mirrors/ArchiveBox
1
0
Fork 0
mirror of https://github.com/ArchiveBox/ArchiveBox.git synced 2025-05-13 06:34:25 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

disable cookie auth in API because csrf=False

Browse source
This commit is contained in:
Nick Sweeting 2024-09-02 01:13:19 -07:00
parent da76a84c45
commit dd05ad04fa
No known key found for this signature in database
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
archivebox/api/auth.py
View file

@ -105,6 +105,6 @@ API_AUTH_METHODS = [
HeaderTokenAuth(), HeaderTokenAuth(),
BearerTokenAuth(), BearerTokenAuth(),
QueryParamTokenAuth(), QueryParamTokenAuth(),
django_auth_superuser, # django_auth_superuser, # django admin cookie auth, not secure to use with csrf=False
UsernameAndPasswordAuth(), UsernameAndPasswordAuth(),
] ]