WordPress will use a "nonce" token to prevent duplicate input and CSRF attacks. That's all well and good, but in British English that word has another, sinister meaning. Occasionally we'll have a caching issue and a token will be re-used. WordPress usually displays a nondescript "Are you sure you want to do this?" error, but some plugins will print "Invalid/Bad Nonce" right there on the screen.
I've had to explain to a couple of clients that this is indeed correct and is a technical term. Unfortunately one of those clients was a school.
WordPress will use a "nonce" token to prevent duplicate input and CSRF attacks. That's all well and good, but in British English that word has another, sinister meaning. Occasionally we'll have a caching issue and a token will be re-used. WordPress usually displays a nondescript "Are you sure you want to do this?" error, but some plugins will print "Invalid/Bad Nonce" right there on the screen.
I've had to explain to a couple of clients that this is indeed correct and is a technical term. Unfortunately one of those clients was a school.
Hey Jack-
Yep, I've definitely seen
nonce
used in URLs (not just in WP). I had no idea there was that alternate meaning in British English!