ghost

mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-24 23:48:13 -05:00

History

Fabien O'Carroll ae71f2deca Added spam prevention for v2 sessions (#10030 ) no-issue - Added spam prevention to POST /session - This blocks repeated requests the the /session endpoint preventing brute force password attacks - Updated session controller to reset brute middleware - This updates the session controller to reset the brute force protection on a successful login. This is required so that a user is not locked out forever :o!!	2018-10-18 09:58:29 +01:00
..
admin	Added spam prevention for v2 sessions (#10030 )	2018-10-18 09:58:29 +01:00
content	Removed OPTIONS cors middleware from content api (#10013 )	2018-10-15 18:47:31 +07:00

Fabien O'Carroll ae71f2deca Added spam prevention for v2 sessions (#10030 )

no-issue

- Added spam prevention to POST /session
  - This blocks repeated requests the the /session endpoint preventing brute
force password attacks
- Updated session controller to reset brute middleware
  - This updates the session controller to reset the brute force protection
on a successful login. This is required so that a user is not locked out
forever :o!!

2018-10-18 09:58:29 +01:00

admin

Added spam prevention for v2 sessions (#10030 )

2018-10-18 09:58:29 +01:00

content

Removed OPTIONS cors middleware from content api (#10013 )

2018-10-15 18:47:31 +07:00