From f6e443aeb26df1b2d8d6229fa8cf6af56769a19b Mon Sep 17 00:00:00 2001 From: ansuz Date: Fri, 2 Jun 2017 11:45:07 +0200 Subject: [PATCH] put cookie requests back on authenticated rpc list --- rpc.js | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/rpc.js b/rpc.js index d3b81647a..715abd118 100644 --- a/rpc.js +++ b/rpc.js @@ -798,7 +798,7 @@ var upload_status = function (Env, publicKey, filesize, cb) { var isAuthenticatedCall = function (call) { return [ - //'COOKIE', + 'COOKIE', 'RESET', 'PIN', 'UNPIN', @@ -893,6 +893,9 @@ RPC.create = function (config /*:typeof(ConfigType)*/, cb /*:(?Error, ?Function) public key which you provided. We can safely modify the state for that key + + OR it's an unauthenticated call, which must not modify the state + for that key in a meaningful way. */ // discard validated cookie from message