diff options
author | Bernhard Posselt <dev@bernhard-posselt.com> | 2014-04-09 01:59:42 +0200 |
---|---|---|
committer | Bernhard Posselt <dev@bernhard-posselt.com> | 2014-04-09 22:52:27 +0200 |
commit | 4637dcc4587ed0c3b1695568a3c8a3853d695c5d (patch) | |
tree | e1778a3ddbaa95568ab90c211d49925f4946d157 /api/newsapi.php | |
parent | 6d365e8083ecf67212203fe86fd1e1bf2b4ac281 (diff) |
migrate security annotations, please review
Diffstat (limited to 'api/newsapi.php')
-rw-r--r-- | api/newsapi.php | 20 |
1 files changed, 7 insertions, 13 deletions
diff --git a/api/newsapi.php b/api/newsapi.php index 322defead..151afedf3 100644 --- a/api/newsapi.php +++ b/api/newsapi.php @@ -47,10 +47,8 @@ class NewsAPI extends Controller { /** - * @IsAdminExemption - * @IsSubAdminExemption - * @CSRFExemption - * @Ajax + * @NoAdminRequired + * @NoCSRFRequired * @API */ public function version() { @@ -61,8 +59,7 @@ class NewsAPI extends Controller { /** - * @CSRFExemption - * @Ajax + * @NoCSRFRequired * @API */ public function beforeUpdate() { @@ -72,8 +69,7 @@ class NewsAPI extends Controller { /** - * @CSRFExemption - * @Ajax + * @NoCSRFRequired * @API */ public function afterUpdate() { @@ -83,11 +79,9 @@ class NewsAPI extends Controller { /** - * @IsAdminExemption - * @IsSubAdminExemption - * @CSRFExemption - * @IsLoggedInExemption - * @Ajax + * @NoAdminRequired + * @NoCSRFRequired + * @PublicPage */ public function cors() { // needed for webapps access due to cross origin request policy |