Manual:$wgRestAllowCrossOriginCookieAuth/ru

This page is a translated version of the page Manual:$wgRestAllowCrossOriginCookieAuth and the translation is 11% complete.

Безопасность: $wgRestAllowCrossOriginCookieAuth
Allows authenticated cross-origin requests to the REST API with session cookies.
Введено в версии:	1.36.0 (Gerrit change 621900; git #c36b3204)
Удалено в версии:	всё ещё используется
Допустимые значения:	(boolean)
Значение по умолчанию:	`false`
Другие настройки: По алфавиту \| По функциональности

Details

Allows authenticated cross-origin requests to the REST API with session cookies.

With this option enabled, any origin specified in $wgCrossSiteAJAXdomains may send session cookies for authorization in the REST API.

There is a performance impact by enabling this option. Therefore, it should be left disabled for most wikis and clients should instead use OAuth to make cross-origin authenticated requests.

См. также

https://developer.mozilla.org/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials