From 0c3e287fa8acca29cbf041d5e3200a4e4b1e316e Mon Sep 17 00:00:00 2001
From: mike12345567 <me@michaeldrury.co.uk>
Date: Sat, 27 Feb 2021 10:15:05 +0000
Subject: [PATCH] Very minor change due to issue #1204 - wasn't allowing
 unauthenticated requests through.

---
 packages/server/src/api/routes/webhook.js | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/packages/server/src/api/routes/webhook.js b/packages/server/src/api/routes/webhook.js
index fdcf14e49..cb65ac66c 100644
--- a/packages/server/src/api/routes/webhook.js
+++ b/packages/server/src/api/routes/webhook.js
@@ -40,10 +40,7 @@ router
     authorized(BUILDER),
     controller.buildSchema
   )
-  .post(
-    "/api/webhooks/trigger/:instance/:id",
-    authorized(PermissionTypes.WEBHOOK, PermissionLevels.EXECUTE),
-    controller.trigger
-  )
+  // this shouldn't have authorisation, right now its always public
+  .post("/api/webhooks/trigger/:instance/:id", controller.trigger)
 
 module.exports = router