Opened 9 years ago
Closed 9 years ago
#35355 closed defect (bug) (fixed)
Customizer should not try to return to the login screen
Reported by: |
|
Owned by: |
|
---|---|---|---|
Milestone: | 4.4.2 | Priority: | normal |
Severity: | normal | Version: | 4.4 |
Component: | Customize | Keywords: | has-patch commit fixed-major |
Focuses: | Cc: |
Description
In #32637, we based the action of the Customizer close button on the referring URL. However, if the login URL is accessed on the way to the Customizer, this results in a mess of redirects and confusing behavior for the user (while also inducing fear that their changes were not saved/published).
The main reason I opened #32637 in the first place was for when someone has a Customizer link bookmarked or enters it directly; however, these are the very situations where they are most likely to need to log in first, causing this bug.
There are two options for fixing this behavior - adding something to prevent the login page from being accessed explicitly, or removing the behavior of trying to find the referrer entirely in favor of the preview URL and/or home URL fallbacks. It would probably be better to go with the first option, although my concern with that approach is that there may be other cases like that where returning to the referring URL causes problems.
Attachments (2)
Change History (9)
#1
@
9 years ago
- Keywords has-patch added; needs-patch removed
Hi @celloexpressions
Actually, I have added one array which contain pages name need to exclude from referer url. In future, We can add more pages name in that array to exclude from referer in customizer page.
I have uploaded patch file. Please check and let me know if its fine.
Regards,
Chandra
#2
@
9 years ago
- Owner set to westonruter
- Status changed from new to reviewing
Patch looks good to me. Not too complex, so we may want to add it to 4.4.2 also.
#3
@
9 years ago
- Keywords commit added
- Milestone changed from 4.5 to 4.4.2
Good work guys. This is a bug I've noticed myself as well.
In 35355.2.diff I also included an update to the unit test to explicitly check that wp-login.php
is excluded from being an allowed referrer.
Exclude login page from referer page in customizer.