Infrastructure/ghost
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-03-25 02:31:59 -05:00
Code Issues Activity
ghost/core/server/services
History
Simon Backx f732b0181d
Fixed last_seen updated for suspended users (#14715) 
refs https://github.com/TryGhost/Team/issues/1461

- A suspended user was able to make it through the Express middlewares to the `updateUserLastSeen` middleware, until it was halted when checking the user permissions in the API pipeline. This was only the case for session logins, not for API keys.
- For API keys, the user status is checked:
6dc3f1bf56/core/server/services/auth/api-key/admin.js (L178-L181)
- In the session middleware, the `findUserById` in `getUserForSession` didn't filter on the active status of users:
be4146e324/core/server/services/auth/session/middleware.js (L22-L27)
- This has been fixed now by updating the sessionService's `findUserById` method.
2022-05-10 13:34:12 +02:00
..
adapter-manager Added multiple adapters capability to adapter manager 2021-10-21 20:22:45 +13:00
api-version-compatibility Added Integration Name in version mismatch emails 2022-05-10 17:55:18 +08:00
auth Fixed last_seen updated for suspended users (#14715) 2022-05-10 13:34:12 +02:00
bulk-email Added newsletter info to email unsubscribe url (#14693) 2022-05-05 11:00:24 +05:30
email-analytics Prevent an event-processing error if there is no timezone setting 2022-03-02 13:58:26 +01:00
integrations Replace GhostError with InternalServerError 2021-12-14 12:17:48 +00:00
invitations Replaced i18n with tpl in accept.js (#13471) 2021-10-08 15:21:22 +01:00
invites Revert "Revert "Extract logging from DI patterns, only use @tryghost/logging package"" (#13884) 2021-12-14 11:22:39 +00:00
jobs Revert "Revert "Extract logging from DI patterns, only use @tryghost/logging package"" (#13884) 2021-12-14 11:22:39 +00:00
mail Extracted email-content-generator into a package 2022-05-04 17:28:09 +08:00
mega Fixed wrong newsletter used when sending scheduled post (#14734) 2022-05-09 17:30:50 +02:00
members Update dependency @tryghost/url-utils to v3 (#14705) 2022-05-05 16:10:18 +01:00
newsletters Fixed newsletter includes when adding or editing (#14696) 2022-05-05 11:20:15 +02:00
notifications Replace error handler middleware with @tryghost/mw-error-handler (#13879) 2021-12-14 15:18:46 +00:00
offers Fixed same redirectManager used in offer service between tests (#14340) 2022-03-24 10:18:52 +01:00
permissions Switch to @tryghost/errors from ignition errors package (#13807) 2021-12-01 10:22:01 +00:00
posts Fixed wrong newsletter used when sending scheduled post (#14734) 2022-05-09 17:30:50 +02:00
public-config 🐛 Fixed config API not returning boolean 2022-01-20 18:25:41 +02:00
redirects Switch to @tryghost/errors from ignition errors package (#13807) 2021-12-01 10:22:01 +00:00
route-settings Removed sync method from route settings loader 2022-04-28 15:37:09 +01:00
settings Added settingsCache handling to e2e-framework 2022-02-11 16:24:24 +00:00
stats Replaced stats service with @tryghost/stats-service (#14527) 2022-04-21 14:57:07 +01:00
stripe Cleaned up output errors during tests 2022-04-05 18:17:47 +08:00
themes Switched gscan to validate against v5 set of rules 2022-05-02 20:56:25 +08:00
url Removed api:versions from config 2022-05-06 08:22:05 +01:00
webhooks Fixed undefined error when serializing webhooks 2022-05-03 11:40:59 +01:00
custom-theme-settings.js Added API tests for custom theme settings (#13519) 2021-10-08 16:18:49 +01:00
limits.js Simlified limit service initialization 2021-11-03 00:33:28 +13:00
nft-oembed.js Added fallback for NFT title when name is missing 2021-12-03 21:16:22 +02:00
oembed.js Added missing message string 2022-03-21 09:07:54 +00:00
slack.js Replaced schema.isPost in slack service /w custom fn 2022-04-05 14:24:42 +01:00
twitter-embed.js Removed richTwitterNewsletters GA labs flag 2022-01-04 13:07:39 +00:00
users.js Renamed destroyByAuthor to reassignByAuthor 2022-04-28 15:37:13 +01:00
xmlrpc.js Switch to @tryghost/errors from ignition errors package (#13807) 2021-12-01 10:22:01 +00:00