From 1232b3bc5a1c7ec9f7933ae2cf50f35b10960505 Mon Sep 17 00:00:00 2001
From: tituspijean <tituspijean@outlook.com>
Date: Sun, 8 Nov 2020 17:34:17 +0100
Subject: [PATCH] Embracing the future of permissions management
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: Éric Gaspar <46165813+ericgaspar@users.noreply.github.com>
---
 scripts/install | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/scripts/install b/scripts/install
index 6dd3a56..9666a9d 100644
--- a/scripts/install
+++ b/scripts/install
@@ -144,11 +144,12 @@ sleep 5
 #=================================================
 ynh_script_progression --message="Configuring SSOwat..." --weight=2
 
-# Make app public if necessary
+# Make app public if necessary or protect it
 if [ $is_public -eq 1 ]
 then
-	# unprotected_uris allows SSO credentials to be passed anyway.
-	ynh_app_setting_set --app=$app --key=unprotected_uris --value="/"
+	# Everyone can access the app.
+	# The "main" permission is automatically created before the install script.
+	 ynh_permission_update --permission "main" --add "visitors"
 fi
 
 #=================================================