Skip to content

Commit 6926764

Browse files
boojackclaude
boojack
and
claude
committed
fix: allow unauthenticated CreateUser for first user registration
Add CreateUser to PublicMethods ACL whitelist to fix "authentication required" error during first-time setup. The CreateUser method already has proper security logic that automatically assigns HOST role to the first user and enforces DisallowUserRegistration setting for subsequent users. Fixes #5352 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
1 parent b1a52f2 commit 6926764

File tree

2 files changed

+2
-0
lines changed

2 files changed

+2
-0
lines changed

server/router/api/v1/acl_config.go

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -18,6 +18,7 @@ var PublicMethods = map[string]struct{}{
1818
"/memos.api.v1.InstanceService/GetInstanceSetting": {},
1919

2020
// User Service - public user profiles and stats
21+
"/memos.api.v1.UserService/CreateUser": {}, // Allow first user registration
2122
"/memos.api.v1.UserService/GetUser": {},
2223
"/memos.api.v1.UserService/GetUserAvatar": {},
2324
"/memos.api.v1.UserService/GetUserStats": {},

server/router/api/v1/acl_config_test.go

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,7 @@ func TestPublicMethodsArePublic(t *testing.T) {
1616
"/memos.api.v1.InstanceService/GetInstanceProfile",
1717
"/memos.api.v1.InstanceService/GetInstanceSetting",
1818
// User Service
19+
"/memos.api.v1.UserService/CreateUser",
1920
"/memos.api.v1.UserService/GetUser",
2021
"/memos.api.v1.UserService/GetUserAvatar",
2122
"/memos.api.v1.UserService/GetUserStats",

0 commit comments

Comments
 (0)