From 3481537b15d62b1fc6a9f22d5e2cf49ec80c4086 Mon Sep 17 00:00:00 2001
From: Aleksandr Skoblikov <aleksandr.skoblikov@dbeaver.com>
Date: Thu, 19 Sep 2024 19:35:47 +0400
Subject: [PATCH] allow all enpoints for singleuser apps without auth

---
 .../src/io/cloudbeaver/service/WebServiceBindingBase.java       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/bundles/io.cloudbeaver.server/src/io/cloudbeaver/service/WebServiceBindingBase.java b/server/bundles/io.cloudbeaver.server/src/io/cloudbeaver/service/WebServiceBindingBase.java
index faea6732e0..6d0b3648b3 100644
--- a/server/bundles/io.cloudbeaver.server/src/io/cloudbeaver/service/WebServiceBindingBase.java
+++ b/server/bundles/io.cloudbeaver.server/src/io/cloudbeaver/service/WebServiceBindingBase.java
@@ -265,7 +265,7 @@ private void checkActionPermissions(@NotNull Method method, @NotNull WebAction w
             if (session == null) {
                 throw new DBWebExceptionAccessDenied("No open session - anonymous access restricted");
             }
-            if (!application.isConfigurationMode()) {
+            if (!application.isConfigurationMode() && application.isMultiuser()) {
                 if (webAction.authRequired() && !session.isAuthorizedInSecurityManager()) {
                     log.debug("Anonymous access to " + method.getName() + " restricted");
                     throw new DBWebExceptionAccessDenied("Anonymous access restricted");