major security fix: adding api keys should be admin-only
This commit is contained in:
parent
f7d34e16bb
commit
4391176c7f
1 changed files with 1 additions and 0 deletions
|
@ -193,6 +193,7 @@ class Module(ModuleManager.BaseModule):
|
|||
@utils.kwarg("usage", "add <alias> [endpoint [endpoint ...]]")
|
||||
@utils.kwarg("usage", "remove <alias>")
|
||||
@utils.kwarg("usage", "info <alias>")
|
||||
@utils.kwarg("permission", "apikey")
|
||||
def apikey(self, event):
|
||||
subcommand = event["args_split"][0].lower()
|
||||
alias = None
|
||||
|
|
Loading…
Reference in a new issue