WordPress.org

Make WordPress Core


Ignore:
Timestamp:
04/27/2018 10:12:01 AM (3 years ago)
Author:
azaozz
Message:

Privacy: update the method to confirm user requests by email. Use a single CPT to store the requests and to allow logging/audit trail.

Props mikejolley.
See #43443.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/src/wp-admin/includes/ajax-actions.php

    r42986 r43008  
    44654465    // Find the request CPT
    44664466    $request = get_post( $request_id );
    4467     if ( 'user_remove_request' !== $request->post_type ) {
     4467    if ( 'remove_personal_data' !== $request->post_title ) {
    44684468        wp_send_json_error( __( 'Error: Invalid request ID.' ) );
    44694469    }
    44704470
    4471     $email_address = get_post_meta( $request_id, '_user_email', true );
     4471    $email_address = get_post_meta( $request_id, '_wp_user_request_user_email', true );
    44724472
    44734473    if ( ! is_email( $email_address ) ) {
Note: See TracChangeset for help on using the changeset viewer.