[wp-trac] Re: [WordPress Trac] #7935: wp-login.php Doesn't Redirect to Admin if Already Logged in

WordPress Trac wp-trac at lists.automattic.com
Thu Oct 23 20:30:18 GMT 2008


#7935: wp-login.php Doesn't Redirect to Admin if Already Logged in
----------------------------+-----------------------------------------------
 Reporter:  Speedboxer      |        Owner:  anonymous
     Type:  defect          |       Status:  closed   
 Priority:  normal          |    Milestone:           
Component:  Administration  |      Version:           
 Severity:  normal          |   Resolution:  wontfix  
 Keywords:  has-patch       |  
----------------------------+-----------------------------------------------
Changes (by ryan):

  * status:  new => closed
  * resolution:  => wontfix
  * milestone:  2.7 =>

Comment:

 is_user_logged_in() only checks the loggedin cookie, not the auth cookies.
 It can't check the auth cookies because they are delivered only for wp-
 admin.  This makes doing redirects based on the loggedin cookie unreliable
 because you can't be sure the auth cookie is properly set. Usually both
 the auth and the loggedin are set in tandem, but the SSL settings and
 unexpected funkiness can prevent that.  For now, I'd rather not risk
 infinite redirects.  Ee can revisit this in a later release and consider
 wp-admin/login.php so we can do it right.  Closing as wontfix in the
 meantime.

-- 
Ticket URL: <http://trac.wordpress.org/ticket/7935#comment:2>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list