mirror of
https://github.com/TryGhost/Ghost.git
synced 2025-02-24 23:48:13 -05:00
506a0c3e9e
no issue
* Comment current state of toJSON for user model
- currently the user model does not return the email if the context is app/external/public OR if there is no context object at all
- i am not 100% sure why if there is no context we should not return the email address
- i think no context means internal access
- maybe change this condition cc @ErisDS
* Extend our access rules plugin
- we already have a instance method to determine which context is used
- this relies on passing options into `.forge` - but we almost never pass the context into the forge call
- added @TODO
- provide another static method to determine the context based on the options object passed from outside
* Use the new static function for existing code
* Add comment where the external context is used
* Remove certain fields from a public request (User model only)
* Tests: support `checkResponse` for a public request
- start with an optional option pattern
- i would love to get rid of checkResponse('user', null, null, null)
- still support old style for now
- a resoure can define the default response fields and public response fields
* Tests: adapt public api test
* Tests: adapt api user test
- use new option pattern for `checkResponse`
- eww null, null, null, null....
* Revert the usage of the access rules plugin
|
||
|---|---|---|
| .. | ||
| base | ||
| plugins | ||
| accesstoken.js | ||
| app-field.js | ||
| app-setting.js | ||
| app.js | ||
| client-trusted-domain.js | ||
| client.js | ||
| index.js | ||
| invite.js | ||
| permission.js | ||
| post.js | ||
| refreshtoken.js | ||
| role.js | ||
| settings.js | ||
| subscriber.js | ||
| tag.js | ||
| user.js | ||