Infrastructure/ghost
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-03-11 02:12:21 -05:00
Code Issues Activity

Updated member lib/auth service to use origin of site url (#10271)

Browse source 
no-issue
This commit is contained in:
Fabien O'Carroll 2018-12-11 19:45:03 +07:00 committed by GitHub
parent ba087a1b51
commit 5cb053412f
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 10 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
core/server/services/auth/members/index.js
View file

@ -1,8 +1,11 @@
const URL = require('url').URL;
const jwt = require('express-jwt');
const membersService = require('../../members');
const labs = require('../../labs');
const config = require('../../../config');
const siteOrigin = new URL(config.get('url')).origin;
let UNO_MEMBERINO;
module.exports = {
@ -16,8 +19,8 @@ module.exports = {
UNO_MEMBERINO = jwt({
credentialsRequired: false,
requestProperty: 'member',
audience: config.get('url'),
issuer: config.get('url'),
audience: siteOrigin,
issuer: siteOrigin,
algorithm: 'RS512',
secret: membersService.api.publicKey,
getToken(req) {

7
core/server/services/members/api.js
View file

@ -60,8 +60,11 @@ const publicKey = settingsCache.get('members_public_key');
const privateKey = settingsCache.get('members_private_key');
const sessionSecret = settingsCache.get('members_session_secret');
const passwordResetUrl = config.get('url');
const issuer = config.get('url');
const ssoOrigin = new URL(config.get('url')).origin;
const siteOrigin = new URL(config.get('url')).origin;
const issuer = siteOrigin;
const ssoOrigin = siteOrigin;
let mailer;
function sendEmail(member, {token}) {