2c1133be by Adam Heath

No longer send the sessionId in the api calls; the server should fetch

it via the cookie instead.
1 parent 9ae5ede8
...@@ -206,7 +206,7 @@ define(function(require) { ...@@ -206,7 +206,7 @@ define(function(require) {
206 } 206 }
207 function api(apiName, data) { 207 function api(apiName, data) {
208 var apiHandler = globalOptions.api || function(apiName, data) {}; 208 var apiHandler = globalOptions.api || function(apiName, data) {};
209 return apiHandler(apiName, data, {sessionId: self.get('sessionId')}).always(function() { 209 return apiHandler(apiName, data, {}).always(function() {
210 self.unset('errorMessage'); 210 self.unset('errorMessage');
211 }).done(applyLoginResults).fail(function(xhr) { 211 }).done(applyLoginResults).fail(function(xhr) {
212 if (xhr.responseJSON && xhr.responseJSON.errorMessage) { 212 if (xhr.responseJSON && xhr.responseJSON.errorMessage) {
......