Validate admin key on register
This commit is contained in:
2
API.md
2
API.md
@@ -7,7 +7,7 @@ POST /api/auth/register
|
||||
POST /api/auth/login
|
||||
POST /api/auth/logout
|
||||
|
||||
- Register accepts optional `adminKey`; when it matches `ADMIN_PASSWORD`, the account is marked `IsAdmin=true` and can use admin APIs.
|
||||
- Register accepts optional `adminKey`; when it matches `ADMIN_PASSWORD`, the account is marked `IsAdmin=true` and can use admin APIs. If an `adminKey` is supplied but wrong (or ADMIN_PASSWORD unset), registration returns 400.
|
||||
|
||||
## State
|
||||
GET /api/state (public)
|
||||
|
||||
Reference in New Issue
Block a user