def process_request(self, request):
request.user = None
- # Try to find token in a cookie, in a request header, or as a parameter.
- token = request.COOKIES.get('X-Auth-Token', None)
+ # Try to find token in a parameter, in a request header, or in a cookie.
+ token = request.REQUEST.get('X-Auth-Token', None)
if not token:
token = request.META.get('HTTP_X_AUTH_TOKEN', None)
if not token:
- token = request.REQUEST.get('X-Auth-Token', None)
+ token = request.COOKIES.get('X-Auth-Token', None)
if not token:
return