[wp-hackers] Ajax calls and cookie within the admin

Casey Bisson casey.bisson at gmail.com
Mon Feb 23 21:05:24 GMT 2009


You might want to take a look at admin-ajax.php, both to see how  
things get secured in there and how you can plug into it with your  
project.

http://core.trac.wordpress.org/browser/tags/2.7.1/wp-admin/admin-ajax.php

--Casey

http://maisonbisson.com
http://about.scriblio.net

On Mon, Feb 23, 2009 at 2:36 PM, L'Autre Monde  
<autremonde75 at gmail.com> wrote:

> Ok but then, what do I need to perform to secure my ajax handler on  
> the
> server side? Is there a method to check the cookie validity? Is the  
> nonce
> verification enough?


More information about the wp-hackers mailing list