[wp-hackers] wordpress_logged_in_HASH

Haluk Karamete halukkaramete at gmail.com
Tue Feb 16 04:24:15 UTC 2016

document.cookie does not report/contain the wordpress cookie starting with
the prefix "wordpress_logged_in_" followed by a hash.

This is most likely, it is an httpOnly cookie.
But it surely shows up on the chrome->dev-console->resources->cookies

Is there a JavaScript way to know whether that cookie is there or not?

It would be there, it the user logged in, and if would not be there, if the
user logged out, or that cookie has expired.

If document.cookie reported all the names of the cookie, this would not
have been an issue.

More information about the wp-hackers mailing list