Opened 12 years ago
Closed 8 years ago
#4848 closed enhancement (maybelater)
buddypress.trac.wordpress.org asking for other sites' passwords
Reported by: | jidanni | Owned by: | |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | trivial | Version: | |
Component: | BuddyPress.org Sites | Keywords: | |
Cc: |
Description
I'm not sure the 'use your wordpress.org login' message complies with best practices.
Even though here on this bugtracker we are on a subdomain,
however the idea of asking users to type in their keys to other sites doesn't seem
to be best...
Indeed these days one only sees that on non-legitimate sites...
Change History (5)
#2
@
12 years ago
- Milestone changed from Awaiting Review to BuddyPress.org
Yeah, it would be nice if cookies carried over better. Thanks for the suggestion.
#3
@
11 years ago
If you want to log in on wordpress.org and expect that to carry on to buddypress.trac.wordpress.org, I think it's pretty unlikely that trac will be able to use WordPress' authentication cookies. If anything like this were to happen, I'd expect to see it on the WordPress trac before here, because it'd require a bunch of work under the hood that we don't have access to.
#5
@
8 years ago
- Keywords 2nd-opinion removed
- Milestone BuddyPress.org Sites deleted
- Resolution set to maybelater
- Status changed from new to closed
Taking into account the reply by Paul, I'm closing this, as this is something we are not able to do.
If WordPress devs (and meta as well) do this for their WP-trac, I believe BuddyPress and bbPress will get this feature as well automatically.
Isn't the proper way these days.... to use a 'sign in with wordpress.org', 'google.org', 'facebook.com' popup?
In fact when one comes to think of it, your HTML Basic Auth or whatever it is thingy is quite similar...
... just dumber in that I bet it can't detect if one is already logged in to wordpress.org...