stackoom
  简体   繁体   中英

How to use nonces in a Wordpress multisite

 原文  2020-02-10 13:30:20       wordpress/ multisite/ nonce

Question

For a domain based multisite installation I have written some ajax endpoints to retrieve data from one blog of the network and display it in another blog of the same network.

I would had try wp_nonce_url and wp_verify_nonce but somehow, the nonces aren't indentical so the verification fails.

I wonder why this is so. As far as I could read from the docs of wordpress the nonce isn't bound to a domain, so it should be the same regardless which blog of the network I call.

Any hints what could be the reason, that the verification fails?

1 answers

solution1
 0  2020-02-10 15:02:14

Ah, I got it.

I was logged in on the site which makes the ajax call and therefore uid and session were not identical. Because this information is used to build the hash it is obvious that the nonce could not match. Since I can not surely determine whether the user is logged into one of the affected blogs of the Ajax call (sender / recipient), I have no choice but to implement my own nonce routine.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do wordpress nonces work? How to use Wordpress Multisite with multiple TLDs How to redirect wordpress multisite? Where Are WordPress nonces Stored? WordPress nonces are wrong and not working? Should I use Wordpress Multisite? How to use htaccess to restrict one wordpress site but not all in multisite How can I get and use current multisite email wordpress How to set up multisite in WordPress? Multisite Wordpress, SSL and htaccess to use the subfolder as a root
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM