From 76ba1e351014fc13afc3072a7b0814b238a86c55 Mon Sep 17 00:00:00 2001
From: Debian Live user <amnesia@amnesia.(none)>
Date: Thu, 2 May 2013 17:08:15 -0400
Subject: [PATCH] Adding comments, playing with REST

---
 CRM/Utils/REST.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CRM/Utils/REST.php b/CRM/Utils/REST.php
index faefd4173b..63233e7aa9 100644
--- a/CRM/Utils/REST.php
+++ b/CRM/Utils/REST.php
@@ -334,6 +334,8 @@ class CRM_Utils_REST {
     // Check for valid session.  Session ID's only appear here if you have
     // run the rest_api login function.  That might be a problem for the
     // AJAX methods.
+
+	// XXX This is the old way of doing it. We're going to want to get rid of this
     $session = CRM_Core_Session::singleton();
     if ($session->get('PHPSESSID')) {
       $valid_user = TRUE;
@@ -352,6 +354,7 @@ class CRM_Utils_REST {
 
     // If we didn't find a valid user either way, then die.
     if (empty($valid_user)) {
+	// XXX correct error so only reflects api_key
       return self::error("Invalid session or user api_key invalid");
     }
 
-- 
2.25.1