Fabien 'egg' O'Carroll e4cbb3d24d Reset magic link rate limiting upon successful login (#15345) ... refs https://github.com/TryGhost/Team/issues/1771 We don't have access to `req.brute.reset` due to the way the flow works, we have one endpoint which sends an email with a magic link, and another route which handles the login. We don't want to apply brute force protection to both because our rate limiting is designed for API requests not web page visits (which is how login is handled). Because of this we require access to the underlying ExpressBrute instance exposed by the spam-protection module, so that we can perform the reset.		2022-09-01 08:54:14 -04:00
..
content	Added free trial indicator to tier card in Admin	2022-08-16 14:15:31 +02:00
core	Reset magic link rate limiting upon successful login (#15345)	2022-09-01 08:54:14 -04:00
test	Reset magic link rate limiting upon successful login (#15345)	2022-09-01 08:54:14 -04:00
.c8rc.json	Extracted shared API framework to separate package	2022-08-11 17:44:59 +02:00
.eslintignore	Added member attribution script (#15242)	2022-08-16 15:44:51 +02:00
.eslintrc.js	Updated Eslint ECMAScript compatibility to 2022	2022-08-09 15:51:40 +02:00
.gitignore	Added copied release assets into .gitignore	2022-08-10 14:19:16 +02:00
.npmignore	Cleaned up npmignore entries for Casper	2022-09-01 08:22:01 +01:00
config.development.json	Converted Ghost repo into a monorepo	2022-07-20 16:41:05 +02:00
ghost.js	Converted Ghost repo into a monorepo	2022-07-20 16:41:05 +02:00
Gruntfile.js	Cleaned up core package Gruntfile	2022-08-08 13:03:49 +02:00
index.js	Converted Ghost repo into a monorepo	2022-07-20 16:41:05 +02:00
jsconfig.json	Deleted reference to core/admin	2022-08-03 16:28:41 +02:00
loggingrc.js	Switched to original version for metrics	2022-08-04 19:22:57 +02:00
MigratorConfig.js	Converted Ghost repo into a monorepo	2022-07-20 16:41:05 +02:00
package.json	Update sentry-javascript monorepo to v7.12.0	2022-09-01 08:48:54 +01:00