What steps will reproduce the problem? 1.POST the file content via REST 2.Use the public URL on web pages and let browsers to fetch the content 3.POST the file content via REST 4.the file changed

I think the publick url is not safety ,everyone can cheange the file use this url

Is not that where I got it wrong？

Please provide any additional information below.

use "-whiteList" to protect against writing. You can use "weed master -h" to see the options.