Skip to content
This repository has been archived by the owner on Aug 20, 2019. It is now read-only.

For all authenticated requests ensure a token check is done #72

Open
atruskie opened this issue Dec 19, 2012 · 0 comments
Open

For all authenticated requests ensure a token check is done #72

atruskie opened this issue Dec 19, 2012 · 0 comments
Assignees
@cofiem
Labels
authentication bug server

Comments

@atruskie
Copy link
Member

The cookie is hard to kill. We need to live with it.

However, we need to ensure our rest API also work properly.

So if a cookie and an auth_token are sent in a single request, we need to ensure the auth_token is always checked (not just skipped if the session-cookie authenticates first) .

Also ensure this behavior is working for images off the media controller.
@ghost ghost assigned cofiem Dec 19, 2012
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@cofiem cofiem

Labels
authentication bug server
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cofiem @atruskie