browser/branches/4.9/src
/wp-includes/rest-api.php#L788 - unless you have a plugin that is
overwriting the pluggable wp_create_nonce function.
@FPCSJames can you give my patch a test and see if it resolves the issue
you are seeing?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/42948#comment:5>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list