OpenSourceArk/Ghost
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
05330482e6
Ghost/core/server/models
History
Fabien O'Carroll 05330482e6
Stopped api key from assigning the 'Owner' role (#9971) 
* Stopped api key from assigning the 'Owner' role

refs #9865

We do not want api keys to be able to assign the Owner role to any other
key or user.

* Cleaned up Role model permissible method

no-issue
2018-10-12 15:38:57 +07:00
..
base Added mobiledoc revisions functionality 2018-10-09 15:31:09 +02:00
plugins
relations Updated Post and Author model permissible method (#9966) 2018-10-09 18:03:13 +07:00
accesstoken.js
api-key.js Added refreshSecret method to ApiKey model (#9947) 2018-10-05 15:51:13 +07:00
app-field.js
app-setting.js
app.js
client-trusted-domain.js
client.js
index.js Added mobiledoc revisions functionality 2018-10-09 15:31:09 +02:00
integration.js Set up schema and models for API Key authentication (#9904) 2018-10-02 17:46:38 +01:00
invite.js Moved custom invite permission to permissible fn 2018-10-05 15:38:14 +02:00
mobiledoc-revision.js Added mobiledoc revisions functionality 2018-10-09 15:31:09 +02:00
permission.js
post.js 🐛 Fixed migration from v1 to 2.2.1 (#9984) 2018-10-11 09:04:47 +02:00
refreshtoken.js
role.js Stopped api key from assigning the 'Owner' role (#9971) 2018-10-12 15:38:57 +07:00
session.js
settings.js Added session_secret setting to schema (#9953) 2018-10-05 12:25:51 +01:00
subscriber.js
tag.js Refactor URL generation from models (#9917) 2018-10-03 15:44:30 +02:00
user.js Added protection for ownership transfer 2018-10-06 21:50:31 +02:00
webhook.js