Fixed "Authorization failed" errors during setup and signin

no issue

- the `custom-views` and `navigation` services would trigger their observers immediately when `this.session.user` changed but that would occur before authentication had fully finished which was resulting in the `this.session.user` access triggering a request with no cookie/an old cookie set and causing a 403 error that interrupted the setup and authentication flows

ghost/admin/app/services/custom-views.js

@@ -115,8 +115,14 @@ export default class CustomViewsService extends Service {
     }
 
     // eslint-disable-next-line ghost/ember/no-observers
-    @observes('session.user.accessibility')
+    @observes('session.isAuthenticated', 'session.user.accessibility')
     async updateViewList() {
+        // avoid fetching user before authenticated otherwise the 403 can fire
+        // during authentication and cause errors during setup/signin
+        if (!this.session.isAuthenticated) {
+            return;
+        }
+
         let user = await this.session.user;
         let userSettings = user.get('accessibility');
 

ghost/admin/app/services/navigation.js

@@ -22,8 +22,14 @@ export default class NavigationService extends Service {
     }
 
     // eslint-disable-next-line ghost/ember/no-observers
-    @observes('session.user.accessibility')
+    @observes('session.isAuthenticated', 'session.user.accessibility')
     async updateSettings() {
+        // avoid fetching user before authenticated otherwise the 403 can fire
+        // during authentication and cause errors during setup/signin
+        if (!this.session.isAuthenticated) {
+            return;
+        }
+
         let user = await this.session.user;
         let userSettings = JSON.parse(user.get('accessibility')) || {};
         this.settings = userSettings.navigation || Object.assign({}, DEFAULT_SETTINGS);