2013-09-02 05:49:08 +04:00
|
|
|
{
|
2013-09-14 22:04:41 +04:00
|
|
|
"core": {
|
2017-04-24 20:41:00 +03:00
|
|
|
"db_hash": {
|
2013-12-16 14:16:06 +04:00
|
|
|
"defaultValue": null
|
2014-01-03 19:50:03 +04:00
|
|
|
},
|
2017-04-24 20:41:00 +03:00
|
|
|
"next_update_check": {
|
2014-01-03 19:50:03 +04:00
|
|
|
"defaultValue": null
|
|
|
|
},
|
Update Notification improvements (#9123)
closes #5071
- Remove hardcoded notification in admin controller
- NOTE: update check notifications are no longer blocking the admin rendering
- this is one of the most import changes
- we remove the hardcoded release message
- we also remove adding a notification manually in here, because this will work differently from now on
-> you receive a notification (release or custom) in the update check module and this module adds the notification as is to our database
- Change default core settings keys
- remove displayUpdateNotification
-> this was used to store the release version number send from the UCS
-> based on this value, Ghost creates a notification container with self defined values
-> not needed anymore
- rename seenNotifications to notifications
-> the new notifications key will hold both
1. the notification from the USC
2. the information about if a notification was seen or not
- this key hold only one release notification
- and n custom notifications
- Update Check Module: Request to the USC depends on the privacy configuration
- useUpdateCheck: true -> does a checkin in the USC (exposes data)
- useUpdateCheck: false -> does only a GET query to the USC (does not expose any data)
- make the request handling dynamic, so it depends on the flag
- add an extra logic to be able to define a custom USC endpoint (helpful for testing)
- add an extra logic to be able to force the request to the service (helpful for testing)
- Update check module: re-work condition when a check should happen
- only if the env is not correct
- remove deprecated config.updateCheck
- remove isPrivacyDisabled check (handled differently now, explained in last commit)
- Update check module: remove `showUpdateNotification` and readability
- showUpdateNotification was used in the admin controller to fetch the latest release version number from the db
- no need to check against semver in general, the USC takes care of that (no need to double check)
- improve readability of `nextUpdateCheck` condition
- Update check module: refactor `updateCheckResponse`
- remove db call to displayUpdateNotification, not used anymore
- support receiving multiple custom notifications
- support custom notification groups
- the default group is `all` - this will always be consumed
- groups can be extended via config e.g. `notificationGroups: ['migration']`
- Update check module: refactor createCustomNotification helper
- get rid of taking over notification duplication handling (this is not the task of the update check module)
- ensure we have good fallback values for non present attributes in a notification
- get rid of semver check (happens in the USC) - could be reconsidered later if LTS is gone
- Refactor notification API
- reason: get rid of in process notification store
-> this was an object hold in process
-> everything get's lost after restart
-> not helpful anymore, because imagine the following case
-> you get a notification
-> you store it in process
-> you mark this notification as seen
-> you restart Ghost, you will receive the same notification on the next check again
-> because we are no longer have a separate seen notifications object
- use database settings key `notification` instead
- refactor all api endpoints to support reading and storing into the `notifications` object
- most important: notification deletion happens via a `seen` property (the notification get's physically deleted 3 month automatically)
-> we have to remember a seen property, because otherwise you don't know which notification was already received/seen
- Add listener to remove seen notifications automatically after 3 month
- i just decided for 3 month (we can decrease?)
- at the end it doesn't really matter, as long as the windows is not tooooo short
- listen on updates for the notifications settings
- check if notification was seen and is older than 3 month
- ignore release notification
- Updated our privacy document
- Updated docs.ghost.org for privacy config behaviour
- contains a migration script to remove old settings keys
2018-01-09 17:20:00 +03:00
|
|
|
"notifications": {
|
2016-07-22 16:02:10 +03:00
|
|
|
"defaultValue": "[]"
|
2018-10-05 14:25:51 +03:00
|
|
|
},
|
|
|
|
"session_secret": {
|
|
|
|
"defaultValue": null
|
Updated theme layer to use members-ssr (#10676)
* Removed support for cookies in members auth middleware
no-issue
The members middleware will no longer be supporting cookies, the cookie
will be handled by a new middleware specific for serverside rendering,
more informations can be found here:
https://paper.dropbox.com/doc/Members-Auth-II-4WP4vF6coMqDYbSMIajo5
* Removed members auth middleware from site app
no-issue
The site app no longer needs the members auth middleware as it doesn't
support cookies, and will be replaced by ssr specific middleware.
https://paper.dropbox.com/doc/Members-Auth-II-4WP4vF6coMqDYbSMIajo5
* Added comment for session_secret setting
no-issue
We are going to have multiple concepts of sessions, so adding a comment
here to be specific that this is for the Ghost Admin client
* Added theme_session_secret setting dynamic default
no-issue
Sessions for the theme layer will be signed, so we generate a random hex
string to use as a signing key
* Added getPublicConfig method
* Replaced export of httpHandler with POJO apiInstance
no-issue
This is mainly to reduce the public api, so it's easier to document.
* Renamed memberUserObject -> members
no-issue
Simplifies the interface, and is more inline with what we would want to export as an api library.
* Removed use of require options inside members
no-issue
This was too tight of a coupling between Ghost and Members
* Simplified apiInstance definition
no-issue
* Added getMember method to members api
* Added MembersSSR instance to members service
* Wired up routes for members ssr
* Updated members auth middleware to use getPublicConfig
* Removed publicKey static export from members service
* Used real session secret
no-issue
* Added DELETE /members/ssr handler
no-issue
This allows users to log out of the theme layer
* Fixed missing code property
no-issue
Ignition uses the statusCode property to forward status codes to call sites
* Removed superfluous error middleware
no-issue
Before we used generic JWT middleware which would reject, now the
middleware catches it's own error and doesn't error, thus this
middleware is unecessary.
* Removed console.logs
no-issue
* Updated token expirty to hardcoded 20 minutes
no-issue
This returns to our previous state of using short lived tokens, both for
security and simplicity.
* Removed hardcoded default member settings
no-issue
This is no longer needed, as defaults are in default-settings.json
* Removed stripe from default payment processor
no-issue
* Exported `getSiteUrl` method from url utils
no-issue
This keeps inline with newer naming conventions
* Updated how audience access control works
no-issue
Rather than being passed a function, members api now receives an object
which describes which origins have access to which audiences, and how
long those tokens should be allowed to work for. It also allows syntax
for default tokens where audience === origin requesting it. This can be
set to undefined or null to disable this functionality.
{
"http://site.com": {
"http://site.com": {
tokenLength: '5m'
},
"http://othersite.com": {
tokenLength: '1h'
}
},
"*": {
tokenLength: '30m'
}
}
* Updated members service to use access control feature
no-issue
This also cleans up a lot of unecessary variable definitions, and some
other minor cleanups.
* Added status code to auth pages html response
no-issue
This was missing, probably default but better to be explicit
* Updated gateway to have membersApiUrl from config
no-issue
Previously we were parsing the url, this was not very safe as we can
have Ghost hosted on a subdomain, and this would have failed.
* Added issuer to public config for members
no-issue
This can be used to request SSR tokens in the client
* Fixed path for gateway bundle
no-issue
* Updated settings model tests
no-issue
* Revert "Removed stripe from default payment processor"
This reverts commit 1d88d9b6d73a10091070bcc1b7f5779d071c7845.
* Revert "Removed hardcoded default member settings"
This reverts commit 9d899048ba7d4b272b9ac65a95a52af66b30914a.
* Installed @tryghost/members-ssr
* Fixed tests for settings model
2019-04-16 17:50:25 +03:00
|
|
|
},
|
|
|
|
"theme_session_secret": {
|
|
|
|
"defaultValue": null
|
2020-01-20 14:45:58 +03:00
|
|
|
},
|
|
|
|
"ghost_public_key": {
|
|
|
|
"defaultValue": null
|
|
|
|
},
|
|
|
|
"ghost_private_key": {
|
|
|
|
"defaultValue": null
|
2013-09-14 22:04:41 +04:00
|
|
|
}
|
|
|
|
},
|
2013-09-02 05:49:08 +04:00
|
|
|
"blog": {
|
|
|
|
"title": {
|
2017-11-16 15:58:22 +03:00
|
|
|
"defaultValue": "Ghost",
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 150
|
|
|
|
}
|
|
|
|
}
|
2013-09-02 05:49:08 +04:00
|
|
|
},
|
|
|
|
"description": {
|
2017-11-16 15:58:22 +03:00
|
|
|
"defaultValue": "The professional publishing platform",
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 200
|
|
|
|
}
|
|
|
|
}
|
2013-09-02 05:49:08 +04:00
|
|
|
},
|
|
|
|
"logo": {
|
2018-11-07 17:50:38 +03:00
|
|
|
"defaultValue": "https://static.ghost.org/v1.0.0/images/ghost-logo.svg"
|
2013-09-02 05:49:08 +04:00
|
|
|
},
|
2017-04-24 20:21:47 +03:00
|
|
|
"cover_image": {
|
2019-10-17 11:49:30 +03:00
|
|
|
"defaultValue": "https://static.ghost.org/v3.0.0/images/publication-cover.png"
|
2017-01-23 12:13:52 +03:00
|
|
|
},
|
2017-01-25 13:02:02 +03:00
|
|
|
"icon": {
|
2017-01-23 12:13:52 +03:00
|
|
|
"defaultValue": ""
|
2013-09-02 05:49:08 +04:00
|
|
|
},
|
2019-12-17 13:45:31 +03:00
|
|
|
"brand": {
|
|
|
|
"defaultValue": "{\"primaryColor\":\"\"}"
|
|
|
|
},
|
2017-05-31 18:05:49 +03:00
|
|
|
"default_locale": {
|
|
|
|
"defaultValue": "en",
|
2013-09-02 05:49:08 +04:00
|
|
|
"validations": {
|
2017-01-10 15:05:25 +03:00
|
|
|
"isEmpty": false
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|
|
|
|
},
|
2017-04-24 20:41:00 +03:00
|
|
|
"active_timezone": {
|
2016-06-10 16:05:27 +03:00
|
|
|
"defaultValue": "Etc/UTC",
|
2016-02-02 10:04:40 +03:00
|
|
|
"validations": {
|
2016-07-26 12:23:20 +03:00
|
|
|
"isTimezone": true,
|
2017-01-10 15:05:25 +03:00
|
|
|
"isEmpty": false
|
2016-02-02 10:04:40 +03:00
|
|
|
}
|
|
|
|
},
|
2017-04-24 20:41:00 +03:00
|
|
|
"force_i18n": {
|
2013-09-15 01:39:31 +04:00
|
|
|
"defaultValue": "true",
|
2013-09-02 05:49:08 +04:00
|
|
|
"validations": {
|
2017-01-10 15:05:25 +03:00
|
|
|
"isEmpty": false,
|
2019-03-07 14:23:57 +03:00
|
|
|
"isIn": [["true", "false"]]
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|
2013-11-21 22:44:18 +04:00
|
|
|
},
|
|
|
|
"permalinks": {
|
|
|
|
"defaultValue": "/:slug/",
|
|
|
|
"validations": {
|
2014-02-28 10:51:52 +04:00
|
|
|
"matches": "^(\/:?[a-z0-9_-]+){1,5}\/$",
|
2018-03-27 17:16:15 +03:00
|
|
|
"matches": "(:id|:slug|:year|:month|:day|:author|:primary_tag|:primary_author)",
|
2013-11-21 22:44:18 +04:00
|
|
|
"notContains": "/ghost/"
|
|
|
|
}
|
2014-07-31 23:36:20 +04:00
|
|
|
},
|
2017-01-17 18:40:06 +03:00
|
|
|
"amp": {
|
2019-03-07 14:23:57 +03:00
|
|
|
"defaultValue" : "true",
|
|
|
|
"validations": {
|
|
|
|
"isIn": [["true", "false"]]
|
|
|
|
}
|
2017-01-17 18:40:06 +03:00
|
|
|
},
|
2014-07-31 23:36:20 +04:00
|
|
|
"ghost_head": {
|
|
|
|
"defaultValue" : ""
|
|
|
|
},
|
|
|
|
"ghost_foot": {
|
|
|
|
"defaultValue" : ""
|
2014-12-14 20:56:04 +03:00
|
|
|
},
|
2016-03-03 11:52:27 +03:00
|
|
|
"facebook": {
|
2018-08-10 14:55:03 +03:00
|
|
|
"defaultValue" : "ghost"
|
2016-03-03 11:52:27 +03:00
|
|
|
},
|
|
|
|
"twitter": {
|
2018-08-10 14:55:03 +03:00
|
|
|
"defaultValue" : "tryghost"
|
2016-03-03 11:52:27 +03:00
|
|
|
},
|
2014-12-14 20:56:04 +03:00
|
|
|
"labs": {
|
2019-01-15 13:09:34 +03:00
|
|
|
"defaultValue": "{}"
|
2015-01-11 22:55:52 +03:00
|
|
|
},
|
|
|
|
"navigation": {
|
2019-07-22 13:17:50 +03:00
|
|
|
"defaultValue": "[{\"label\":\"Home\", \"url\":\"/\"},{\"label\":\"Tag\", \"url\":\"/tag/getting-started/\"}, {\"label\":\"Author\", \"url\":\"/author/ghost/\"},{\"label\":\"Help\", \"url\":\"https://ghost.org/docs/\"}]"
|
2016-03-29 11:40:44 +03:00
|
|
|
},
|
2019-12-04 07:12:02 +03:00
|
|
|
"secondary_navigation": {
|
|
|
|
"defaultValue": "[]"
|
|
|
|
},
|
2016-03-29 11:40:44 +03:00
|
|
|
"slack": {
|
2018-12-14 14:57:32 +03:00
|
|
|
"defaultValue": "[{\"url\":\"\", \"username\":\"Ghost\"}]"
|
2017-08-15 17:59:16 +03:00
|
|
|
},
|
|
|
|
"unsplash": {
|
2017-09-19 12:56:45 +03:00
|
|
|
"defaultValue": "{\"isActive\": true}"
|
2019-07-18 17:24:34 +03:00
|
|
|
},
|
|
|
|
"meta_title": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 300
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"meta_description": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 500
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"og_image": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 2000
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"og_title": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 300
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"og_description": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 300
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"twitter_image": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 2000
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"twitter_title": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 300
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
|
|
|
"twitter_description": {
|
|
|
|
"defaultValue": null,
|
|
|
|
"validations": {
|
|
|
|
"isLength": {
|
|
|
|
"max": 300
|
|
|
|
}
|
|
|
|
}
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|
|
|
|
},
|
2013-09-14 22:04:41 +04:00
|
|
|
"theme": {
|
2017-04-24 20:41:00 +03:00
|
|
|
"active_theme": {
|
2013-09-15 01:39:31 +04:00
|
|
|
"defaultValue": "casper"
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|
|
|
|
},
|
2015-08-24 14:43:26 +03:00
|
|
|
"private": {
|
2017-04-24 20:41:00 +03:00
|
|
|
"is_private": {
|
2019-03-07 14:23:57 +03:00
|
|
|
"defaultValue": "false",
|
|
|
|
"validations": {
|
|
|
|
"isIn": [["true", "false"]]
|
|
|
|
}
|
2015-08-24 14:43:26 +03:00
|
|
|
},
|
|
|
|
"password": {
|
|
|
|
"defaultValue": ""
|
2017-10-05 13:07:32 +03:00
|
|
|
},
|
|
|
|
"public_hash": {
|
|
|
|
"defaultValue": null
|
2015-08-24 14:43:26 +03:00
|
|
|
}
|
2018-12-10 12:20:54 +03:00
|
|
|
},
|
|
|
|
"members": {
|
|
|
|
"members_public_key": {
|
|
|
|
"defaultValue": null
|
|
|
|
},
|
|
|
|
"members_private_key": {
|
|
|
|
"defaultValue": null
|
|
|
|
},
|
|
|
|
"members_session_secret": {
|
|
|
|
"defaultValue": null
|
2019-02-26 06:09:16 +03:00
|
|
|
},
|
2019-10-10 13:31:19 +03:00
|
|
|
"members_email_auth_secret": {
|
|
|
|
"defaultValue": null
|
|
|
|
},
|
2019-10-02 12:08:10 +03:00
|
|
|
"default_content_visibility": {
|
|
|
|
"defaultValue": "public"
|
|
|
|
},
|
2019-02-26 06:09:16 +03:00
|
|
|
"members_subscription_settings": {
|
2020-03-16 08:36:51 +03:00
|
|
|
"defaultValue": "{\"fromAddress\":\"noreply\",\"allowSelfSignup\":true,\"paymentProcessors\":[{\"adapter\":\"stripe\",\"config\":{\"secret_token\":\"\",\"public_token\":\"\",\"product\":{\"name\":\"Ghost Subscription\"},\"plans\":[{\"name\":\"Monthly\",\"currency\":\"usd\",\"interval\":\"month\",\"amount\":\"\"},{\"name\":\"Yearly\",\"currency\":\"usd\",\"interval\":\"year\",\"amount\":\"\"}]}}]}"
|
2019-11-13 06:48:26 +03:00
|
|
|
}
|
|
|
|
},
|
|
|
|
"bulk_email": {
|
|
|
|
"bulk_email_settings": {
|
|
|
|
"defaultValue": "{\"provider\":\"mailgun\", \"apiKey\": \"\", \"domain\": \"\", \"baseUrl\": \"\"}"
|
2018-12-10 12:20:54 +03:00
|
|
|
}
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|
2013-09-02 05:49:08 +04:00
|
|
|
}
|