Open pmakholm opened 3 months ago
To work through the design process:
This is the only place that uses has_scope()
, but not the only place that uses the token.
The alternative I can think of is introducing a Faux Token for when the user doesn't have one. But I'm worried that'll break other things.
How easy is it to add a test for this situation?
Fixes #702
This allows anonymous access to API methods marked with
@scope_required("read:statuses")
if Public Timeline is enabled in the configuration.