about summary refs log tree commit diff
path: root/app/views/auth/sessions/two_factor
diff options
context:
space:
mode:
authorClaire <claire.github-309c@sitedethib.com>2022-04-06 20:57:18 +0200
committerGitHub <noreply@github.com>2022-04-06 20:57:18 +0200
commit62c6e12fa58adea57954e395d10d0ffc2c0cd73c (patch)
tree179128043d1c9908dbbce2e10dad97d06a2903e9 /app/views/auth/sessions/two_factor
parentd116cb7733bb535bb72207b20fba9a7d0da371ed (diff)
Fix admin API unconditionally requiring CSRF token (#17975)
Fixes #17898

Since #17204, the admin API has only been available through the web
application because of the unconditional requirement to provide a valid CSRF
token.

This commit changes it back to `null_session`, which should make it work
both with session-based authentication (provided a CSRF token) and with a
bearer token.
Diffstat (limited to 'app/views/auth/sessions/two_factor')
0 files changed, 0 insertions, 0 deletions