Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unauthenticated access to /api/users end-point #280

Open
toxa81 opened this issue Mar 22, 2024 · 3 comments
Open

Unauthenticated access to /api/users end-point #280

toxa81 opened this issue Mar 22, 2024 · 3 comments
Labels
Bug Something isn't working Help Wanted Extra attention is needed

Comments

@toxa81
Copy link

toxa81 commented Mar 22, 2024

Hello! I noticed that in the default installations (both from dockerhub container and bare-metal using install.sh script) I can access /api/users end-point without authentication and get admin api token. Is this an expected behaviour?
@jemand771
Copy link
Member

🤨🤨🤨

@adamboutcher
Copy link
Collaborator

Not intended but was the result of a fix for non admins to login.

We will look at reverting that fix.

@adamboutcher
Copy link
Collaborator

adamboutcher commented May 1, 2024
edited

Related?
#266
#268
#272

#188

@adamboutcher adamboutcher added Bug Something isn't working Help Wanted Extra attention is needed labels May 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug Something isn't working Help Wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@toxa81 @adamboutcher @jemand771