API usage does not require key/token #21
Description
Hi,
It is possible to use all API endpoints without authentication. An attacker could add/change/delete servers and sites. The following example adds a new server without usage of any API key/token:
