From 4c4d5aab918cd6d6b16b27c0c712cb7ed81f60f0 Mon Sep 17 00:00:00 2001
From: Fabien O'Carroll <fabien@allou.is>
Date: Fri, 11 Oct 2019 11:28:17 +0700
Subject: [PATCH] Removed the need for audience and issuer claim

no-issue

This is unecessary as this is a closes system, the tokens are issued and
intended for the same service, using the same secret
---
 ghost/magic-link/index.js | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/ghost/magic-link/index.js b/ghost/magic-link/index.js
index 459cb84c53..a71cb2a55c 100644
--- a/ghost/magic-link/index.js
+++ b/ghost/magic-link/index.js
@@ -89,8 +89,6 @@ function MagicLink(options) {
  */
 MagicLink.prototype.sendMagicLink = async function sendMagicLink(options) {
     const token = jwt.sign({}, this.secret, {
-        audience: '@tryghost/magic-link',
-        issuer: '@tryghost/magic-link',
         algorithm: 'HS256',
         subject: options.subject,
         expiresIn: '10m'
@@ -119,8 +117,6 @@ MagicLink.prototype.sendMagicLink = async function sendMagicLink(options) {
 MagicLink.prototype.getUserFromToken = function getUserFromToken(token) {
     /** @type {object} */
     const claims = jwt.verify(token, this.secret, {
-        audience: '@tryghost/magic-link',
-        issuer: '@tryghost/magic-link',
         algorithms: ['HS256'],
         maxAge: '10m'
     });