Update frequently-asked-questions.md

WP-API / docs

The content for developer.wordpress.org/rest-api

https://developer.wordpress.org/rest-api

110 stars 621 forks source link

Update frequently-asked-questions.md #38

Closed BjornW closed 5 years ago

BjornW commented 5 years ago

I've added a warning about the WordPress REST API being open for all Origins. I've paraphrased @rmccue to indicate this was discussed recently and to make clear who said this (instead of me). I've added a link to my plugin as an example for verifying Origins before sending out CORS headers.

Trac tickets for reference:

https://core.trac.wordpress.org/ticket/40011#comment:6
https://core.trac.wordpress.org/ticket/45477

iandunn commented 5 years ago

It looks like the ticket link is broken: https://core.trac.wordpress.org/changeset/40600intentional

BjornW commented 5 years ago

@iandunn I fixed the link typo. It should work now.