Ghost

mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-22 18:31:57 +03:00

History

Fabien O'Carroll ae71f2deca Added spam prevention for v2 sessions (#10030 ) no-issue - Added spam prevention to POST /session - This blocks repeated requests the the /session endpoint preventing brute force password attacks - Updated session controller to reset brute middleware - This updates the session controller to reset the brute force protection on a successful login. This is required so that a user is not locked out forever :o!!	2018-10-18 09:58:29 +01:00
..
utils	Optimized usage of urls in API v2	2018-10-16 13:02:04 +02:00
session_spec.js	Added spam prevention for v2 sessions (#10030 )	2018-10-18 09:58:29 +01:00

Fabien O'Carroll ae71f2deca Added spam prevention for v2 sessions (#10030 )

no-issue

- Added spam prevention to POST /session
  - This blocks repeated requests the the /session endpoint preventing brute
force password attacks
- Updated session controller to reset brute middleware
  - This updates the session controller to reset the brute force protection
on a successful login. This is required so that a user is not locked out
forever :o!!

2018-10-18 09:58:29 +01:00

utils

Optimized usage of urls in API v2

2018-10-16 13:02:04 +02:00

session_spec.js

Added spam prevention for v2 sessions (#10030 )

2018-10-18 09:58:29 +01:00