Google Git
Sign in
gerrit / gerrit / bbeb2a96e4fb0e83f8c26e5e5de7bfff66528c43
commitbbeb2a96e4fb0e83f8c26e5e5de7bfff66528c43[log] [tgz]
authorShawn O. Pearce <sop@google.com>Mon Nov 12 12:38:30 2012 -0800
committerShawn O. Pearce <sop@google.com>Mon Nov 12 18:34:34 2012 -0800
treeaed99e0fd726d9db62209db05eb960e4c3b790ab
parente649d848dc9660637db71474a677e1215f385823 [diff]
Remove AuthMethod and add access token to RestApi

Authentication for API calls will be handled using an access token
in the "Authorization: OAuth access_token" style. Browsers do not
use this when making requests unless they use an XmlHttpRequest.
If the value used as the access_token is not available cross-site
then the API call cannot be made by hijacking attempts.

Change-Id: I33654bcaa247cb95a57b03d2df112ca95e970185
22 files changed
tree: aed99e0fd726d9db62209db05eb960e4c3b790ab
  1. contrib/
  2. Documentation/
  3. gerrit-antlr/
  4. gerrit-cache-h2/
  5. gerrit-common/
  6. gerrit-extension-api/
  7. gerrit-gwtdebug/
  8. gerrit-gwtui/
  9. gerrit-httpd/
  10. gerrit-launcher/
  11. gerrit-main/
  12. gerrit-openid/
  13. gerrit-package-plugins/
  14. gerrit-patch-commonsnet/
  15. gerrit-patch-jgit/
  16. gerrit-pgm/
  17. gerrit-plugin-api/
  18. gerrit-plugin-archetype/
  19. gerrit-plugin-gwt-archetype/
  20. gerrit-plugin-gwtui/
  21. gerrit-plugin-js-archetype/
  22. gerrit-prettify/
  23. gerrit-reviewdb/
  24. gerrit-server/
  25. gerrit-sshd/
  26. gerrit-util-cli/
  27. gerrit-util-ssl/
  28. gerrit-war/
  29. ReleaseNotes/
  30. tools/
  31. .gitignore
  32. COPYING
  33. INSTALL
  34. pom.xml
  35. SUBMITTING_PATCHES