Opened 16 years ago
Closed 16 years ago
#7521 closed defect (bug) (fixed)
wp_validate_auth_cookie ignore $scheme parameter when $cookie value is empty
Reported by: |
|
Owned by: | |
---|---|---|---|
Milestone: | 2.7 | Priority: | normal |
Severity: | major | Version: | 2.6 |
Component: | General | Keywords: | bbPress cookie |
Focuses: | Cc: |
Description
in pluggable.php, wp_validate_auth_cookie ignore $scheme parameter when $cookie value is empty. This breaks the use case when you want to validate a users cookie with the scheme 'logged_in'.
This breaks any plugins that use this functionality, specifically bbPress 1.0alpha.
Attachments (3)
Change History (12)
#3
@
16 years ago
I attached a working and semi-tested patch. (it shouldn't break anything and I haven't seen any problems)
#5
@
16 years ago
Some places rely on the current behavior where the scheme is guessed when the cookie is empty. Perhaps we can default the scheme to empty and use an empty scheme to signal that the scheme should be guessed based on is_ssl().
@
16 years ago
Patch fixes bug but also preserves if_ssl() cookie name in the case that no $scheme is provided
Note: See
TracTickets for help on using
tickets.
Fixes the function to use the $scheme parameter when validating user cookies