odoo-rest-api icon indicating copy to clipboard operation
odoo-rest-api copied to clipboard

Published 20 hours ago verified publisher icon yezyilomo

Why not sending token through headers?

Open muhammadfarizarya opened this issue 5 years ago • 1 comments

Im corious about sending session_id through cookies, why not use headers for sending token to odoo instead? thank you very much

muhammadfarizarya avatar Nov 01 '20 21:11 muhammadfarizarya

Officially says that's for security reasons, but I'm sending the token and it works fine. But maybe my code is more vulnerable of course.

ealmeida1225 avatar Feb 12 '21 21:02 ealmeida1225