Uploaded image for project: 'eZ Publish / Platform'
  1. eZ Publish / Platform
  2. EZP-25727

The JS REST client should work without csrf-token

    XMLWordPrintable

Details

    • Icon: Improvement Improvement
    • Resolution: Unresolved
    • Icon: High High
    • None
    • None
    • Platform > REST Client:JS
    • None

    Description

      As reported by edi.modric in EZP-25482, the csrf token feature can be disabled in symfony, but the Javascript REST client used by Platform UI doesn't support that.

      The client could be improved to work without a csrf token.

      open questions

      What are the use-cases for this ? It does make sense that the system works with customized values of common symfony settings, but having actual use-cases would help with prioritization.

      Attachments

        Activity

          People

            Unassigned Unassigned
            bertrand.dunogier@ibexa.co Bertrand Dunogier
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: