NodeBB write api security

abhishek yadav

Hi Team,

do anyone know how to secure these APIs because currently anyone can perform any operation. is there any bearer token or some security is there so that they shouldn't be publicly available for everyone.

ReDoc

It will be really helpful if someone already came across this.

Thanks,
Abhishek

PitaJ

@abhishek-yadav if you have a security issue to report, please contact NodeBB by email security@nodebb.org

The write API is secured behind a bearer token, either a master or user one.

abhishek yadav

@pitaj can you please share from where i can generate bearer token ? is there any documentation link please share.

abhishek yadav

@abhishek-yadav I found it under Settings -> API access.

Thanks for checking

NodeBB write api security

Suggested Topics

NodeBB v1.0.2
General Discussion • • charles

Nodebb Theme Concept
General Discussion • • yari

NodeBB 0.90 - What exactly is compatible?
General Discussion • • Morning Star

How much will hosted NodeBB cost me?
General Discussion • • mrneilypops

Is there a feature list for NodeBB?
General Discussion • • thefsb

NodeBB write api security

Suggested Topics

NodeBB v1.0.2 General Discussion • • charles

Nodebb Theme Concept General Discussion • • yari

NodeBB 0.90 - What exactly is compatible? General Discussion • • Morning Star

How much will hosted NodeBB cost me? General Discussion • • mrneilypops

Is there a feature list for NodeBB? General Discussion • • thefsb

NodeBB v1.0.2
General Discussion • • charles

Nodebb Theme Concept
General Discussion • • yari

NodeBB 0.90 - What exactly is compatible?
General Discussion • • Morning Star

How much will hosted NodeBB cost me?
General Discussion • • mrneilypops

Is there a feature list for NodeBB?
General Discussion • • thefsb