WordPress.org

Make WordPress Core

Opened 2 weeks ago

#48213 new defect (bug)

The XML-RPC endpoint should return a more appropriate HTTP status code when it's disabled

Reported by: johnbillion Owned by:
Milestone: Awaiting Review Priority: low
Severity: normal Version:
Component: XML-RPC Keywords: needs-patch
Focuses: Cc:
PR Number:

Description

When the XML-RPC endpoint is disabled via a false return value on the xmlrpc_enabled filter, a POST request to /xmlrpc.php receives an HTTP 200 response code along with the error message.

A more appropriate response code would be either 403 or 405, the latter of which mirrors the IXR_Error code used internally.

Change History (0)

Note: See TracTickets for help on using tickets.