From 2490ec40c87f78c3d104291389abfe7cedf0740b Mon Sep 17 00:00:00 2001
From: ryan <ryan@1a063a9b-81f0-0310-95a4-ce76da25c4cd>
Date: Wed, 26 Dec 2007 19:54:35 +0000
Subject: [PATCH] Limit what getAuthors exposes. Props josephscott for the
 patch and xknown for the find. fixes #5534 for 2.4

git-svn-id: http://svn.automattic.com/wordpress/trunk@6498 1a063a9b-81f0-0310-95a4-ce76da25c4cd
---
 xmlrpc.php | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/xmlrpc.php b/xmlrpc.php
index b30b8cc153..cfcbf15edb 100644
--- a/xmlrpc.php
+++ b/xmlrpc.php
@@ -527,9 +527,23 @@ class wp_xmlrpc_server extends IXR_Server {
 			return($this->error);
 		}
 
+		set_current_user(0, $username);
+		if(!current_user_can("edit_posts")) {
+			return(new IXR_Error(401, __("Sorry, you can not edit posts on this blog.")));
+        }
+
 		do_action('xmlrpc_call', 'wp.getAuthors');
 
-		return(get_users_of_blog());
+		$authors = array();
+		foreach( (array) get_users_of_blog() as $row ) {
+			$authors[] = array(
+				"user_id"       => $row->user_id,
+				"user_login"    => $row->user_login,
+				"display_name"  => $row->display_name
+			);
+		}
+
+		return($authors);
 	}
 
 	/**