TryGhost/Ghost
1
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2024-11-28 05:37:34 +03:00
Code Issues Projects Releases Wiki Activity
cfad396652
Ghost/core/server/services/members/config.js

252 lines
8.0 KiB
JavaScript
Raw Normal View History

Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
const {URL} = require('url');
const crypto = require('crypto');
Moved magiclink handling to /members/ + added redirect - Magic link token handling doesn't need to be global, this couples the system to the frontend, which isn't necessary - Instead, we create a session from the token, and redirect to the frontend - Move res.locals.members setting into existing middleware function instead of having it separate
2020-04-29 20:23:55 +03:00
const path = require('path');
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
✨ Added complimentary member subscription (#11537) no issue - We need a way to simulate "premium" membership without any payment from members' side. For this new "Complimentary" plan is introduced - Allows `comped` flag as an input only on `PUT /members/:id` endpoint which sets free subscriptions based on "complimentary" plan on the member - Added `comped` flag to members endpoint responses - Bumped members-api to 0.12.0. This version supports new set/cancel complimentary subscription methods
2020-01-28 07:25:00 +03:00
const COMPLIMENTARY_PLAN = {
name: 'Complimentary',
currency: 'usd',
interval: 'year',
amount: '0'
};
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
class MembersConfigProvider {
/**
* @param {object} options
* @param {{get: (key: string) => any}} options.settingsCache
* @param {{get: (key: string) => any}} options.config
* @param {any} options.urlUtils
* @param {any} options.logging
* @param {{original: string}} options.ghostVersion
*/
constructor(options) {
this._settingsCache = options.settingsCache;
this._config = options.config;
this._urlUtils = options.urlUtils;
this._logging = options.logging;
this._ghostVersion = options.ghostVersion;
}
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
/**
* @private
*/
_getDomain() {
const domain = this._urlUtils.urlFor('home', true).match(new RegExp('^https?://([^/:?#]+)(?:[/:?#]|$)', 'i'));
return domain && domain[1];
}
Added method to fetch public membership plans no issue This allows anyone using members service to fetch public membership plans for a site including currency and monthly/yearly charges. This is currently duplicated from theme service where we create the price helper, but will be cleaned up to keep logic in one single place.
2020-04-17 12:29:23 +03:00
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
getEmailFromAddress() {
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
const fromAddress = this._settingsCache.get('members_from_address') || 'noreply';
Added method to fetch public membership plans no issue This allows anyone using members service to fetch public membership plans for a site including currency and monthly/yearly charges. This is currently duplicated from theme service where we create the price helper, but will be cleaned up to keep logic in one single place.
2020-04-17 12:29:23 +03:00
Allowed updating from address domain for member emails refs https://github.com/TryGhost/Ghost/issues/11414 Confirms if the fromAddress for sending member emails is valid and accessible using magic link flow, allowing owners to update full from address including domain change. - Extends member service to handle magic link generation and validation for email update - Updates existing setting endpoint to not directly update from address - Adds new endpoint to send magic link to new address - Adds new endpoint for validating the magic link when clicked and update the new email for from address - Adds new email template for from address update email
2020-06-05 19:20:04 +03:00
// Any fromAddress without domain uses site domain, like default setting `noreply`
if (fromAddress.indexOf('@') < 0) {
return `${fromAddress}@${this._getDomain()}`;
}
return fromAddress;
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
}
Added method to fetch public membership plans no issue This allows anyone using members service to fetch public membership plans for a site including currency and monthly/yearly charges. This is currently duplicated from theme service where we create the price helper, but will be cleaned up to keep logic in one single place.
2020-04-17 12:29:23 +03:00
Fixed missing domain for default support address no issue - By default for new sites, support address is set same as from address to `noreply` , with full email address using the domain for `@` - For newsletter emails, the support address was missing the default site domain to be added to address if its `noreply` - Fix updates the support address to use the same format as from address and add relevant domain for default case
2020-09-03 08:00:09 +03:00
getEmailSupportAddress() {
const supportAddress = this._settingsCache.get('members_support_address') || 'noreply';
// Any fromAddress without domain uses site domain, like default setting `noreply`
if (supportAddress.indexOf('@') < 0) {
return `${supportAddress}@${this._getDomain()}`;
}
return supportAddress;
}
Updated sender address for member auth emails to support address no issue - Member auth emails were previously using the `from` address as sender - New `members_support_address` was introduced with default as original "from" address - Auth emails use the new support address as sender
2020-08-26 11:00:16 +03:00
getAuthEmailFromAddress() {
Fixed missing domain for default support address no issue - By default for new sites, support address is set same as from address to `noreply` , with full email address using the domain for `@` - For newsletter emails, the support address was missing the default site domain to be added to address if its `noreply` - Fix updates the support address to use the same format as from address and add relevant domain for default case
2020-09-03 08:00:09 +03:00
return this.getEmailSupportAddress() || this.getEmailFromAddress();
Updated sender address for member auth emails to support address no issue - Member auth emails were previously using the `from` address as sender - New `members_support_address` was introduced with default as original "from" address - Auth emails use the new support address as sender
2020-08-26 11:00:16 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
getPublicPlans() {
const CURRENCY_SYMBOLS = {
USD: '$',
AUD: '$',
CAD: '$',
GBP: '£',
✨ Adding INR currency support (#11911) - We have many customers asking for INR as there are special rules in Stripe for this currency - As well as a desire for local-selling - Meaning it's not valid to use e.g. USD instead
2020-06-12 21:36:25 +03:00
EUR: '€',
INR: '₹'
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
};
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const defaultPriceData = {
monthly: 0,
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
yearly: 0,
currency: 'USD',
currency_symbol: CURRENCY_SYMBOLS.USD
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
};
try {
Added guards for `stripe_plans` setting being null no-issue There is concern that the settings cache can return `null` for values which it cannot parse correctly, this just ensures that we always have an array where we expect one
2020-07-07 14:10:10 +03:00
const plans = this._settingsCache.get('stripe_plans') || [];
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
const priceData = plans.reduce((prices, plan) => {
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const numberAmount = 0 + plan.amount;
const dollarAmount = numberAmount ? Math.round(numberAmount / 100) : 0;
return Object.assign(prices, {
[plan.name.toLowerCase()]: dollarAmount
});
}, {});
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
priceData.currency = plans[0].currency || 'USD';
Fixed members plan currency symbol no issue The refactor to new settings lost the uppercasing of the currency string, this puts it back
2020-07-08 08:17:28 +03:00
priceData.currency_symbol = CURRENCY_SYMBOLS[priceData.currency.toUpperCase()];
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
if (Number.isInteger(priceData.monthly) && Number.isInteger(priceData.yearly)) {
return priceData;
}
return defaultPriceData;
} catch (err) {
return defaultPriceData;
Added method to fetch public membership plans no issue This allows anyone using members service to fetch public membership plans for a site including currency and monthly/yearly charges. This is currently duplicated from theme service where we create the price helper, but will be cleaned up to keep logic in one single place.
2020-04-17 12:29:23 +03:00
}
}
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
/**
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
* @param {'direct' | 'connect'} type - The "type" of keys to fetch from settings
* @returns {{publicKey: string, secretKey: string} | null}
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
*/
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
getStripeKeys(type) {
if (type !== 'direct' && type !== 'connect') {
throw new Error();
}
const secretKey = this._settingsCache.get(`stripe_${type === 'connect' ? 'connect_' : ''}secret_key`);
const publicKey = this._settingsCache.get(`stripe_${type === 'connect' ? 'connect_' : ''}publishable_key`);
if (!secretKey || !publicKey) {
return null;
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
}
return {
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
secretKey,
publicKey
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
};
}
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
/**
* @returns {{publicKey: string, secretKey: string} | null}
*/
getActiveStripeKeys() {
const stripeDirect = this._config.get('stripeDirect');
Added special handling for member import with Stripe connection no issue - When imported member contains stripe_customer_id data but there is no Stripe configured on the Ghost instance such import should faiil. The logic is consistent with one where import fails after not being able to find customer in linked Stripe account - Fixed import stats to show import failures instead of "duplicate" when the validation error is of "Stripe" origin
2020-06-09 14:02:38 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
if (stripeDirect) {
return this.getStripeKeys('direct');
}
Added special handling for member import with Stripe connection no issue - When imported member contains stripe_customer_id data but there is no Stripe configured on the Ghost instance such import should faiil. The logic is consistent with one where import fails after not being able to find customer in linked Stripe account - Fixed import stats to show import failures instead of "duplicate" when the validation error is of "Stripe" origin
2020-06-09 14:02:38 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
const connectKeys = this.getStripeKeys('connect');
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
if (!connectKeys) {
return this.getStripeKeys('direct');
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
}
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
return connectKeys;
}
isStripeConnected() {
return this.getActiveStripeKeys() !== null;
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
getStripeUrlConfig() {
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const siteUrl = this._urlUtils.getSiteUrl();
🐛 Fixed Stripe webhooks for subdirectory setups no-issue - Added breaking test for webhook url including subdirectory - Previously the webhook handler URL was generated incorrectly when running Ghost on a subdirectory, appending the path to the root of the host, this fix ensures that the subdirectory is included before the path.
2020-07-10 13:07:11 +03:00
const webhookHandlerUrl = new URL('members/webhooks/stripe/', siteUrl);
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const checkoutSuccessUrl = new URL(siteUrl);
checkoutSuccessUrl.searchParams.set('stripe', 'success');
const checkoutCancelUrl = new URL(siteUrl);
checkoutCancelUrl.searchParams.set('stripe', 'cancel');
const billingSuccessUrl = new URL(siteUrl);
billingSuccessUrl.searchParams.set('stripe', 'billing-update-success');
const billingCancelUrl = new URL(siteUrl);
billingCancelUrl.searchParams.set('stripe', 'billing-update-cancel');
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
return {
checkoutSuccess: checkoutSuccessUrl.href,
checkoutCancel: checkoutCancelUrl.href,
billingSuccess: billingSuccessUrl.href,
billingCancel: billingCancelUrl.href,
webhookHandler: webhookHandlerUrl.href
};
}
getStripePaymentConfig() {
if (!this.isStripeConnected()) {
return null;
}
const stripeApiKeys = this.getActiveStripeKeys();
const urls = this.getStripeUrlConfig();
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
if (!stripeApiKeys) {
Fixed Members Stripe config for Stripe Connect no-issue This was initially missed as local settings always had the original stripeDirect keys, this ensures that regardless of Connect vs Direct vs Both vs Neither that the config is correct. Also ensures that the Members API instance is reloaded when the Stripe Connect settings are changed.
2020-06-12 19:38:06 +03:00
return null;
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
return {
Updated members config to respect stripeDirect no-issue If the stripeDirect config value is NOT set / false, then connect token should be used over the API keys if both are present, or else use whichever is present. If the stripeDirect config value is set / true,then API keys should be used and stripe connect token should be completely ignored. The reason for this is that we want to use Stripe Connect as the primary auth method going forward, but we want to keep the direct version availiable should the Ghost Foundation ever dismantle. This will allow people to use all the same features with no dependency on an external service.
2020-05-28 18:58:51 +03:00
publicKey: stripeApiKeys.publicKey,
secretKey: stripeApiKeys.secretKey,
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
checkoutSuccessUrl: urls.checkoutSuccess,
checkoutCancelUrl: urls.checkoutCancel,
billingSuccessUrl: urls.billingSuccess,
billingCancelUrl: urls.billingCancel,
webhookHandlerUrl: urls.webhookHandler,
Improved handling of Stripe webhooks on boot no-issue This version of members-api includes changes to how webhooks are managed, previously they would be deleted and recreated on every boot of Ghost. Now they are created and the secret is persisted, on boot the webhook is updated to the most current url and events. If the api version is wrong or the update fails, the webhook is deleted and recreated and the settings updated. - Installed @tryghost/members-api@0.24.0 - Updated config to work with 0.24.0
2020-07-09 17:17:54 +03:00
webhook: {
id: this._settingsCache.get('members_stripe_webhook_id'),
secret: this._settingsCache.get('members_stripe_webhook_secret')
},
✨ Added support for Stripe promo codes in config (#12149) closes #12111 * Added default value in defaults.json * Passed config to members-api module refs: https://github.com/TryGhost/Members/pull/194
2020-09-21 15:15:41 +03:00
enablePromoCodes: this._config.get('enableStripePromoCodes'),
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
product: {
name: this._settingsCache.get('stripe_product_name')
},
Added guards for `stripe_plans` setting being null no-issue There is concern that the settings cache can return `null` for values which it cannot parse correctly, this just ensures that we always have an array where we expect one
2020-07-07 14:10:10 +03:00
plans: [COMPLIMENTARY_PLAN].concat(this._settingsCache.get('stripe_plans') || []),
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
appInfo: {
name: 'Ghost',
partner_id: 'pp_partner_DKmRVtTs4j9pwZ',
version: this._ghostVersion.original,
url: 'https://ghost.org/'
}
};
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
getAuthSecret() {
const hexSecret = this._settingsCache.get('members_email_auth_secret');
if (!hexSecret) {
this._logging.warn('Could not find members_email_auth_secret, using dynamically generated secret');
return crypto.randomBytes(64);
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const secret = Buffer.from(hexSecret, 'hex');
if (secret.length < 64) {
this._logging.warn('members_email_auth_secret not large enough (64 bytes), using dynamically generated secret');
return crypto.randomBytes(64);
}
return secret;
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
getAllowSelfSignup() {
Cleaned up members & stripe settings (#11957) * Updated members default settings ref #10318 This pulls out the members_subscription_settings & stripe_connect_intgration settings into separate keys * Updated usage of members_from_address * Updated stripe_connect usage * Updated members config to use new settings * Updated members middleware to use isStripeConnected * Updated members service to reload correctly We reload the members-api instance when the related settings change, so this makes sure we're listening to the correct settings changes * Updated ghost_head helper to use new settings * Updated theme middleware to use new settings * Renamed members_allow_signup -> members_allow_free_signup * Fixed tests after settings refactor * Removed from direct key settings key * Fixed regression tests for settings api
2020-06-29 17:22:42 +03:00
return this._settingsCache.get('members_allow_free_signup');
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
getTokenConfig() {
const {href: membersApiUrl} = new URL(
this._urlUtils.getApiPath({version: 'v3', type: 'members'}),
this._urlUtils.urlFor('admin', true)
);
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
return {
issuer: membersApiUrl,
publicKey: this._settingsCache.get('members_public_key'),
privateKey: this._settingsCache.get('members_private_key')
};
}
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
Added custom action param for magic links closes https://github.com/TryGhost/Ghost/issues/12253 - Allows using custom action param for requests from Portal by using a new `requestSrc` option that is passed down when a request for magic link is made via Portal
2020-10-28 15:51:09 +03:00
getSigninURL(token, type, requestSrc) {
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
const siteUrl = this._urlUtils.getSiteUrl();
const signinURL = new URL(siteUrl);
signinURL.pathname = path.join(signinURL.pathname, '/members/');
Added custom action param for magic links closes https://github.com/TryGhost/Ghost/issues/12253 - Allows using custom action param for requests from Portal by using a new `requestSrc` option that is passed down when a request for magic link is made via Portal
2020-10-28 15:51:09 +03:00
const actionParam = requestSrc === 'portal' ? 'portal-action' : 'action';
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
signinURL.searchParams.set('token', token);
Added custom action param for magic links closes https://github.com/TryGhost/Ghost/issues/12253 - Allows using custom action param for requests from Portal by using a new `requestSrc` option that is passed down when a request for magic link is made via Portal
2020-10-28 15:51:09 +03:00
signinURL.searchParams.set(actionParam, type);
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
return signinURL.href;
}
Added config module to members service no-issue This is for a central place to retrive member related settings from
2019-11-07 13:13:20 +03:00
}
Refactored members config to use DI no-issue This makes testing it much easier
2020-05-28 18:55:23 +03:00
module.exports = MembersConfigProvider;
Reference in New Issue Copy Permalink