|
@@ -111,7 +111,7 @@ module.exports = function(crowi, app) {
|
|
|
app.post('/_api/likes.add' , accessTokenParser , loginRequired(crowi, app) , csrf, page.api.like);
|
|
app.post('/_api/likes.add' , accessTokenParser , loginRequired(crowi, app) , csrf, page.api.like);
|
|
|
app.post('/_api/likes.remove' , accessTokenParser , loginRequired(crowi, app) , csrf, page.api.unlike);
|
|
app.post('/_api/likes.remove' , accessTokenParser , loginRequired(crowi, app) , csrf, page.api.unlike);
|
|
|
app.get( '/_api/attachments.list' , accessTokenParser , loginRequired(crowi, app) , attachment.api.list);
|
|
app.get( '/_api/attachments.list' , accessTokenParser , loginRequired(crowi, app) , attachment.api.list);
|
|
|
- app.post('/_api/attachments.add' , accessTokenParser , loginRequired(crowi, app) , uploads.single('file'), csrf, attachment.api.add);
|
|
|
|
|
|
|
+ app.post('/_api/attachments.add' , uploads.single('file'), accessTokenParser, loginRequired(crowi, app) ,csrf, attachment.api.add);
|
|
|
app.post('/_api/attachments.remove' , accessTokenParser , loginRequired(crowi, app) , csrf, attachment.api.remove);
|
|
app.post('/_api/attachments.remove' , accessTokenParser , loginRequired(crowi, app) , csrf, attachment.api.remove);
|
|
|
|
|
|
|
|
app.get( '/_api/revisions.get' , accessTokenParser , loginRequired(crowi, app) , revision.api.get);
|
|
app.get( '/_api/revisions.get' , accessTokenParser , loginRequired(crowi, app) , revision.api.get);
|
Sotaro KARASAWA