summaryrefslogtreecommitdiff
path: root/lib/config/hackmdEnvironment.js
diff options
context:
space:
mode:
authorNicolas Dietrich2021-01-22 16:47:47 +0100
committerNicolas Dietrich2021-01-22 16:52:49 +0100
commit497569fee4a841b13ed1606ca54f269162d3fa62 (patch)
tree3ad268aa959c51630cbc61a2b2fa73095585193b /lib/config/hackmdEnvironment.js
parent3331c0947cb6d63ce7f2846c38d5a7b82960b2eb (diff)
Add config option which requires authentication in FreeURL mode
This mitigates unintended note creation by bots or humans through a simple GET call. See discussion in #754. Signed-off-by: Nicolas Dietrich <nidi@mailbox.org>
Diffstat (limited to 'lib/config/hackmdEnvironment.js')
-rw-r--r--lib/config/hackmdEnvironment.js1
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/config/hackmdEnvironment.js b/lib/config/hackmdEnvironment.js
index 76e41361..ecdd9a51 100644
--- a/lib/config/hackmdEnvironment.js
+++ b/lib/config/hackmdEnvironment.js
@@ -24,6 +24,7 @@ module.exports = {
allowAnonymous: toBooleanConfig(process.env.HMD_ALLOW_ANONYMOUS),
allowAnonymousEdits: toBooleanConfig(process.env.HMD_ALLOW_ANONYMOUS_EDITS),
allowFreeURL: toBooleanConfig(process.env.HMD_ALLOW_FREEURL),
+ requireFreeURLAuthentication: toBooleanConfig(process.env.HMD_REQUIRE_FREEURL_AUTH),
defaultPermission: process.env.HMD_DEFAULT_PERMISSION,
dbURL: process.env.HMD_DB_URL,
sessionSecret: process.env.HMD_SESSION_SECRET,
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-01 17:34:53 +0000