Commit Graph

1676 Commits

Author SHA1 Message Date
Daniel Lockyer
b018a07357 v3.13.3 2020-04-15 14:06:16 +01:00
Daniel Lockyer
c192dcc36d v3.13.2 2020-04-15 11:40:33 +01:00
Renovate Bot
9f27eeab02
Update dependency semver to v7.3.2 2020-04-14 17:47:18 +00:00
Renovate Bot
05c2334898
Update dependency semver to v7.3.1 2020-04-14 16:58:53 +00:00
Renovate Bot
7e910b9c09
Update dependency knex-migrator to v3.4.4 2020-04-14 15:21:50 +00:00
Renovate Bot
531c5a3e6f
Update metascraper to v5.11.9 2020-04-14 10:41:21 +00:00
Renovate Bot
af81cabf07 Update dependency semver to v7.3.0 2020-04-14 06:45:03 +01:00
Renovate Bot
9af9f8bed5
Update dependency knex to v0.20.14 2020-04-14 02:32:48 +00:00
Renovate Bot
6fb11a6ccc
Update dependency semver to v7.2.3 2020-04-13 19:29:58 +00:00
Renovate Bot
2216e0be21 Update dependency @tryghost/html-to-mobiledoc to v0.7.0 2020-04-13 20:28:57 +01:00
Renovate Bot
696879dca7 Update dependency jwks-rsa to v1.8.0 2020-04-13 20:28:24 +01:00
Renovate Bot
67d6f2dadb
Update dependency @tryghost/helpers to v1.1.27 2020-04-13 16:21:25 +00:00
Renovate Bot
7409a4247c
Update dependency @tryghost/url-utils to v0.6.18 2020-04-13 03:17:21 +00:00
Renovate Bot
d00b91aa15
Update dependency @tryghost/string to v0.1.9 2020-04-13 00:18:05 +00:00
Renovate Bot
a34c76d823
Update dependency @tryghost/social-urls to v0.1.9 2020-04-10 22:18:37 +00:00
Renovate Bot
88d36e230a
Update dependency @tryghost/html-to-mobiledoc to v0.6.7 2020-04-10 20:16:30 +00:00
Renovate Bot
6ce5a6c16e
Update dependency @tryghost/helpers to v1.1.26 2020-04-10 18:47:17 +00:00
Renovate Bot
415554c600
Update dependency semver to v7.2.2 2020-04-10 16:03:41 +00:00
Renovate Bot
92cf910b05 Update dependency gscan to v3.5.1 2020-04-10 13:36:58 +01:00
Renovate Bot
f3ed965987 Update dependency @tryghost/kg-default-cards to v1.1.0 2020-04-10 10:28:06 +01:00
Kevin Ansfield
f3627c5fc3 Update dependency @tryghost/kg-markdown-html-renderer to v2.0.0
no issue

- `version` integer parameter in the `render` method has been replaced with an `options` object parameter
2020-04-09 21:10:03 +01:00
Renovate Bot
8f65de87c7 Update dependency sanitize-html to v1.23.0 2020-04-09 21:00:19 +01:00
Renovate Bot
43434e1f7d
Update dependency @tryghost/kg-markdown-html-renderer to v1.0.3 2020-04-08 23:19:18 +00:00
Renovate Bot
a49980e767
Update dependency @tryghost/kg-default-cards to v1.0.2 2020-04-08 21:16:46 +00:00
Renovate Bot
30c79555f0
Update dependency @tryghost/kg-card-factory to v1.0.2 2020-04-08 19:50:29 +00:00
Kevin Ansfield
b37ac8ef1f Switched to extracted @tryghost/mobiledoc-dom-renderer package
no issue

- moved `mobiledoc.renderers.mobiledocHtmlRenderer` to `mobiledoc.mobiledocHtmlRenderer` so that it's easier for the getter to access the parent objects getters
- removed all tests and dependencies that now live in @tryghost/mobiledoc-dom-renderer
  - kept the `mobiledocHtmlRenderer` test because that's testing that we've correctly wired up our cards and atoms and the output is what we expect
2020-04-08 18:27:12 +01:00
Renovate Bot
26dfc02d48 Update dependency @tryghost/zip to v1 2020-04-08 16:09:08 +01:00
Kevin Ansfield
294187c41f Switched to extracted @tryghost/kg-default-atoms package
no issue

- removed code that now lives in the external Koenig monorepo
2020-04-08 14:49:44 +01:00
Renovate Bot
b2fa6b9878
Update dependency sinon to v9.0.2 2020-04-08 11:48:38 +00:00
Renovate Bot
ac746251e7
Update dependency bookshelf-relations to v1.3.2 2020-04-08 08:16:23 +00:00
Renovate Bot
3b637ce259
Update dependency knex-migrator to v3.4.3 2020-04-08 06:43:10 +00:00
Renovate Bot
1daaf075aa
Update dependency express-jwt to v5.3.3 2020-04-07 15:08:49 +00:00
Daniel Lockyer
5b942fc7e4 v3.13.1 2020-04-07 16:03:38 +01:00
Daniel Lockyer
fb955a2a0a Bumped @tryghost/adapter-manager to 0.1.2
no issue
2020-04-07 15:43:46 +01:00
Fabien O'Carroll
1fcf82cde3 Bumbed @tryghost/adapter-manager to 0.1.1
no-issue

This fixes an issue with storage adapters inheriting from an older
version of ghost-storage-base
2020-04-07 15:32:13 +02:00
Daniel Lockyer
bebfe140be v3.13.0 2020-04-07 11:12:53 +01:00
Renovate Bot
3ebae36c0a Update dependency knex to v0.20.13 2020-04-07 10:49:12 +01:00
Daniel Lockyer
29647870f1 Pinned dependencies
no issue
2020-04-07 09:36:05 +01:00
Renovate Bot
ec49a362b8 Update dependency semver to v7.2.1 2020-04-07 08:27:48 +01:00
Renovate Bot
f60b3f5607
Update dependency gscan to v3.4.1 2020-04-06 17:10:36 +00:00
Renovate Bot
4ee0b92eac
Update dependency express-hbs to v2.3.3 2020-04-06 15:42:24 +00:00
Fabien O'Carroll
a701ee7023
Added support for token session to /ghost (#11709)
no-issue

* Added default for getting origin of request

This function is used to attach the origin of the request to the
session, and later check that requests using the session are coming from
the same origin. This protects us against CSRF attacks as requests in
the browser MUST originate from the same origin on which the user
logged in.

Previously, when we could not determine the origin we would return
null, as a "safety" net.

This updates the function to use a secure and sensible default - which
is the origin of the Ghost-Admin application, and if that's not set -
the origin of the Ghost application.

This will make dealing with magic links simpler as you can not always
guaruntee the existence of these headers when visiting via a hyperlink

* Removed init fns and getters from session service

This simplifies the code here, making it easier to read and maintain

* Moved express-session initialisation to own file

This is complex enough that it deserves its own module

* Added createSessionFromToken to session service

* Wired up the createSessionFromToken middleware
2020-04-06 11:49:14 +02:00
Renovate Bot
12d6b05498
Update metascraper to v5.11.8 2020-04-06 00:17:00 +00:00
Fabien O'Carroll
fb942af1db Added adapter-manager service
no-issue

This services handles the registration and retrieval of adapters,
it normalises the config to look like:

{
    [adapterType]: {
        active: adapterName,
        [adapterName]: adapterConfig
    }
}
2020-04-05 21:13:47 +02:00
Daniel Lockyer
2d42af8d72 Removed unused release-utils dependency
no issue

- this is no longer needed because we moved the main release code
  out
2020-04-03 14:25:28 +01:00
Daniel Lockyer
92aebc21f4 Updated Ghost-SDK packages
no issue
2020-04-03 10:43:35 +01:00
Renovate Bot
deb1118714
Update dependency @tryghost/helpers to v1.1.25 2020-04-03 08:17:33 +00:00
Fabien O'Carroll
23154f0739
Refactored session service (#11701)
* Refactored SessionStore to use @tryghost/errors

no-issue

* Updated tests to test exposed API

no-issue

This will make refactoring easier, as we only have the "public" contract to maintain

* Refactored session functionality to SessionService

no-issue

This splits the session logic away from the HTTP responding logic,
which will allows us to decouple session creation/modification from the
API. Eventually this can be used to create sessions based on magiclink
style tokens.

* Instantiated and exported the new SessionService

no-issue

* Refactored session middleware to take session service

no-issue

This removes duplication of code and makes the middleware more explicit
that it's just a wrapper around the session service.

* Updated to use external @tryghost/session-service

no-issue
2020-04-02 16:27:31 +02:00
Daniel Lockyer
5a748ee5a9 Updated eslint-plugin-ghost dependency
no issue
2020-04-02 14:11:33 +01:00
Renovate Bot
f8f8a4b597
Update dependency express-hbs to v2.3.2 2020-04-01 18:04:24 +00:00