dépôts / lhc / web / wiklou.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 98d9684) | patch
BREAKING CHANGE: Require POST for patrolling revisions and salt the patrol token...
authorBryan Tong Minh <btongminh@users.mediawiki.org>
Thu, 9 Dec 2010 21:29:03 +0000 (21:29 +0000)
committerBryan Tong Minh <btongminh@users.mediawiki.org>
Thu, 9 Dec 2010 21:29:03 +0000 (21:29 +0000)
commit27b998755c2b18fb247c7929c7e358f32a98141c
tree3ae2b035f1f48be991b1db9477c38378dd9af8b6tree | snapshot
parent98d9684ace02085341d8c1b5c404ec14bc55e3d7commit | diff
BREAKING CHANGE: Require POST for patrolling revisions and salt the patrol token with 'patrol' instead of rc_id.

See my comments on r75274, for which this is a follow-up. Using a dedicated, but constant patrol token is in my opinion the optimal compromise between performance (only require fetching the token once) and security (leaking the token will only compromise the patrolling feature).
includes/api/ApiPatrol.php diff | blob | history
includes/api/ApiQueryInfo.php diff | blob | history
includes/api/ApiQueryRecentChanges.php diff | blob | history
Wiklou, le Wiki du Wiklou