From 4e71ae0e598c75e3610aee41d2a7950909cf3a39 Mon Sep 17 00:00:00 2001
From: CalDescent <caldescent@protonmail.com>
Date: Thu, 27 Jan 2022 18:10:24 +0000
Subject: [PATCH] Allow QDN data to be served without authentication by setting
 "qdnAuthBypassEnabled":true

This allows the GET /arbitrary/{service}/{name} and GET /{service}/{name}/{identifier} endpoints to operate without any authentication. Useful for those who are running public QDN nodes and need to serve data over http(s).
---
 .../org/qortal/api/resource/ArbitraryResource.java   | 12 ++++++++++--
 src/main/java/org/qortal/settings/Settings.java      |  7 +++++++
 2 files changed, 17 insertions(+), 2 deletions(-)

diff --git a/src/main/java/org/qortal/api/resource/ArbitraryResource.java b/src/main/java/org/qortal/api/resource/ArbitraryResource.java
index 82618152..1cb9c1c3 100644
--- a/src/main/java/org/qortal/api/resource/ArbitraryResource.java
+++ b/src/main/java/org/qortal/api/resource/ArbitraryResource.java
@@ -575,7 +575,11 @@ public class ArbitraryResource {
 								   @PathParam("name") String name,
 								   @QueryParam("filepath") String filepath,
 								   @QueryParam("rebuild") boolean rebuild) {
-		Security.checkApiCallAllowed(request);
+
+		// Authentication can be bypassed in the settings, for those running public QDN nodes
+		if (!Settings.getInstance().isQDNAuthBypassEnabled()) {
+			Security.checkApiCallAllowed(request);
+		}
 
 		return this.download(service, name, null, filepath, rebuild);
 	}
@@ -604,7 +608,11 @@ public class ArbitraryResource {
 								   @PathParam("identifier") String identifier,
 								   @QueryParam("filepath") String filepath,
 								   @QueryParam("rebuild") boolean rebuild) {
-		Security.checkApiCallAllowed(request);
+
+		// Authentication can be bypassed in the settings, for those running public QDN nodes
+		if (!Settings.getInstance().isQDNAuthBypassEnabled()) {
+			Security.checkApiCallAllowed(request);
+		}
 
 		return this.download(service, name, identifier, filepath, rebuild);
 	}
diff --git a/src/main/java/org/qortal/settings/Settings.java b/src/main/java/org/qortal/settings/Settings.java
index 3bd7cef5..41b69114 100644
--- a/src/main/java/org/qortal/settings/Settings.java
+++ b/src/main/java/org/qortal/settings/Settings.java
@@ -308,6 +308,9 @@ public class Settings {
 	/** Maximum total size of hosted data, in bytes. Unlimited if null */
 	private Long maxStorageCapacity = null;
 
+	/** Whether to serve QDN data without authentication */
+	private boolean qdnAuthBypassEnabled = false;
+
 	// Domain mapping
 	public static class DomainMap {
 		private String domain;
@@ -884,4 +887,8 @@ public class Settings {
 	public Long getMaxStorageCapacity() {
 		return this.maxStorageCapacity;
 	}
+
+	public boolean isQDNAuthBypassEnabled() {
+		return this.qdnAuthBypassEnabled;
+	}
 }