The frontend allows uploading files to an unverified user

Both the CreateDataFile and UploadDataFile endpoints require users to be verified. The frontend currently allows unverified users to upload to a corpus they have write access to (and get a 403 error), but does not allow starting an import.

This is probably a legacy of the old demo, as a user could upload files and run imports without being verified.