API private token should be sent in the HTTP header

Created by: ghost

It should be possible to send the private token to authenticate in the api directly on the HTTP header. At the moment gitlab reads that only as parameter in the query string.

Created by: vsizov

Why do you think so?

By Administrator on 2012-10-02T14:46:38 (imported from GitLab)

Created by: ghost

I think is good to have both. In my opinion I think it looks cleaner to send it in the header. Also, for example RestKit provides an easy way to add additional http header that can be carry in the header of each request, but it quiet tricky to do the same for a parameter in the query string.

By Administrator on 2012-10-02T14:51:16 (imported from GitLab)

Created by: vsizov

done

By Administrator on 2012-10-02T15:02:43 (imported from GitLab)

Created by: ghost

awesome thanks :)

By Administrator on 2012-10-02T15:04:02 (imported from GitLab)

Created by: riyad

@vsizov, @narkoz You should also update the API docs to include this.

By Administrator on 2012-10-08T17:00:55 (imported from GitLab)

Created by: vsizov

@Riyad from API docs - 'You need to pass a private_token parameter by url or header

By Administrator on 2012-10-08T17:29:08 (imported from GitLab)

Created by: riyad

You are right, my bad. ;)

By Administrator on 2012-10-08T17:55:19 (imported from GitLab)