Defining private pages in config overrides protected routes defaults #45
I defined a part of a wiki that is supposed to be private by doing so in
While that seems to work fine for the /private namespace (except for issue #44), I then noticed that any unauthenticated user can edit, remove and delete pages outside that space.
That is because while the default values of
I would expect these default protected routes to be internal and as such not be modifyable by users, or at least in a failsafe way. The workaround to get the wiki working back with access permissions is to copy the contents of the defaults in the code and specify them explicitly in the config file:
The text was updated successfully, but these errors were encountered: