Ghost

TryGhost/Ghost

Fork 0

mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-21 18:01:36 +03:00

Commit Graph

Author	SHA1	Message	Date
Hannah Wolfe	baa8118893	Refactor common pattern in service files - Use array destructuring - Use @tryghost/errors - Part of the big move towards decoupling, this gives visibility on what's being used where - Biting off manageable chunks / fixing bits of code I'm refactoring for other reasons	2020-04-30 20:48:42 +01:00
Paulo Barbosa	730e307d18	🐛Fixed generic 500 for bad key param in content API (#10977 ) refs #10948 - Throws 400 when using multiple key query-values instead of a 500 error	2019-08-12 12:56:09 +01:00
Fabien O'Carroll	3db102a776	Added API Key auth middleware to v2 content API (#10005 ) * Added API Key auth middleware to v2 content API refs #9865 - add `auth.authenticate.authenticateContentApiKey` middleware - accepts `?key=` query param, sets `req.api_key` if it's a known Content API key - add `requiresAuthorizedUserOrApiKey` authorization middleware - passes if either `req.user` or `req.api_key` exists - update `authenticatePublic` middleware stack for v2 content routes * Fixed functional content api tests no-issue This fixes the functional content api tests so they use the content api auth. * Fixed context check and removed skip * Updated cors middleware for content api * Removed client_id from frame.context no-issue The v2 api doesn't have a notion of clients as we do not use oauth for it * Fixed tests for posts input serializer	2018-10-15 16:23:34 +07:00

Author

SHA1

Message

Date

Hannah Wolfe

baa8118893

Refactor common pattern in service files

- Use array destructuring
- Use @tryghost/errors
- Part of the big move towards decoupling, this gives visibility on what's being used where
- Biting off manageable chunks / fixing bits of code I'm refactoring for other reasons

2020-04-30 20:48:42 +01:00

Paulo Barbosa

730e307d18

🐛Fixed generic 500 for bad key param in content API (#10977 )

refs #10948

- Throws 400 when using multiple key query-values instead of a 500 error

2019-08-12 12:56:09 +01:00

Fabien O'Carroll

3db102a776

Added API Key auth middleware to v2 content API (#10005 )

* Added API Key auth middleware to v2 content API

refs #9865

- add `auth.authenticate.authenticateContentApiKey` middleware
  - accepts `?key=` query param, sets `req.api_key` if it's a known Content API key
- add `requiresAuthorizedUserOrApiKey` authorization middleware
  - passes if either `req.user` or `req.api_key` exists
- update `authenticatePublic` middleware stack for v2 content routes

* Fixed functional content api tests

no-issue

This fixes the functional content api tests so they use the content api
auth.

* Fixed context check and removed skip

* Updated cors middleware for content api

* Removed client_id from frame.context

no-issue

The v2 api doesn't have a notion of clients as we do not use oauth for it

* Fixed tests for posts input serializer

2018-10-15 16:23:34 +07:00

3 Commits