WIP: Check the CSRF token when using the Rails session cookie for API auth (!6684) · Merge requests · GitLab.org / GitLab FOSS · GitLab

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

The source project of this merge request has been removed.

Nick Thomas requested to merge (removed):22966-use-csrf-token-in-api-with-cookie into master Oct 04, 2016

What does this MR do?

Are there points in the code the reviewer needs to double check?

Why was this MR needed?

Screenshots (if relevant)

Does this MR meet the acceptance criteria?

CHANGELOG entry added
Documentation created/updated
API support added
Tests
- Added for this feature/bug
- All builds are passing
Conform by the merge request performance guides
Conform by the style guides
Branch has no merge conflicts with master (if you do - rebase it please)
Squashed related commits together

What are the relevant issue numbers?

Closes #22966 (closed)