add unauthenticated special role for unauthenticated users #124

New Issue

OVERLORD · 2026-02-04T17:04:14+03:00

OVERLORD commented

2026-02-04 17:04:14 +03:00

Originally created by @squiddle on GitHub (Jul 3, 2016).

That would allow to configure individual books to be publicly viewable or even editable (not sure about drafts, as there is no real user identity and garbage drafts could accumulate). But at least view should be selectable to allow public viewing in a single book.

Why use the role system for this? It adds not another mechanism into the authentication system, but builds on the existing one.

It also allows the removal of the public-viewing setting, which currently also acts as a second authorization information source. With an unauthenticated role it just means view for the unauthenticated user role and could be managed from the role settings page together with all other authorization settings.

Originally created by @squiddle on GitHub (Jul 3, 2016). That would allow to configure individual books to be publicly viewable or even editable (not sure about drafts, as there is no real user identity and garbage drafts could accumulate). But at least view should be selectable to allow public viewing in a single book. Why use the role system for this? It adds not another mechanism into the authentication system, but builds on the existing one. It also allows the removal of the public-viewing setting, which currently also acts as a second authorization information source. With an unauthenticated role it just means view for the unauthenticated user role and could be managed from the role settings page together with all other authorization settings.

OVERLORD added the 🛠️ Enhancement label 2026-02-04 17:04:14 +03:00

OVERLORD closed this issue

2026-02-04 17:04:20 +03:00

OVERLORD commented

2026-02-04 17:04:31 +03:00

@ssddanbrown commented on GitHub (Jul 4, 2016):

Hi @squiddle, Thanks for the suggestion. This should be fairly simple since that's exactly how the public permissions are currently handled! The system just hides the public role from any view.

If you view the roles table in your database you'll see a public role. Changing the hidden value from 1 to 0 will make it show up. Things do get funky when trying to edit as a public member though since they're not technically a user.

@ssddanbrown commented on GitHub (Jul 4, 2016): Hi @squiddle, Thanks for the suggestion. This should be fairly simple since that's exactly how the public permissions are currently handled! The system just hides the public role from any view. If you view the `roles` table in your database you'll see a public role. Changing the `hidden` value from 1 to 0 will make it show up. Things do get funky when trying to edit as a public member though since they're not technically a user.

OVERLORD commented

2026-02-04 17:04:33 +03:00

@riorii commented on GitHub (Sep 22, 2016):

Hey @ssddanbrown , any idea if this enhancement is gonna be on the next release?

@riorii commented on GitHub (Sep 22, 2016): Hey @ssddanbrown , any idea if this enhancement is gonna be on the next release?

OVERLORD commented

2026-02-04 17:04:58 +03:00

@ssddanbrown commented on GitHub (Sep 29, 2016):

@riorii Yes, it will be. Although next release may not be for a small while.

@ssddanbrown commented on GitHub (Sep 29, 2016): @riorii Yes, it will be. Although next release may not be for a small while.

Sign in to join this conversation.

Branches Tags

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#124

add unauthenticated special role for unauthenticated users #124

add `unauthenticated` special role for unauthenticated users #124