dépôts / lhc / web / wiklou.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b09bfb7) | patch
API: Add "standard" header and hook for lacksSameOriginSecurity()
authorBrad Jorsch <bjorsch@wikimedia.org>
Fri, 8 May 2015 14:20:30 +0000 (10:20 -0400)
committerChad Horohoe <chadh@wikimedia.org>
Fri, 20 May 2016 16:25:14 +0000 (09:25 -0700)
commit9ec1ef7308acc0366e92f8e6af10ce3cb22b5065
treef71e215242792b2213a579c08f17e572c1972a31tree | snapshot
parentb09bfb7bf6b811f9657a606d611a7f889a5e013ecommit | diff
API: Add "standard" header and hook for lacksSameOriginSecurity()

The header is intended for use with XMLHttpRequest when the request
might be part of an XSS. The hook is for extensions that might need to
add additional checks of some sort.

Bug: T98313
Change-Id: I0e5f2d3b29a79a12461dc33c90c812a56810f536

Signed-off-by: Chad Horohoe <chadh@wikimedia.org>
docs/hooks.txt diff | blob | history
includes/api/ApiBase.php diff | blob | history
includes/api/ApiMain.php diff | blob | history
tests/phpunit/includes/api/ApiMainTest.php diff | blob | history
Wiklou, le Wiki du Wiklou