They're not perfect, I still don't like them, but I can't think of a
good solution right now. I'm going to thinking about the best way of
doing web stuff for some time.
There is a new config field: Authorization.Locked.
I am a little bit sorry for how actually the lock is implemented. I've added the check on almost every handler there is. Good luck maintaining that ❤️
Important changes:
- UseFixedAuth is now UseAuth and toggles all kinds of authorization and
registration
- UseRegistration is now AllowRegistration to better reflect the meaning
- LimitRegistration is now RegistrationLimit because it's not a boolean,
it's a value (not "limit registration?", but "registration limit is
...")
- registered-users.json is now users.json, because all users are stored
there
- user.AuthUsed is dropped in favor of new cfg.UseAuth which has the
same meaning
I hope I have not forgotten anything.
