Ghost

mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-20 17:32:15 +03:00

History

Fabien 'egg' O'Carroll 244704156c Updated all Origin header checks to handle 'null' (#12246 ) closes #12244 As per RFC 6454 the Origin header MUST be set to the string 'null' when in a "privacy-sensitive" context. We were not handling this string and this was causing errors. This commit updates all checks of the 'Origin' header to treat the value 'null' as if the header was not present. ref: https://tools.ietf.org/html/rfc6454#section-7.3		2020-10-01 09:37:22 +01:00
..
admin	Replaced constants file with @tryghost/constants	2020-08-11 12:51:16 +01:00
api	Updated all Origin header checks to handle 'null' (#12246 )	2020-10-01 09:37:22 +01:00
members	Moved core/server/lib/url-utils to core/shared/url-utils (#11856 )	2020-05-28 11:57:02 +01:00
parent	Fixed incorrect require for lodash package	2020-06-01 08:42:58 +01:00
shared	🐛 Fixed custom redirects for subdirectory setups	2020-06-16 10:24:13 +02:00
site	Updated all Origin header checks to handle 'null' (#12246 )	2020-10-01 09:37:22 +01:00
index.js	Refactored how we require shared middlewares from web/ (#9893 )	2018-09-21 16:17:11 +05:30
well-known.js	Added Router etc to shared/express + use everywhere	2020-05-01 19:32:57 +01:00