[wp-trac] [WordPress Trac] #61703: the_password_form hook documentation incorrectly references 20char password limit
WordPress Trac
noreply at wordpress.org
Thu Aug 1 01:07:00 UTC 2024
#61703: the_password_form hook documentation incorrectly references 20char password
limit
-------------------------------+-----------------------------
Reporter: dd32 | Owner: SergeyBiryukov
Type: defect (bug) | Status: reviewing
Priority: normal | Milestone: 6.7
Component: Posts, Post Types | Version: 4.7
Severity: normal | Resolution:
Keywords: has-patch commit | Focuses: docs
-------------------------------+-----------------------------
Comment (by SergeyBiryukov):
Replying to [comment:5 peterwilsoncc]:
> I'm not seeing this change. The post password appears to be stored in
plain text still. Is it possible there was some confusion with user
passwords?
That's what I found too (hence didn't commit the current patch). When
testing on trunk, post passwords are indeed stored in plain text.
Replying to [comment:6 dd32]:
> The change wasn't to store post_password in a hashed form, but rather to
cease storing it in the access cookie in plaintext and instead store a
hash there.. #19797 #3316
That sounds right :)
--
Ticket URL: <https://core.trac.wordpress.org/ticket/61703#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list