Remove all uses of admin-ajax.php please

trustedlogin / trustedlogin-vendor

Plugin to interact with TrustedLogin's encrypted storage infrastructure to redirect support staff into an authenticated session on client installations.

GNU General Public License v3.0

0 stars 1 forks source link

Remove all uses of admin-ajax.php please #25

Open Shelob9 opened 4 years ago

Shelob9 commented 4 years ago

admin-ajax is not a secure. Also if I'm running an eCommerce site with WordPress, performance is probably a major concern and admin-ajax is a performance concern.

inztinkt commented 4 years ago

memo to self: the references to admin-ajax are the webhook endpoints for helpdesks.

eg:

add_action( 'wp_ajax_' . self::slug . '_webhook', array( $this, 'webhook_endpoint' ) );
add_action( 'wp_ajax_nopriv_' . self::slug . '_webhook', array( $this, 'webhook_endpoint' ) );

Move to REST API endpoints instead.