[wp-trac] [WordPress Trac] #53236: Nonce lifespans are inaccurate and unintuitively affected by timezones
WordPress Trac
noreply at wordpress.org
Fri May 21 08:38:42 UTC 2021
#53236: Nonce lifespans are inaccurate and unintuitively affected by timezones
-------------------------------------------------+-------------------------
Reporter: lev0 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting
| Review
Component: Date/Time | Version:
Severity: minor | Resolution:
Keywords: has-patch needs-testing needs-unit- | Focuses:
tests |
-------------------------------------------------+-------------------------
Comment (by Rarst):
Yes, the current situation is that nonce is ''guaranteed'' to be valid for
a ''half'' of `nonce_life`. Personally I find that practically acceptable
in context of ancient implementation and absence of it being reported as a
problem for users with default duration.
To be clear it does irks me plenty that it works in this clunky and
unintuitive way! :) But it doesn't irk me enough to start messing with a
very old core code that isn't an active problem.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/53236#comment:8>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list