From 6165b6b8c69114707f84ee1b4a900d31e6c7fafd Mon Sep 17 00:00:00 2001
From: Eike Kettner <eike.kettner@posteo.de>
Date: Wed, 27 May 2020 23:30:52 +0200
Subject: [PATCH] Set default value for allowed-ips protection to false

The endpoint is disabled by default, no matter what protection modes
are enabled. If all are disabled, then the endpoint is not
protected (if enabled by an admin). Conversely, if all protection
modes are enabled, they all must succeed.

All protection modes should be off by default, so the user would
choose one. It is confusing, if a user enables one and doesn't realize
that another one is also enabled by default.
---
 modules/restserver/src/main/resources/reference.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/restserver/src/main/resources/reference.conf b/modules/restserver/src/main/resources/reference.conf
index edbe3c53..210c3394 100644
--- a/modules/restserver/src/main/resources/reference.conf
+++ b/modules/restserver/src/main/resources/reference.conf
@@ -55,7 +55,7 @@ docspell.server {
     # `192.168.*.*`. The `127.0.0.1' (the default) matches the
     # loopback address.
     allowed-ips {
-      enabled = true
+      enabled = false
       ips = [ "127.0.0.1" ]
     }