migrate security annotations, please review

author: Bernhard Posselt <dev@bernhard-posselt.com> 2014-04-09 01:59:42 +0200
committer: Bernhard Posselt <dev@bernhard-posselt.com> 2014-04-09 22:52:27 +0200
commit: 4637dcc4587ed0c3b1695568a3c8a3853d695c5d (patch)
tree: e1778a3ddbaa95568ab90c211d49925f4946d157 /api/newsapi.php
parent: 6d365e8083ecf67212203fe86fd1e1bf2b4ac281 (diff)
1 files changed, 7 insertions, 13 deletions
diff --git a/api/newsapi.php b/api/newsapi.php
index 322defead..151afedf3 100644
--- a/api/newsapi.php
+++ b/api/newsapi.php
@@ -47,10 +47,8 @@ class NewsAPI extends Controller {
 
 
 	/**
-	 * @IsAdminExemption
-	 * @IsSubAdminExemption
-	 * @CSRFExemption
-	 * @Ajax
+	 * @NoAdminRequired
+	 * @NoCSRFRequired
 	 * @API
 	 */
 	public function version() {
@@ -61,8 +59,7 @@ class NewsAPI extends Controller {
 
 
 	/**
-	 * @CSRFExemption
-	 * @Ajax
+	 * @NoCSRFRequired
 	 * @API
 	 */
 	public function beforeUpdate() {
@@ -72,8 +69,7 @@ class NewsAPI extends Controller {
 
 
 	/**
-	 * @CSRFExemption
-	 * @Ajax
+	 * @NoCSRFRequired
 	 * @API
 	 */
 	public function afterUpdate() {
@@ -83,11 +79,9 @@ class NewsAPI extends Controller {
 
 
 	/**
-	 * @IsAdminExemption
-	 * @IsSubAdminExemption
-	 * @CSRFExemption
-	 * @IsLoggedInExemption
-	 * @Ajax
+	 * @NoAdminRequired
+	 * @NoCSRFRequired
+	 * @PublicPage
 	 */
 	public function cors() {
 		// needed for webapps access due to cross origin request policy
author	Bernhard Posselt <dev@bernhard-posselt.com>	2014-04-09 01:59:42 +0200
committer	Bernhard Posselt <dev@bernhard-posselt.com>	2014-04-09 22:52:27 +0200
commit	4637dcc4587ed0c3b1695568a3c8a3853d695c5d (patch)
tree	e1778a3ddbaa95568ab90c211d49925f4946d157 /api/newsapi.php
parent	6d365e8083ecf67212203fe86fd1e1bf2b4ac281 (diff)