Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
wtetzner
on Oct 26, 2016
|
parent
|
context
|
favorite
| on:
Parsing JSON is a Minefield
> Setting the session flag for "this user is logged in" before checking (or even decoding!) the password seems rather backwards to me.
Yeah, that seems like a problem regardless of whether or not you're parsing JSON.
rch
on Oct 26, 2016
[–]
Probably a symptom of the PHP multiverse: anything that can happen, has happened.
oblio
on Oct 26, 2016
|
parent
[–]
And will continue to happen in a Wordpress setup somewhere.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Yeah, that seems like a problem regardless of whether or not you're parsing JSON.