Localizations should not need to worry about the default secret key
|Reported by:||nacin||Owned by:||nacin|
Currently localizations must define $wp_default_secret_key in a $locale.php file in order to translate the key placeholder strings and not weaken wp_salt().
This is less than ideal. Let's automagically detect whether the default value is still being used, even if it has been translated, and prevent the need for the $wp_default_secret_key global.
Change History (27)
- Owner set to nacin
- Resolution set to fixed
- Status changed from new to closed
comment:11 nacin — 20 months ago
- Priority changed from normal to high
- Severity changed from normal to blocker