View white list defines a set of views that can be accessed using auth token without the need to login. Adding ?auth_token = SECRET_TOKEN to the url authenticates this request as if it came from the the logged in user who owns this authentication token. E.g. adding `RepoFilesView.repo_file_raw` allows to access a raw diff using such url: http[s]://server.com/{repo_name}/raw/{commit_id}/{file_path}?auth_token=SECRET_TOKEN White list can be defined inside `${c.whitelist_file}` under `${c.whitelist_key}=` setting Currently under this settings following views are set:
% for entry in c.whitelist_views: ${entry} % endfor
Active | View FQN | URL pattern |
---|---|---|
${h.bool2icon(active)} | ${view_fqn} | ${view_url} |