Removing guest access as it causes issues with basic auth user switch…

…ing.

Use reader user for readonly access.

README.md

@@ -50,16 +50,11 @@ You can then access the app by going to `http://localhost:3040`
 ### User Management
 
 Any version after 1.4.x, the default admin user configured through env vars `DOCKER_PDF_SERVER_USER` and `DOCKER_PDF_SERVER_PASSWORD`
-can add aadditional admins, maintainers and readers
+can add additional admins, maintainers and readers
 
-**Admin** - Can add other users
-**Maintainer** - Cannot add users but can upload, delete files
-**Reader** - Can only read files
-
-#### Guest Access
-
-Enabling guest access means that any unauthenticated user can read files but cannot delete or upload any files. To enable guest access,
-set `ENABLE_GUEST_ACCESS` env var to `yes` in your docker run. Any vaule other than `yes` will default to guest access being disabled.
+- **Admin** - Can add other users
+- **Maintainer** - Cannot add users but can upload, delete files
+- **Reader** - Can only read files
 
 ### Building and Running Locally for Development
 

app.py

@@ -24,7 +24,6 @@
 APP_KEY = os.environ.get("DOCKER_PDF_SERVER_KEY", "super_secret_key")
 APP_USER = os.environ.get("DOCKER_PDF_SERVER_USER", "admin")
 APP_PASSWORD = os.environ.get("DOCKER_PDF_SERVER_PASSWORD", "password")
-ENABLE_GUEST_ACCESS = os.environ.get("ENABLE_GUEST_ACCESS", "no")
 ALLOWED_EXTENSIONS = {"pdf"}
 
 app = Flask(__name__)
@@ -79,9 +78,6 @@ def verify_password(username, password):
     if user and user.check_password(password):
         g.current_user = user
         return g.current_user
-    if "yes" == ENABLE_GUEST_ACCESS:
-        g.current_user = User(username="default_guest", role="reader")
-        return g.current_user
     return None
 
 

requirements.txt

@@ -13,5 +13,5 @@ packaging==24.1
 SQLAlchemy==2.0.31
 typing_extensions==4.12.2
 Wand==0.6.13
-Werkzeug==3.0.3
+Werkzeug==3.0.4
 WTForms==3.1.2