-
Improvement
-
Resolution: Fixed
-
Minor
-
3.7.1
-
MOODLE_37_STABLE
-
MOODLE_38_STABLE
-
MDL-66376-master -
We must evaluate if now that we have a tokenpluginfile.php solution we could replace the webservice/pluginfile.php usage by the app.
The reason, is that most of the requests to webservice/pluginfile.php are done using GET method that displays the user WS token publicly in logs, browser history etc...
With tokenpluginfile.php we could you user private keys instead that does not allow WS usage (they are using just for fetching files, not requesting WebServices)
- blocks
-
MOBILE-3164 Stop using WS tokens to retrieve images. Use tokenpluginfile.php instead.
- Closed