TryGhost/Ghost
1
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-20 09:22:49 +03:00
Code Issues Projects Releases Wiki Activity
6c216b81be
Ghost/core/server/utils/index.js

129 lines
3.9 KiB
JavaScript
Raw Normal View History

Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
var unidecode = require('unidecode'),
Fix handling of slugs on import closes Issue #5812 - pass importing property through to utils - fix safeString method for imports
2015-09-23 13:54:56 +03:00
_ = require('lodash'),
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
config = require('../config'),
Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
utils,
Server side cleanup - remove sessions - remove all references to csrf - create a shared base model for the 2 types of token
2014-07-14 16:29:45 +04:00
getRandomInt;
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
/**
* Return a random int, used by `utils.uid()`
*
* @param {Number} min
* @param {Number} max
* @return {Number}
* @api private
*/
Server side cleanup - remove sessions - remove all references to csrf - create a shared base model for the 2 types of token
2014-07-14 16:29:45 +04:00
getRandomInt = function (min, max) {
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
return Math.floor(Math.random() * (max - min + 1)) + min;
Server side cleanup - remove sessions - remove all references to csrf - create a shared base model for the 2 types of token
2014-07-14 16:29:45 +04:00
};
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
Server side cleanup - remove sessions - remove all references to csrf - create a shared base model for the 2 types of token
2014-07-14 16:29:45 +04:00
utils = {
Change refresh token expiry no issue - acquiring a new access token using a refresh token sets the expiration time of the refresh token to now + 24 hrs. - moved all occurrences of ONE_HOUR, ONE_DAY and ONE_YEAR to `core/server/utils`
2014-07-28 17:19:49 +04:00
/**
* Timespans in seconds and milliseconds for better readability
*/
Change session length to 7 days refs #5202 - this is just a stopgap to deliver minor improvement short term, - longer term we will do the work to refresh refresh tokens & switch this to a month
2015-05-08 17:54:12 +03:00
ONE_HOUR_S: 3600,
ONE_DAY_S: 86400,
🎨 increase token expiry (#7971) refs #5202 - please read https://github.com/TryGhost/Ghost/issues/5202#issuecomment-278934768
2017-02-10 16:35:58 +03:00
ONE_MONTH_S: 2628000,
SIX_MONTH_S: 15768000,
Change session length to 7 days refs #5202 - this is just a stopgap to deliver minor improvement short term, - longer term we will do the work to refresh refresh tokens & switch this to a month
2015-05-08 17:54:12 +03:00
ONE_YEAR_S: 31536000,
🐛 🎨 old accesstokens are not cleaned up (#8065) closes #8035 - create auth/utils - use authUtils.createTokens for all cases - decrease the expiry of the old access token before creating a new one
2017-03-01 13:12:03 +03:00
FIVE_MINUTES_MS: 300000,
Change session length to 7 days refs #5202 - this is just a stopgap to deliver minor improvement short term, - longer term we will do the work to refresh refresh tokens & switch this to a month
2015-05-08 17:54:12 +03:00
ONE_HOUR_MS: 3600000,
ONE_DAY_MS: 86400000,
ONE_WEEK_MS: 604800000,
ONE_MONTH_MS: 2628000000,
🎨 increase token expiry (#7971) refs #5202 - please read https://github.com/TryGhost/Ghost/issues/5202#issuecomment-278934768
2017-02-10 16:35:58 +03:00
SIX_MONTH_MS: 15768000000,
Change session length to 7 days refs #5202 - this is just a stopgap to deliver minor improvement short term, - longer term we will do the work to refresh refresh tokens & switch this to a month
2015-05-08 17:54:12 +03:00
ONE_YEAR_MS: 31536000000,
Change refresh token expiry no issue - acquiring a new access token using a refresh token sets the expiration time of the refresh token to now + 24 hrs. - moved all occurrences of ONE_HOUR, ONE_DAY and ONE_YEAR to `core/server/utils`
2014-07-28 17:19:49 +04:00
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
/**
* Return a unique identifier with the given `len`.
*
* utils.uid(10);
* // => "FDaS435D2z"
*
* @param {Number} len
* @return {String}
* @api private
*/
uid: function (len) {
var buf = [],
chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789',
charlen = chars.length,
i;
fix uid method in core/server/utils/index.js to return a string which length is equal to len argument (#8025) closes #7998
2017-03-03 17:35:08 +03:00
for (i = 0; i < len; i = i + 1) {
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
buf.push(chars[getRandomInt(0, charlen - 1)]);
}
return buf.join('');
Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
},
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
Fix handling of slugs on import closes Issue #5812 - pass importing property through to utils - fix safeString method for imports
2015-09-23 13:54:56 +03:00
safeString: function (string, options) {
options = options || {};
🎨 refactor the importer (#8473) refs #5422 - we can support null titles after this PR if we want - user model: fix getAuthorRole - user model: support adding roles by name - we support this for roles as well, this makes it easier when importing related user roles (because usually roles already exists in the database and the related id's are wrong e.g. roles_users) - base model: support for null created_at or updated_at values - post or tag slugs are always safe strings - enable an import of a null slug, no need to crash or to cover this on import layer - add new DataImporter logic - uses a class inheritance mechanism to achieve an easier readability and maintenance - schema validation (happens on model layer) was ignored - allow to import unknown user id's (see https://github.com/TryGhost/Ghost/issues/8365) - most of the duplication handling happens on model layer (we can use the power of unique fields and errors from the database) - the import is splitted into three steps: - beforeImport --> prepares the data to import, sorts out relations (roles, tags), detects fields (for LTS) - doImport --> does the actual import - afterImport --> updates the data after successful import e.g. update all user reference fields e.g. published_by (compares the imported data with the current state of the database) - import images: markdown can be null - show error message when json handler can't parse file - do not request gravatar if email is null - return problems/warnings after successful import - optimise warnings in importer - do not return warnings for role duplications, no helpful information - error handler: return context information of error - we show the affected json entries as one line in the UI - show warning for: detected duplicated tag - schema validation: fix valueMustBeBoolean translation - remove context property from json parse error
2017-05-23 19:18:13 +03:00
if (string === null) {
string = '';
}
Fix handling of slugs on import closes Issue #5812 - pass importing property through to utils - fix safeString method for imports
2015-09-23 13:54:56 +03:00
// Handle the £ symbol separately, since it needs to be removed before the unicode conversion.
Makes most special characters be replaced with a dash closes #4782 - Still achieves the same goal of stripping out reserved characters - Changes from removal to replacement - This helps word separators from being removed - Apostrophes (') are unaffected
2015-01-10 06:31:47 +03:00
string = string.replace(/£/g, '-');
Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
// Remove non ascii characters
string = unidecode(string);
Add missing chars to slug generator closes #6272 - curly braces and back-tick should also be replaced with a dash - other symbols and chars in ascii table are either removed or replace - not all the replacements are sensible, but better than having odd chars in the slug for now
2016-01-05 19:52:23 +03:00
// Replace URL reserved chars: `@:/?#[]!$&()*+,;=` as well as `\%<>|^~£"{}` and \`
string = string.replace(/(\s|\.|@|:|\/|\?|#|\[|\]|!|\$|&|\(|\)|\*|\+|,|;|=|\\|%|<|>|\||\^|~|"|\{|\}|`||—)/g, '-')
Makes most special characters be replaced with a dash closes #4782 - Still achieves the same goal of stripping out reserved characters - Changes from removal to replacement - This helps word separators from being removed - Apostrophes (') are unaffected
2015-01-10 06:31:47 +03:00
// Remove apostrophes
.replace(/'/g, '')
Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
// Make the whole thing lowercase
.toLowerCase();
Fix handling of slugs on import closes Issue #5812 - pass importing property through to utils - fix safeString method for imports
2015-09-23 13:54:56 +03:00
// We do not need to make the following changes when importing data
if (!_.has(options, 'importing') || !options.importing) {
// Convert 2 or more dashes into a single dash
string = string.replace(/-+/g, '-')
// Remove trailing dash
.replace(/-$/, '')
// Remove any dashes at the beginning
.replace(/^-/, '');
}
Makes most special characters be replaced with a dash closes #4782 - Still achieves the same goal of stripping out reserved characters - Changes from removal to replacement - This helps word separators from being removed - Apostrophes (') are unaffected
2015-01-10 06:31:47 +03:00
// Handle whitespace at the beginning or end.
string = string.trim();
Export 003 closes #3284 - ensure token tables aren't exported - cleanup filename - failed export throws internal server error
2014-07-19 16:20:16 +04:00
return string;
URL safe base64 encoding closes #3872 - updated base64 escaping to respect + and \ - updated base64 escaping to remove = during transport - updated tests
2014-12-01 18:59:49 +03:00
},
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
Fixed typos
2015-03-15 00:50:00 +03:00
// The token is encoded URL safe by replacing '+' with '-', '\' with '_' and removing '='
URL safe base64 encoding closes #3872 - updated base64 escaping to respect + and \ - updated base64 escaping to remove = during transport - updated tests
2014-12-01 18:59:49 +03:00
// NOTE: the token is not encoded using valid base64 anymore
encodeBase64URLsafe: function (base64String) {
return base64String.replace(/\+/g, '-').replace(/\//g, '_').replace(/=+$/, '');
},
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
URL safe base64 encoding closes #3872 - updated base64 escaping to respect + and \ - updated base64 escaping to remove = during transport - updated tests
2014-12-01 18:59:49 +03:00
// Decode url safe base64 encoding and add padding ('=')
decodeBase64URLsafe: function (base64String) {
base64String = base64String.replace(/-/g, '+').replace(/_/g, '/');
while (base64String.length % 4) {
base64String += '=';
}
return base64String;
Make frontend routing dynamic & driven by channels refs #5091 - Move renderChannel to own file - Update channel config to have get/list methods - Move main routes to be generated based on the list of channels - Move RSS routes to be subroutes of channels - Move redirect301 to be a shared util - Add full test coverage - Split frontend route tests into frontend & channels
2016-02-09 17:14:24 +03:00
},
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
Make frontend routing dynamic & driven by channels refs #5091 - Move renderChannel to own file - Update channel config to have get/list methods - Move main routes to be generated based on the list of channels - Move RSS routes to be subroutes of channels - Move redirect301 to be a shared util - Add full test coverage - Split frontend route tests into frontend & channels
2016-02-09 17:14:24 +03:00
redirect301: function redirect301(res, path) {
/*jslint unparam:true*/
🎨 add cache control configurations into the default config refs #7488 - cache control can be overridden if needed
2017-05-29 23:10:32 +03:00
res.set({'Cache-Control': 'public, max-age=' + config.get('caching:301:maxAge')});
Make frontend routing dynamic & driven by channels refs #5091 - Move renderChannel to own file - Update channel config to have get/list methods - Move main routes to be generated based on the list of channels - Move RSS routes to be subroutes of channels - Move redirect301 to be a shared util - Add full test coverage - Split frontend route tests into frontend & channels
2016-02-09 17:14:24 +03:00
res.redirect(301, path);
Subscribers: Move read CSV into separate utility - split out read CSV function into utility and add tests - update API response to follow JSONAPI more closely - update the UI to match the new API response
2016-05-08 10:12:37 +03:00
},
✨ Use node-archiver to create zips (#7268) closes #7266, closes #7267 - Adds node-archiver as a dependency - Adds new zip-folder utility - Switch out exec 'zip' for zip folder utility - Store generated zips in os.tmpdir - Don't delete zips from content/themes when uploading or deleting - Fixes path resolution for delete
2016-08-25 10:22:22 +03:00
readCSV: require('./read-csv'),
removeOpenRedirectFromUrl: require('./remove-open-redirect-from-url'),
:art: load themes not in ConfigManager (#7342) refs #6982
2016-09-09 13:10:43 +03:00
zipFolder: require('./zip-folder'),
🐛 Refresh assetHash on theme override (#7430) closes #7423 - Extend our dirty theme override cache clear hack to also reset the asset hash _ This brings alpha into line with the LTS branch - This still needs a rewrite for Ghost 1.0.0 🙄
2016-09-23 14:05:44 +03:00
generateAssetHash: require('./asset-hash'),
✨ add token utils (#7554) no issue - preperation for User model refactoring - add independent util to generate reset hash, compare a hash and extract information out of it - this code is basically a copy/paste of User model (generateResetToken, validateToken)
2016-10-13 15:54:44 +03:00
url: require('./url'),
🎨 gravatar lookup in saving hook (#7561) refs #7432 - in preparation for more User model cleanup - look for gravatar when email has changed - run onSaving tasks in parallel in User model
2016-10-14 17:37:40 +03:00
tokens: require('./tokens'),
🔥 remove database version (#7894) refs #7489 - as we are now using a different migration approach (knex-migrator), we don't need to remember the database version anymore - it was once used to check the state of a database and based on it we decided to migrate or not - with knex-migrator everything depends on the migration table entries and the current ghost version you are on - on current master the leftover usage is to add the db version when exporting the database, which can be replaced by reading the ghost version - removing this solves also an interesting migration case with knex-migrator: - you are on 1.0 - you update to 1.1, but 1.1 has no migrations - the db version would remain in 1.0 - because the db version was only updated when knex migrator executed a migration
2017-01-26 15:12:00 +03:00
sequence: require('./sequence'),
Removed ghost editor dependency (#8137) refs #7429 - ☢️ 👷🏻‍♀️ This PR removes the dependency on Ghost-Editor and replaces it with the Mobiledoc DOM renderer. It includes new DOM based default cards and atoms.
2017-03-14 21:07:33 +03:00
ghostVersion: require('./ghost-version'),
replace custom showdown fork with markdown-it (#8451) refs https://github.com/TryGhost/Ghost-Admin/pull/690, closes #1501, closes #2093, closes #4592, closes #4627, closes #4659, closes #5039, closes #5237, closes #5587, closes #5625, closes #5632, closes #5822, closes #5939, closes #6840, closes #7183, closes #7536 - replace custom showdown fork with markdown-it - swaps showdown for markdown-it when rendering markdown - match existing header ID behaviour - allow headers without a space after the #s - add duplicate header ID handling - remove legacy markdown spec - move markdown-it setup into markdown-converter util - update mobiledoc specs to match markdown-it newline behaviour - update data-generator HTML to match markdown-it newline behaviour - fix Post "converts html to plaintext" test - update rss spec to match markdown-it newline behaviour - close almost all related showdown bugs
2017-05-15 19:48:14 +03:00
mobiledocConverter: require('./mobiledoc-converter'),
markdownConverter: require('./markdown-converter')
Invite user API closes #3080 - added users.invite() to add user from email with random password - added `GET /ghost/api/v0.1/users/` to invite users and resend invitations - removed one user limit - added global utils for uid generation - changed some „“ to ‚‘
2014-07-02 18:22:18 +04:00
};
Add jscs task to grunt file and clean up files to adhere to jscs rules. resolves #1920 - updates all files to conform to style settings.
2014-09-10 08:06:24 +04:00
module.exports = utils;
Reference in New Issue Copy Permalink