Special Content

Get rid of this Strict Standards warning WooCommerce: get_current_screen not working with multi language Can’t login on WordPress Force HTTPS using .htaccess – stuck in redirect loop WordPress: Ajax not working to insert, query and result data

Home Science, Programming and Technology WordPress Using Nonces for AJAX that only retrieves data

Using Nonces for AJAX that only retrieves data

April 7, 20232 Views

placeholder

Does it make sense to use a nonce on an AJAX action that only returns data and doesn’t alter data on the server side? I understand they are important if you are saving data or changing something on the server but if you are just receiving data like a post or metadata, is a nonce really needed?

Post Views: 2

Leave a Reply Cancel reply

You must be logged in to post a comment.

1 comment

Anonymous says:

April 7, 2023 at 1:30 am

No, it is not needed. If you want to show the data to some users only, you can use current_user_can( 'some_capability' ) to restrict the access.

Log in to Reply