diff --git a/appinfo/info.xml b/appinfo/info.xml
index e2be126..4939b5a 100644
--- a/appinfo/info.xml
+++ b/appinfo/info.xml
@@ -4,7 +4,7 @@
Minimal Profile
Hides profile fields to create a minimal user profile
Allows administrators to hide profile fields like pronouns, social links, etc.
- 1.0.41
+ 1.0.42
AGPL
Your Name
MinimalProfile
diff --git a/appinfo/routes.php b/appinfo/routes.php
new file mode 100644
index 0000000..e553cf8
--- /dev/null
+++ b/appinfo/routes.php
@@ -0,0 +1,6 @@
+ [
+ ['name' => 'api#getHiddenFields', 'url' => '/api/v1/hidden-fields', 'verb' => 'GET'],
+ ],
+];
\ No newline at end of file
diff --git a/appinfo/routes.xml b/appinfo/routes.xml
deleted file mode 100644
index 9fcfcf8..0000000
--- a/appinfo/routes.xml
+++ /dev/null
@@ -1,4 +0,0 @@
-
-
-
-
\ No newline at end of file
diff --git a/lib/Controller/ApiController.php b/lib/Controller/ApiController.php
index db8a3f2..4aabb41 100644
--- a/lib/Controller/ApiController.php
+++ b/lib/Controller/ApiController.php
@@ -5,6 +5,8 @@ declare(strict_types=1);
namespace OCA\MinimalProfile\Controller;
use OCP\AppFramework\Controller;
+use OCP\AppFramework\Http\Attribute\NoCSRFRequired;
+use OCP\AppFramework\Http\Attribute\PublicPage;
use OCP\AppFramework\Http\JSONResponse;
use OCP\IConfig;
use OCP\IRequest;
@@ -19,6 +21,8 @@ class ApiController extends Controller {
parent::__construct($appName, $request);
}
+ #[NoCSRFRequired]
+ #[PublicPage]
public function getHiddenFields(): JSONResponse {
$value = $this->config->getAppValue('minimalprofile', 'hidden_fields', '');
$hiddenFields = $value !== '' ? json_decode($value, true) ?? [] : [];