You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I can get informations about several users using a token from a simple user The container clone the official repository The endpoints is not documented in the explorer
Steps to reproduce the behavior
enable REST api use a token for a simple user (no admin rights) request GET api/index.php/users give a 401 request GET api/index.php/users give 200 with criticals informations: token, etc.,
The text was updated successfully, but these errors were encountered:
Bug
REST endpoint /users/{id} is not secure
Environment
Expected and actual behavior
I can get informations about several users using a token from a simple user
The container clone the official repository
The endpoints is not documented in the explorer
Steps to reproduce the behavior
enable REST api
use a token for a simple user (no admin rights)
request GET api/index.php/users give a 401
request GET api/index.php/users give 200 with criticals informations: token, etc.,
The text was updated successfully, but these errors were encountered: