bastihilger
commented
3 years ago Hi there - first of all thank you for your PR. Could you please in the future check the box "Allow edits by maintainers" so I can make changes right inside your PR?
Closed andrerei closed 3 years ago
bastihilger
commented
3 years ago Hi there - first of all thank you for your PR. Could you please in the future check the box "Allow edits by maintainers" so I can make changes right inside your PR?
bastihilger
commented
3 years ago This is now added on v2.0.3
Currently there is no protection and anyone can add files calling the
POST /nova-tiptap/api/files. This PR fixes this security issue, adding a middleware to protect API routes.I also changed how routes are registered by following what is generated using the
nova:resource-toolcommand.