Ticket #6266: 6266-2.diff

wp-includes/pluggable.php

@@ -953 +953 @@
  * @return int
  */
 function wp_nonce_tick() {
-        $nonce_life = apply_filters('nonce_life', 86400) / 2;
+        $nonce_life = apply_filters('nonce_life', 86400);
 
         return ceil(time() / ( $nonce_life / 2 ));
 }

wp-admin/admin-ajax.php

@@ -520 +520 @@
         if ( $do_lock && $id && is_numeric($id) )
                 wp_set_post_lock( $id );
 
-        if ( $nonce_age == 2 )
+        if ( $nonce_age == 2 ) {
                 $supplemental['replace-autosavenonce'] = wp_create_nonce('autosave');
+                $supplemental['replace-getpermalinknonce'] = wp_create_nonce('getpermalink');
+                $supplemental['replace-samplepermalinknonce'] = wp_create_nonce('samplepermalink');
+                $supplemental['replace-closedpostboxesnonce'] = wp_create_nonce('closedpostboxes');
+                if ( $id ) {
+                        if ( $_POST['post_type'] == 'post' )
+                                $supplemental['replace-_wpnonce'] = wp_create_nonce('update-post_' . $id);
+                        elseif ( $_POST['post_type'] == 'page' )
+                                $supplemental['replace-_wpnonce'] = wp_create_nonce('update-page_' . $id);
+                }
+        }
 
         $x = new WP_Ajax_Response( array(
                 'what' => 'autosave',