diff options
| author | Bernhard Posselt <dev@bernhard-posselt.com> | 2016-05-10 22:03:21 +0200 |
|---|---|---|
| committer | Bernhard Posselt <dev@bernhard-posselt.com> | 2016-05-10 22:03:21 +0200 |
| commit | a2457322290eb5273ac4814691c2662ba843cc89 (patch) | |
| tree | 025a6f20ad273d9aaf423d31958a182f48107138 /docs | |
| parent | 79098ac72525b03c34587819fd46f3f9c7e7792b (diff) | |
More security guidlines
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/developer/External-Api.md | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/docs/developer/External-Api.md b/docs/developer/External-Api.md index 40a548a86..6b1f1e8b0 100644 --- a/docs/developer/External-Api.md +++ b/docs/developer/External-Api.md @@ -95,6 +95,8 @@ where $CREDENTIALS is: This authentication/authorization method will be the recommended default until core provides an easy way to do OAuth +**Note**: Even if login cookies are sent back to your client, they will not be considered for authentication. + ## Request Format The required request headers are: * **Accept**: application/json |