ghost

mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-24 23:48:13 -05:00

History

Fabien 'egg' O'Carroll 244704156c Updated all Origin header checks to handle 'null' (#12246 ) closes #12244 As per RFC 6454 the Origin header MUST be set to the string 'null' when in a "privacy-sensitive" context. We were not handling this string and this was causing errors. This commit updates all checks of the 'Origin' header to treat the value 'null' as if the header was not present. ref: https://tools.ietf.org/html/rfc6454#section-7.3		2020-10-01 09:37:22 +01:00
..
adapters	Replaced constants file with @tryghost/constants	2020-08-11 12:51:16 +01:00
api	Ensured Admin API members resource only returns known fields (#12240 )	2020-09-30 10:22:22 +01:00
data	Added migration to store from/reply-to values in email table (#12204 )	2020-09-24 08:20:10 +01:00
lib	Extracted promise libs and history into @tryghost/promise	2020-08-11 18:44:21 +01:00
models	Store email batch and recipient records when sending newsletters (#12195 )	2020-09-29 17:17:54 +01:00
public	✨ Added support for data-members-name in themes (#12191 )	2020-09-23 13:59:26 +01:00
services	Updated all Origin header checks to handle 'null' (#12246 )	2020-10-01 09:37:22 +01:00
translations	Updated Webhook API error message	2020-09-28 13:24:47 +02:00
views
web	Updated all Origin header checks to handle 'null' (#12246 )	2020-10-01 09:37:22 +01:00
analytics-events.js
ghost-server.js	Improved testmode logging of shutdown status	2020-08-18 15:48:42 +01:00
index.js	Added routes.yaml content checksum storage to the db	2020-09-10 10:54:57 +12:00
overrides.js
update-check.js