OpenSourceArk/Ghost
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7dd2b04343
Ghost/core/server/lib
History
Fabien O'Carroll 7dd2b04343 Removed ssoOriginCheck from signout endpoint (#10277) 
no-issue

the ssoOriginCheck exists to ensure that we only allow signin/signup to
be called from the specified auth page, this is a very minor security
feature in that it forces signins to go via the page you've designated.
signout however does not need this protection as the call to signout
completely bypasses any UI (this is the same for the call to /token)
2018-12-14 12:26:31 +05:30
..
common Switched to eslint-plugin-ghost (#9835) 2018-09-17 20:49:30 +02:00
fs 🐛 Fixed invalid imported subscribers count (#10229) 2018-12-03 20:45:55 +01:00
image Cleaned up image manipulator (#10282) 2018-12-14 11:54:52 +07:00
members Removed ssoOriginCheck from signout endpoint (#10277) 2018-12-14 12:26:31 +05:30
mobiledoc Updated gallery renderer to cope with invalid images 2018-08-31 11:13:24 +01:00
promise Extended sequence utility 2018-10-03 00:17:45 +02:00
security Added Node v10 Support (#10058) 2018-10-30 15:45:51 +07:00
social 🔥 Drop Node v4 Support 2018-05-01 14:06:18 +02:00
constants.js Moved utils constants to lib/constants 2017-12-14 14:13:40 +01:00
ghost-version.js Switched to eslint-plugin-ghost (#9835) 2018-09-17 20:49:30 +02:00
request.js Removed bluebird promise wrap in request lib (#9343) 2018-01-02 12:18:56 +01:00