Should we remove redirect rules for editing and deleting entries?

GravityKit / Dashboard-Views

See Views in the WordPress Dashboard

GNU General Public License v2.0

1 stars 0 forks source link

Closed zackkatz closed 1 year ago

zackkatz commented 3 years ago

I think it makes sense to remove delete_redirect_url and edit_redirect_url when displaying an entry in the admin.

Thoughts?

rafaehlers commented 3 years ago

Why? Do you fear this can be used as an XSS entry point or something similar?

zackkatz commented 3 years ago

No, because if you’re in the admin, wouldn’t you want different rules?

zackkatz commented 1 year ago

Closing: if they want, they can clone a View and add admin-specific redirects.