diff --git a/routers/api/v1/api.go b/routers/api/v1/api.go index 9c21107a2892c..4c8426cbebe06 100644 --- a/routers/api/v1/api.go +++ b/routers/api/v1/api.go @@ -197,6 +197,10 @@ func reqToken() func(ctx *context.APIContext) { return } if ctx.IsSigned { + // Don't require token if already authenticated by reverse proxy. + if setting.Service.EnableReverseProxyAuth { + return + } ctx.RequireCSRF() return }