TryGhost/Ghost
1
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-04 22:44:07 +03:00
Code Issues Projects Releases Wiki Activity
a5990e555b
Ghost/core/server/api/v2/authentication.js

97 lines
3.0 KiB
JavaScript
Raw Normal View History

Migrated authentication.resetPassword method to v2
2019-07-17 17:43:07 +03:00
const api = require('./index');
const web = require('../../web');
Migrated authentication.isInvitation method to v2
2019-07-24 15:53:09 +03:00
const models = require('../../models');
Migrated authentication.acceptInvitation method to v2
2019-07-24 13:40:18 +03:00
const auth = require('../../services/auth');
const invitations = require('../../services/invitations');
Migrated authentication.resetPassword method to v2
2019-07-17 17:43:07 +03:00
module.exports = {
Added validation layer to password reset - Adding a new method in all.js seems a little dirty, but that seems like the best place for now as similar method was added for changePassword method
2019-07-23 19:30:17 +03:00
docName: 'authentication',
Migrated authentication.resetPassword method to v2
2019-07-17 17:43:07 +03:00
generateResetToken: {
permissions: true,
options: [
'email'
],
query(frame) {
return Promise.resolve()
.then(() => {
return auth.setup.assertSetupCompleted(true);
})
.then(() => {
return auth.passwordreset.generateToken(frame.data.email, api.settings);
})
.then((token) => {
return auth.passwordreset.sendResetNotification(token, api.mail);
});
}
},
resetPassword: {
Added validation layer to password reset - Adding a new method in all.js seems a little dirty, but that seems like the best place for now as similar method was added for changePassword method
2019-07-23 19:30:17 +03:00
validation: {
docName: 'passwordreset',
data: {
token: {required: true},
newPassword: {required: true},
ne2Password: {required: true}
}
},
Migrated authentication.resetPassword method to v2
2019-07-17 17:43:07 +03:00
permissions: false,
options: [
'ip'
],
query(frame) {
return Promise.resolve()
.then(() => {
return auth.setup.assertSetupCompleted(true);
})
.then(() => {
return auth.passwordreset.extractTokenParts(frame);
})
.then((params) => {
return auth.passwordreset.protectBruteForce(params);
})
.then(({options, tokenParts}) => {
options = Object.assign(options, {context: {internal: true}});
return auth.passwordreset.doReset(options, tokenParts, api.settings)
.then((params) => {
web.shared.middlewares.api.spamPrevention.userLogin().reset(frame.options.ip, `${tokenParts.email}login`);
return params;
});
});
}
Migrated authentication.acceptInvitation method to v2
2019-07-24 13:40:18 +03:00
},
acceptInvitation: {
validation: {
docName: 'invitations'
},
permissions: false,
query(frame) {
return Promise.resolve()
.then(() => {
return auth.setup.assertSetupCompleted(true);
})
.then(() => {
return invitations.accept(frame.data);
});
}
Migrated authentication.isInvitation method to v2
2019-07-24 15:53:09 +03:00
},
isInvitation: {
validation: {
docName: 'invitations'
},
permissions: false,
query(frame) {
return Promise.resolve()
.then(() => {
return auth.setup.assertSetupCompleted(true);
})
.then(() => {
const email = frame.data.email;
Fixed lint error
2019-07-24 17:18:44 +03:00
return models.Invite.findOne({email: email, status: 'sent'}, frame.options);
Migrated authentication.isInvitation method to v2
2019-07-24 15:53:09 +03:00
});
}
Migrated authentication.resetPassword method to v2
2019-07-17 17:43:07 +03:00
}
};
Reference in New Issue Copy Permalink