sergiotarxz/Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Admin: Use is_user_logged_in() instead of wp_validate_auth_cookie() in admin-post.php.

Browse Source 
This matches the authentication check in `admin-ajax.php`, and allows the authentication method to be filtered.

Props jmdodd.
Fixes #45475.



git-svn-id: https://develop.svn.wordpress.org/trunk@44615 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Gary Pendergast 2019-01-16 05:40:04 +00:00
parent 9beaad7878
commit 97c6a43eda
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/wp-admin/admin-post.php
View File

@ -31,7 +31,7 @@ do_action( 'admin_init' );
$action = empty( $_REQUEST['action'] ) ? '' : $_REQUEST['action']; $action = empty( $_REQUEST['action'] ) ? '' : $_REQUEST['action'];
if ( ! wp_validate_auth_cookie() ) { if ( ! is_user_logged_in() ) {
if ( empty( $action ) ) { if ( empty( $action ) ) {
/** /**
* Fires on a non-authenticated admin post request where no action is supplied. * Fires on a non-authenticated admin post request where no action is supplied.