http://vuedo.dev/api/posts is acessable without auth

[dokicro]

Hi, http://vuedo.dev/api/posts and http://vuedo.dev/api/categories is accessible without checking if user is logged in.

NOT SURE IF THIS IS ON PURPOUSE

[misurito]

I believe you are accessing them over a GET request, which is the same as simply checking out the posts under json format ( I guess it could be under auth if you don't wish to encourage people to consume the data this way ), but other http verbs are either under auth protection or you will just get a 405 response ( method not allowed ).