#50131 closed defect (bug) (fixed)
Absent custom favicon triggers wp-admin .htaccess/.htpasswd prompt on frontend in FIrefox
Reported by: |
|
Owned by: |
|
---|---|---|---|
Milestone: | 5.4.2 | Priority: | normal |
Severity: | normal | Version: | 5.4 |
Component: | Customize | Keywords: | |
Focuses: | Cc: |
Description
When there is no favicon set for a website and an extra security layer is set up on the /wp-admin/ directory with .htaccess and .htpasswd, Firefox shows the login prompt on the site's frontend when the browser issues a GET request to load /wp-admin/images/w-logo-blue.png as a default/fallback favicon. Clicking on 'Cancel' dismisses the prompt, and the GET request receives a '401 Unauthorised' response. The WP logo favicon isn't loaded then. Curiously, this doesn't seem to affect Chrome and other Chromium based browsers.
I understand that this is a particular use case, but since setting up a favicon is optional and many sites don't do it, while setting up the extra protection on their /wp-admin/ (indeed, some hosting providers do that by default), this might significantly degrade user experience and even drive users away from websites.
Attachments (1)
Change History (6)
#2
@
5 years ago
- Keywords needs-patch added; reporter-feedback removed
- Milestone changed from Awaiting Review to 5.4.2
- Severity changed from major to normal
- Version changed from 5.4.1 to 5.4
I agree, this needs to be changed to load the image from wp-includes via includes_url() instead.
Related: #35322