From bd08ed655ed8c808d98454238a916dc4e1985b17 Mon Sep 17 00:00:00 2001
From: Chris Doten <cdoten@ndi.org>
Date: Thu, 2 May 2013 17:12:25 -0400
Subject: [PATCH] minor changes

---
 CRM/Utils/REST.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CRM/Utils/REST.php b/CRM/Utils/REST.php
index 63233e7aa9..5745f1610c 100644
--- a/CRM/Utils/REST.php
+++ b/CRM/Utils/REST.php
@@ -344,6 +344,7 @@ class CRM_Utils_REST {
     // If the user does not have a valid session (most likely to be used by people using
     // an ajax interface), we need to check to see if they are carring a valid user's
     // secret key.
+    // XXX this is the new way of doing it, which should be the only way of doing it.
     if (!$valid_user) {
       $api_key = CRM_Utils_Request::retrieve('api_key', 'String', $store, FALSE, NULL, 'REQUEST');
       if (!$api_key || strtolower($api_key) == 'null') {
-- 
2.25.1