pooh22
commented
6 months ago I agree, creating a paste should (could) require a password (upload password), but once you get the URL, you should be able to read the contents unless it is encrypted with a password. All other restrictions should still apply (burn after reading, expire time).
I guess basic-authentication is not very useful for a pastebin type of service, which makes it a confusing option and it doesn't work for receivers of the URL, with whom you don't want to share your authentication.
My suggestion would be:
- remove basic authentication entirely (I don't see a use case for it)
- when set, use upload password to restrict adding paste's or uploaded files
Optionally, having user accounts with permissions to add pastes/uploads would be useful in more complicated setups.
SR-G
Im using a user/password to dont let everyone use my microbin BUT i will like to share with other some paste that i made.
I will find useful if when the paste is set to "public" that anyone, even those that dont have access to the server can see it. I mean, if they have the link then they can see it, without the need for user/password to enter the site.
I understand that i could leave the site without user/password, accessible to anyone and put a password for my "secret" paste... but....... almost all my paste are secret and i just want to share a few, so...
Hope this is understood, i dont speak english.