Make WordPress Core

Opened 4 years ago

Closed 19 months ago

#13612 closed defect (bug) (worksforme)

Invalid paths in authentication cookies

Reported by: l0b0 Owned by: ryan
Milestone: Priority: normal
Severity: normal Version:
Component: Security Keywords: reporter-feedback close
Focuses: Cc:


According to wget, the cookies served by the login script are not valid, so they are not stored. This makes it impossible to perform automated backup with wget.

How to reproduce:
wget --keep-session-cookies --save-cookies=/tmp/wp-cookies --output-document=/dev/null https://blogname.wordpress.com/wp-login.php && wget --debug --load-cookies=/tmp/wp-cookies --keep-session-cookies --save-cookies=/tmp/wp-cookies --post-data="log=username&pwd=password&testcookie=1" --output-document=/dev/null https://blogname.wordpress.com/wp-login.php

Change History (5)

comment:1 l0b04 years ago

PS: The problem is mentioned in http://github.com/andrewharvey/shellmisc/raw/master/wordpress_export.sh, where curl is used to get around the limitation.

comment:2 nacin3 years ago

  • Milestone changed from Awaiting Review to 3.1

comment:3 markjaquith3 years ago

  • Milestone changed from 3.1 to Future Release

comment:4 filosofo3 years ago

  • Keywords reporter-feedback close added

This appears to be invalid because it has to with WordPress.com-specific configuration.

I have no trouble storing authentication cookies on a standalone WP install, SSL or no.

comment:5 nacin19 months ago

  • Milestone Future Release deleted
  • Resolution set to worksforme
  • Status changed from new to closed
Note: See TracTickets for help on using tickets.