Closed (fixed)
Project:
Web Service Clients
Version:
7.x-3.x-dev
Component:
Code
Priority:
Critical
Category:
Task
Assigned:
Unassigned
Reporter:
Created:
6 Jun 2013 at 22:31 UTC
Updated:
19 Aug 2013 at 14:01 UTC
Jump to comment: Most recent file
Comments
Comment #1
joachim commentedUpping to critical -- Clients won't work with Services 3.4 until this is fixed.
I've got working code for this, but the problem is that the token has to be obtained from a normal menu path. And Clients doesn't know the base URL of the Drupal site, just the URL of the endpoint.
I've asked for #2016501: Add a CSRF token service to get rolled into a new release, which will give us what we need.
Comment #2
joachim commentedThis is work in progress. It needs a new release of Services containing the fix from #2016501: Add a CSRF token service, so we don't depend on a patched module.
Comment #3
joachim commentedHere's the complete patch.
We now need Services 3.5 on the remote site.
Comment #4
joachim commentedCommitted & new release on the way.
Comment #5
nimbuz77 commentedI need some instruction to apply the patch
Thanks
Comment #6
joachim commentedThe patch is now committed, there is no need to apply it. It's now in the new release.
Comment #7
nimbuz77 commentedServices module is still dated 31 July.
Comment #8
joachim commentedThis issue (and patch) is for Clients module.