Open samfalconer opened 7 years ago
I noticed that I can edit or delete data from the points table without authenticating. We should probably require login for this like the users table.
Results - Non-admin edits are allowed Expected - Read-only access for world (admin needed for any edits)
This will ensure all updates go through the server.