Add option to enable freely permission in closed instance

Before, closed disallowed guest edits completely, by removing the `freely` permission. This makes it possible to explicitely bring back guest-editing, but not guest-note-creation, to closed instances. Signed-off-by: Dario Ernst <dario@kanojo.de>
2025-05-28 05:54:43 -04:00 · 2018-01-20 15:05:05 +01:00 · 2018-01-20 15:05:05 +01:00 · 6ae4b8bf13
commit 6ae4b8bf13
parent 40d1d75704
7 changed files with 9 additions and 3 deletions
--- a/lib/config/default.js
+++ b/lib/config/default.js
@ -16,6 +16,7 @@ module.exports = {
  protocolusessl: false,
  usecdn: true,
  allowanonymous: true,
+  allowanonymousedits: false,
  allowfreeurl: false,
  defaultpermission: 'editable',
  dburl: '',
--- a/lib/config/environment.js
+++ b/lib/config/environment.js
@ -18,6 +18,7 @@ module.exports = {
  alloworigin: toArrayConfig(process.env.HMD_ALLOW_ORIGIN),
  usecdn: toBooleanConfig(process.env.HMD_USECDN),
  allowanonymous: toBooleanConfig(process.env.HMD_ALLOW_ANONYMOUS),
+  allowanonymousedits: toBooleanConfig(process.env.HMD_ALLOW_ANONYMOUS_EDITS),
  allowfreeurl: toBooleanConfig(process.env.HMD_ALLOW_FREEURL),
  defaultpermission: process.env.HMD_DEFAULT_PERMISSION,
  dburl: process.env.HMD_DB_URL,
--- a/lib/config/index.js
+++ b/lib/config/index.js
@ -49,7 +49,7 @@ if (config.ldap.tlsca) {

 // Permission
 config.permission = Permission
-if (!config.allowanonymous) {
+if (!config.allowanonymous && !config.allowanonymousedits) {
  delete config.permission.freely
 }
 if (!(config.defaultpermission in config.permission)) {
--- a/lib/realtime.js
+++ b/lib/realtime.js
@ -781,7 +781,7 @@ function connection (socket) {
      var note = notes[noteId]
      // Only owner can change permission
      if (note.owner && note.owner === socket.request.user.id) {
-        if (permission === 'freely' && !config.allowanonymous) return
+        if (permission === 'freely' && !config.allowanonymous && !config.allowanonymousedits) return
        note.permission = permission
        models.Note.update({
          permission: permission
--- a/lib/response.js
+++ b/lib/response.js
@ -60,6 +60,7 @@ function showIndex (req, res, next) {
    url: config.serverurl,
    useCDN: config.usecdn,
    allowAnonymous: config.allowanonymous,
+    allowAnonymousEdits: config.allowanonymousedits,
    facebook: config.isFacebookEnable,
    twitter: config.isTwitterEnable,
    github: config.isGitHubEnable,
@ -93,6 +94,7 @@ function responseHackMD (res, note) {
    title: title,
    useCDN: config.usecdn,
    allowAnonymous: config.allowanonymous,
+    allowAnonymousEdits: config.allowanonymousedits,
    facebook: config.isFacebookEnable,
    twitter: config.isTwitterEnable,
    github: config.isGitHubEnable,