Tracking API: Allow setTokenAuth() to be an admin token, not only the Super User #2302
Labels
Enhancement
For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc.
Milestone
Super User token is very secret. The Tracking API should allow for more flexibility and allow any "admin" token for the site being tracked.
For performance, we don't want to query the DB on each Tracking API request. So we can cache in the Tracker cache files the list of all allowed admin token_auth and check against this list.
The text was updated successfully, but these errors were encountered: