[wp-trac] [WordPress Trac] #43709: Fix or remove the "delete revision" endpoint
WordPress Trac
noreply at wordpress.org
Thu Aug 15 22:00:59 UTC 2019
#43709: Fix or remove the "delete revision" endpoint
-------------------------------------------------+-------------------------
Reporter: azaozz | Owner: kadamwhite
Type: defect (bug) | Status: closed
Priority: normal | Milestone: 5.3
Component: REST API | Version:
Severity: normal | Resolution: fixed
Keywords: has-patch has-unit-tests early | Focuses: rest-api
needs-dev-note |
-------------------------------------------------+-------------------------
Changes (by kadamwhite):
* owner: (none) => kadamwhite
* status: assigned => closed
* resolution: => fixed
Comment:
In [changeset:"45812" 45812]:
{{{
#!CommitTicketReference repository="" revision="45812"
REST API: Prevent deletion of post revisions.
Allowing the client to delete revisions breaks the "audit trail"
functionality. This is not allowed in WordPress and shouldn't be allowed
through the API.
While not recommended, a plugin may opt-in to the previous behavior by
setting a custom 'delete_post' capability for the revisions post type.
Props dlh, danielbachhuber, TimothyBlynJacobs, azaozz, kadamwhite.
Fixes #43709.
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43709#comment:27>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list