FAQ
AJAX SimplyVarious questions asked by users.
1. Is nonce protection needed only on the frontend? Or is it better to use it in the backend as well?
- It is recommended on the backend too, for important requests.
2. In your plugin manual it says: "Important requests (deleting data, modifying data) need to be protected with another, its own unique nonce code!" As I understand, an example of such protection is here: /function/wp_nonce_field Correct?
- Yes, the example is there and here as well: /plugin/ajax-simply#zashhita-nonce
3. The manual says that a basic nonce check for the plugin can be added via a hook in the function.php file, but this option is not ideal, since the theme file is not connected to the plugin. As I understand, if I have a custom plugin, can I enable a basic check through it? Correct?
- The basic check is enabled via options: /plugin/ajax-simply#nastrojki-ajax-simply