mirror of
https://github.com/TryGhost/Ghost.git
synced 2024-12-28 13:22:39 +03:00
0029c444ad
refs https://github.com/TryGhost/Product/issues/3651 - This is a security fix that addresses an issue causing malicious users to abuse the test / preview email API endpoint. - We have multiple procedures in place now to limit such users. - First, we now only allow one email address to be passed into the `sendTestEmail` method. This method only have one purpose, which is to compliment the test email functionality within the Editor in Admin and therefore have no reason to send to more than one email address at a time. - We then add an additional rate limiter to prevent a user from making multiple requests, eg via a script. - The new imposed limit is 10 test emails per hour.
95 lines
3.0 KiB
JavaScript
95 lines
3.0 KiB
JavaScript
const errors = require('@tryghost/errors');
|
|
const tpl = require('@tryghost/tpl');
|
|
|
|
const messages = {
|
|
postNotFound: 'Post not found.',
|
|
noEmailsProvided: 'No emails provided.',
|
|
emailNotFound: 'Email not found.',
|
|
tooManyEmailsProvided: 'Too many emails provided. Maximum of 1 test email can be sent at once.'
|
|
};
|
|
|
|
class EmailController {
|
|
service;
|
|
models;
|
|
|
|
/**
|
|
*
|
|
* @param {EmailService} service
|
|
* @param {{models: {Post: any, Newsletter: any, Email: any}}} dependencies
|
|
*/
|
|
constructor(service, {models}) {
|
|
this.service = service;
|
|
this.models = models;
|
|
}
|
|
|
|
async _getFrameData(frame) {
|
|
// Bit absurd situation in email-previews endpoints that one endpoint is using options and other one is using data.
|
|
// So we need to handle both cases.
|
|
let post;
|
|
if (frame.options.id) {
|
|
post = await this.models.Post.findOne({...frame.options, status: 'all'}, {withRelated: ['posts_meta', 'authors']});
|
|
} else {
|
|
post = await this.models.Post.findOne({...frame.data, status: 'all'}, {...frame.options, withRelated: ['posts_meta', 'authors']});
|
|
}
|
|
|
|
if (!post) {
|
|
throw new errors.NotFoundError({
|
|
message: tpl(messages.postNotFound)
|
|
});
|
|
}
|
|
|
|
let newsletter;
|
|
const slug = frame?.options?.newsletter ?? frame?.data?.newsletter ?? null;
|
|
if (slug) {
|
|
newsletter = await this.models.Newsletter.findOne({slug}, {require: true});
|
|
} else {
|
|
newsletter = (await post.getLazyRelation('newsletter')) ?? (await this.models.Newsletter.getDefaultNewsletter());
|
|
}
|
|
return {
|
|
post,
|
|
newsletter,
|
|
segment: frame.options.memberSegment ?? frame.data.memberSegment ?? null
|
|
};
|
|
}
|
|
|
|
async previewEmail(frame) {
|
|
const {post, newsletter, segment} = await this._getFrameData(frame);
|
|
return await this.service.previewEmail(post, newsletter, segment);
|
|
}
|
|
|
|
async sendTestEmail(frame) {
|
|
const {post, newsletter, segment} = await this._getFrameData(frame);
|
|
|
|
const emails = frame.data.emails ?? [];
|
|
|
|
if (emails.length === 0) {
|
|
throw new errors.ValidationError({
|
|
message: tpl(messages.noEmailsProvided)
|
|
});
|
|
}
|
|
|
|
// test emails are limited to 1
|
|
if (emails.length > 1) {
|
|
throw new errors.ValidationError({
|
|
message: tpl(messages.tooManyEmailsProvided)
|
|
});
|
|
}
|
|
|
|
await this.service.sendTestEmail(post, newsletter, segment, emails);
|
|
}
|
|
|
|
async retryFailedEmail(frame) {
|
|
const email = await this.models.Email.findOne(frame.data, {require: false});
|
|
|
|
if (!email) {
|
|
throw new errors.NotFoundError({
|
|
message: tpl(messages.emailNotFound)
|
|
});
|
|
}
|
|
|
|
return await this.service.retryEmail(email);
|
|
}
|
|
}
|
|
|
|
module.exports = EmailController;
|