sergiotarxz
/
Wordpress
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
36,114 Commits 2 Branches 473 Tags 137 MiB
PHP 76.7%
CSS 10.9%
JavaScript 9.2%
Modelica 2.4%
HTML 0.6%
Other 0.2%
Go to file
Sergey Biryukov caebbb456e REST API: Do not allow access to users from a different site in multisite. 
It has been unintendedly possible to both view and edit users from a different site than the current site in multisite environments. Moreover, when passing roles to a user in an update request, that user would implicitly be added to the current site.

This changeset removes the incorrect behavior for now in order to be able to provide a proper REST API workflow for managing multisite users in the near future. Related unit tests have been adjusted as well.

Props jnylen0, jeremyfelt, johnjamesjacoby.
Merges [40106] to the 4.7 branch.
Fixes #39701.

git-svn-id: https://develop.svn.wordpress.org/branches/4.7@40111 602fd350-edb4-49c9-b593-d223f7449a82
 		2017-02-24 20:45:52 +00:00
src REST API: Do not allow access to users from a different site in multisite. 2017-02-24 20:45:52 +00:00
tests REST API: Do not allow access to users from a different site in multisite. 2017-02-24 20:45:52 +00:00
tools/i18n
.editorconfig
.gitignore
.jshintrc
.travis.yml
Gruntfile.js
npm-shrinkwrap.json
package.json
phpunit.xml.dist
wp-cli.yml
wp-config-sample.php
wp-tests-config-sample.php