Uploaded image for project: 'CiviCRM'
  1. CiviCRM
  2. CRM-3937

Improvements/Security patch to REST.php

          Details

          • Type: Patch
          • Status: Done/Fixed
          • Priority: Critical
          • Resolution: Fixed/Completed
          • Affects Version/s: 2.2.0
          • Fix Version/s: 2.2.0
          • Component/s: CiviCRM API
          • Labels:
            None

            Description

            This patch allows users to connect to the REST interface using a new parameter called api_key that links to the api_key field in the contact record. This also patches a major hole that allows non-authenticated users to use the REST interface at will.

              Attachments

              1. REST.php
                12 kB
                Aaron Crosman
              2. REST.php.patch
                7 kB
                Aaron Crosman

                Activity

                  People

                  • Assignee:
                    sunil Sunil Pawar
                    Reporter:
                    acrosman Aaron Crosman
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    0 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved: