Forum Discussion

tripp-bishop's avatar
11 years ago

Calls to modify methods are not allowed when user is authenticated using session cookie.

Hi I'm getting the following error when I try to upload a photo to my users public album via the REST API call:

/restapi/vc/users/id/1234/media/albums/default/public/images/upload

 

The error is:

 

Calls to modify methods are not allowed when user is authenticated using session cookie.

 

Is this something that support can change for us or is there a setting in the admin plugin that will fix this? I've seen this issue on other sites that I've developed by I can remember what the resolution is. Thanks!

  • AdamN's avatar
    AdamN
    Khoros Oracle

    Hi Tripp,

     

    This is configurable, though we typically discourage enabling this in production for security reasons. If you're interested in pursuing this further, I would suggest contacting Support as you mentioned.

    • RobertD's avatar
      RobertD
      Khoros Alumni (Retired)

      What would be the recommended approach to address this issue? Is there a way to re-write/re-design the code that makes more sense? Another Lithium community has asked me about this.

  • You could presumeably use the token-based authentication instead.