Make WordPress Core

Opened 6 years ago

Closed 6 years ago

#12823 closed defect (bug) (fixed)

Blog name is unnecessarily sanitized

Reported by: nbachiyski Owned by:
Milestone: 3.0 Priority: high
Severity: normal Version:
Component: Multisite Keywords: has-patch signup ux
Focuses: Cc:


When validating a blog information on multisite signup the blog name is sanitized using sanitize_user(). After that there is a check if the blog name matches [a-z0-9]+ and if it doesn't match it is rejected.

In this case there is no need of sanitizing the blog name before the check. Also, sanitizing sometimes confuses users, because their blog name seems accepted, but in fact a modified version is used, not what they entered.

For example, enter bábá as blog name and after sanitizing it will become baba. Or enter something in cyrillic like баба. After sanitization it will become an empty string and the error message will be as if you didn't enter anything.

All these make for a confusing user experience.

Attachments (1)

no-blog-sanitization-before-strict-check.diff (513 bytes) - added by nbachiyski 6 years ago.

Download all attachments as: .zip

Change History (2)

#1 @wpmuguru
6 years ago

  • Resolution set to fixed
  • Status changed from new to closed

(In [14005]) remove extraneous blog name sanitization, props nbachiyski, fixes #12823

Note: See TracTickets for help on using tickets.