Ghost

TryGhost/Ghost

Fork 0

mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-12 16:14:25 +03:00

Commit Graph

Author	SHA1	Message	Date
Fabien O'Carroll	ae71f2deca	Added spam prevention for v2 sessions (#10030 ) no-issue - Added spam prevention to POST /session - This blocks repeated requests the the /session endpoint preventing brute force password attacks - Updated session controller to reset brute middleware - This updates the session controller to reset the brute force protection on a successful login. This is required so that a user is not locked out forever :o!!	2018-10-18 09:58:29 +01:00
Fabien O'Carroll	b185892b7b	Created session controller (#9911 ) refs #9865 Note that this controller is the singular, that's because we plan to make a session resource controller to be used with /sessions, wheras this is on /session	2018-10-03 20:45:42 +07:00

Author

SHA1

Message

Date

Fabien O'Carroll

ae71f2deca

Added spam prevention for v2 sessions (#10030 )

no-issue

- Added spam prevention to POST /session
  - This blocks repeated requests the the /session endpoint preventing brute
force password attacks
- Updated session controller to reset brute middleware
  - This updates the session controller to reset the brute force protection
on a successful login. This is required so that a user is not locked out
forever :o!!

2018-10-18 09:58:29 +01:00

Fabien O'Carroll

b185892b7b

Created session controller (#9911 )

refs #9865

Note that this controller is the singular, that's because we plan to
make a session resource controller to be used with /sessions, wheras
this is on /session

2018-10-03 20:45:42 +07:00

2 Commits