tqt
/
Ghost
mirror of https://github.com/TryGhost/Ghost.git
2
1
Fork 0
Code Issues 1 Releases Wiki Activity
11,005 Commits 101 Branches 822 Tags 285 MiB
Commit Graph

801 Commits

Author SHA1 Message Date
Rish 87fa1db0c0 Bumped @tryghost/members-api to 0.18.3 
no issue

- This bump adds ability to pre-fill customer email in stripe checkout session
 2020-04-30 17:56:41 +05:30
Kevin Ansfield 81bf1667fa Fixed video embed card fallback display in Outlook 
refs https://github.com/TryGhost/Ghost/issues/11756

- updates `@tryghost/kg-default-cards` which includes a VML version of video embed card fallbacks
- fixes play button styling for Yahoo Mail
- adds a minimum height to video embeds so they appear more reasonable when images are not loaded
 2020-04-30 12:08:06 +01:00
Renovate Bot f8cecee05d
Update dependency @tryghost/members-ssr to v0.7.7 2020-04-30 10:45:08 +00:00
Renovate Bot cc7bd3992b Update dependency uuid to v8 2020-04-30 09:58:07 +01:00
Renovate Bot e6dbf4ce47
Update dependency @tryghost/kg-markdown-html-renderer to v1.0.4 2020-04-29 19:38:11 +00:00
Renovate Bot 1c0db1dc87
Update dependency @tryghost/kg-card-factory to v1.0.3 2020-04-29 16:42:41 +00:00
Kevin Ansfield d255d98bbb Improved display of video embed cards in member emails 
refs core/server/api/canary/oembed.js

- updated `kg-default-cards` to a version that will render a thumbnail and play button overlay for video embed cards when rendering to an email target
- added styling for video embed play button overlays to members email template
 2020-04-29 16:44:20 +01:00
Renovate Bot a72c4e7905
Update dependency knex-migrator to v3.4.6 2020-04-28 15:55:06 +00:00
Renovate Bot ce48d36a49 Update dependency knex to v0.21.1 2020-04-28 08:48:46 +01:00
Renovate Bot 5161f497e2
Update metascraper to v5.11.10 2020-04-27 22:00:17 +00:00
Renovate Bot f60200fede Update dependency sqlite3 to v4.2.0 2020-04-27 22:59:30 +01:00
Renovate Bot 08cfb5719a
Update dependency mocha to v7.1.2 2020-04-27 00:14:48 +00:00
Renovate Bot 97830fda41 Update dependency eslint-plugin-ghost to v1.3.0 2020-04-23 09:32:19 +01:00
Renovate Bot ca0f4635c9
Update dependency gscan to v3.5.3 2020-04-22 17:13:21 +00:00
Renovate Bot 5ed0f13a44
Update dependency @sentry/node to v5.15.5 2020-04-22 08:25:32 +00:00
Renovate Bot c54e50bd11
Update dependency @tryghost/members-ssr to v0.7.6 2020-04-21 12:32:31 +00:00
Renovate Bot 6fd4c65421
Update dependency @tryghost/members-api to v0.18.2 2020-04-21 10:05:23 +00:00
Renovate Bot 0e2147ba74 Update dependency knex to v0.21.0 2020-04-21 08:53:37 +01:00
Renovate Bot f002e62fc4
Update dependency knex-migrator to v3.4.5 2020-04-21 06:40:00 +00:00
Renovate Bot c15945ad23
Update dependency mock-knex to v0.4.8 2020-04-20 21:47:34 +00:00
Renovate Bot e2e18b3448
Update dependency gscan to v3.5.2 2020-04-20 18:18:04 +00:00
Renovate Bot 2ea504255c
Update dependency ajv to v6.12.2 2020-04-20 00:15:31 +00:00
Kevin Ansfield 5c12bf3858
Update dependency @tryghost/kg-mobiledoc-html-renderer to v2.0.1 (#11750) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-04-17 14:13:15 +01:00
Renovate Bot 7104183c6f
Update dependency @tryghost/kg-default-cards to v1.1.1 2020-04-17 11:23:24 +00:00
Daniel Lockyer 88c11ffbb2 Updated eslint-plugin-ghost 
no issue
 2020-04-17 11:29:33 +01:00
Renovate Bot cdaa1b5dbb
Update dependency express-session to v1.17.1 2020-04-17 05:14:11 +00:00
Renovate Bot ccff9f095b
Update dependency @tryghost/members-ssr to v0.7.5 2020-04-17 03:25:45 +00:00
Renovate Bot 0dab0449c2
Update dependency @tryghost/members-api to v0.18.1 2020-04-17 02:11:58 +00:00
Renovate Bot 0d266bb3bb
Update dependency @tryghost/zip to v1.0.1 2020-04-17 00:18:23 +00:00
Renovate Bot 663400166a
Update dependency @tryghost/vhost-middleware to v1.0.3 2020-04-16 22:15:05 +00:00
Renovate Bot 4ee2be4b19
Update dependency @tryghost/session-service to v0.1.1 2020-04-16 20:15:01 +00:00
Renovate Bot b69684e05e
Update dependency @tryghost/image-transform to v0.2.1 2020-04-16 18:17:13 +00:00
Renovate Bot d68cd44c60
Update dependency @tryghost/mw-session-from-token to v0.1.1 2020-04-16 16:50:40 +00:00
Renovate Bot 9fce5d8ac0
Update dependency @tryghost/errors to v0.1.2 2020-04-16 15:26:26 +00:00
Renovate Bot 0d97a98eba
Update dependency @tryghost/adapter-manager to v0.1.3 2020-04-16 13:44:40 +00:00
Renovate Bot fa1fcd8870
Update dependency knex to v0.20.15 2020-04-15 22:54:22 +00:00
Renovate Bot 9ae5ce0f84
Update dependency @lodder/grunt-postcss to v2.0.2 2020-04-15 14:15:23 +00:00
Renovate Bot 9f27eeab02
Update dependency semver to v7.3.2 2020-04-14 17:47:18 +00:00
Renovate Bot 05c2334898
Update dependency semver to v7.3.1 2020-04-14 16:58:53 +00:00
Renovate Bot 7e910b9c09
Update dependency knex-migrator to v3.4.4 2020-04-14 15:21:50 +00:00
Renovate Bot 531c5a3e6f
Update metascraper to v5.11.9 2020-04-14 10:41:21 +00:00
Renovate Bot af81cabf07 Update dependency semver to v7.3.0 2020-04-14 06:45:03 +01:00
Renovate Bot 9af9f8bed5
Update dependency knex to v0.20.14 2020-04-14 02:32:48 +00:00
Renovate Bot 6fb11a6ccc
Update dependency semver to v7.2.3 2020-04-13 19:29:58 +00:00
Renovate Bot 2216e0be21 Update dependency @tryghost/html-to-mobiledoc to v0.7.0 2020-04-13 20:28:57 +01:00
Renovate Bot 696879dca7 Update dependency jwks-rsa to v1.8.0 2020-04-13 20:28:24 +01:00
Renovate Bot 67d6f2dadb
Update dependency @tryghost/helpers to v1.1.27 2020-04-13 16:21:25 +00:00
Renovate Bot 7409a4247c
Update dependency @tryghost/url-utils to v0.6.18 2020-04-13 03:17:21 +00:00
Renovate Bot d00b91aa15
Update dependency @tryghost/string to v0.1.9 2020-04-13 00:18:05 +00:00
Renovate Bot a34c76d823
Update dependency @tryghost/social-urls to v0.1.9 2020-04-10 22:18:37 +00:00
Renovate Bot 88d36e230a
Update dependency @tryghost/html-to-mobiledoc to v0.6.7 2020-04-10 20:16:30 +00:00
Renovate Bot 6ce5a6c16e
Update dependency @tryghost/helpers to v1.1.26 2020-04-10 18:47:17 +00:00
Renovate Bot 415554c600
Update dependency semver to v7.2.2 2020-04-10 16:03:41 +00:00
Renovate Bot 92cf910b05 Update dependency gscan to v3.5.1 2020-04-10 13:36:58 +01:00
Renovate Bot f3ed965987 Update dependency @tryghost/kg-default-cards to v1.1.0 2020-04-10 10:28:06 +01:00
Kevin Ansfield f3627c5fc3 Update dependency @tryghost/kg-markdown-html-renderer to v2.0.0 
no issue

- `version` integer parameter in the `render` method has been replaced with an `options` object parameter
 2020-04-09 21:10:03 +01:00
Renovate Bot 8f65de87c7 Update dependency sanitize-html to v1.23.0 2020-04-09 21:00:19 +01:00
Renovate Bot 43434e1f7d
Update dependency @tryghost/kg-markdown-html-renderer to v1.0.3 2020-04-08 23:19:18 +00:00
Renovate Bot a49980e767
Update dependency @tryghost/kg-default-cards to v1.0.2 2020-04-08 21:16:46 +00:00
Renovate Bot 30c79555f0
Update dependency @tryghost/kg-card-factory to v1.0.2 2020-04-08 19:50:29 +00:00
Kevin Ansfield b37ac8ef1f Switched to extracted `@tryghost/mobiledoc-dom-renderer` package 
no issue

- moved `mobiledoc.renderers.mobiledocHtmlRenderer` to `mobiledoc.mobiledocHtmlRenderer` so that it's easier for the getter to access the parent objects getters
- removed all tests and dependencies that now live in @tryghost/mobiledoc-dom-renderer
  - kept the `mobiledocHtmlRenderer` test because that's testing that we've correctly wired up our cards and atoms and the output is what we expect
 2020-04-08 18:27:12 +01:00
Renovate Bot 26dfc02d48 Update dependency @tryghost/zip to v1 2020-04-08 16:09:08 +01:00
Kevin Ansfield 294187c41f Switched to extracted `@tryghost/kg-default-atoms` package 
no issue

- removed code that now lives in the external Koenig monorepo
 2020-04-08 14:49:44 +01:00
Renovate Bot b2fa6b9878
Update dependency sinon to v9.0.2 2020-04-08 11:48:38 +00:00
Renovate Bot ac746251e7
Update dependency bookshelf-relations to v1.3.2 2020-04-08 08:16:23 +00:00
Renovate Bot 3b637ce259
Update dependency knex-migrator to v3.4.3 2020-04-08 06:43:10 +00:00
Renovate Bot 1daaf075aa
Update dependency express-jwt to v5.3.3 2020-04-07 15:08:49 +00:00
Daniel Lockyer fb955a2a0a Bumped @tryghost/adapter-manager to 0.1.2 
no issue
 2020-04-07 15:43:46 +01:00
Fabien O'Carroll 1fcf82cde3 Bumbed @tryghost/adapter-manager to 0.1.1 
no-issue

This fixes an issue with storage adapters inheriting from an older
version of ghost-storage-base
 2020-04-07 15:32:13 +02:00
Renovate Bot 3ebae36c0a Update dependency knex to v0.20.13 2020-04-07 10:49:12 +01:00
Daniel Lockyer 29647870f1 Pinned dependencies 
no issue
 2020-04-07 09:36:05 +01:00
Renovate Bot ec49a362b8 Update dependency semver to v7.2.1 2020-04-07 08:27:48 +01:00
Renovate Bot f60b3f5607
Update dependency gscan to v3.4.1 2020-04-06 17:10:36 +00:00
Renovate Bot 4ee0b92eac
Update dependency express-hbs to v2.3.3 2020-04-06 15:42:24 +00:00
Fabien O'Carroll a701ee7023
Added support for token session to /ghost (#11709) 
no-issue

* Added default for getting origin of request

This function is used to attach the origin of the request to the
session, and later check that requests using the session are coming from
the same origin. This protects us against CSRF attacks as requests in
the browser MUST originate from the same origin on which the user
logged in.

Previously, when we could not determine the origin we would return
null, as a "safety" net.

This updates the function to use a secure and sensible default - which
is the origin of the Ghost-Admin application, and if that's not set -
the origin of the Ghost application.

This will make dealing with magic links simpler as you can not always
guaruntee the existence of these headers when visiting via a hyperlink

* Removed init fns and getters from session service

This simplifies the code here, making it easier to read and maintain

* Moved express-session initialisation to own file

This is complex enough that it deserves its own module

* Added createSessionFromToken to session service

* Wired up the createSessionFromToken middleware
 2020-04-06 11:49:14 +02:00
Renovate Bot 12d6b05498
Update metascraper to v5.11.8 2020-04-06 00:17:00 +00:00
Fabien O'Carroll fb942af1db Added adapter-manager service 
no-issue

This services handles the registration and retrieval of adapters,
it normalises the config to look like:

{
    [adapterType]: {
        active: adapterName,
        [adapterName]: adapterConfig
    }
}
 2020-04-05 21:13:47 +02:00
Daniel Lockyer 2d42af8d72 Removed unused release-utils dependency 
no issue

- this is no longer needed because we moved the main release code
  out
 2020-04-03 14:25:28 +01:00
Daniel Lockyer 92aebc21f4 Updated Ghost-SDK packages 
no issue
 2020-04-03 10:43:35 +01:00
Renovate Bot deb1118714
Update dependency @tryghost/helpers to v1.1.25 2020-04-03 08:17:33 +00:00
Fabien O'Carroll 23154f0739
Refactored session service (#11701) 
* Refactored SessionStore to use @tryghost/errors

no-issue

* Updated tests to test exposed API

no-issue

This will make refactoring easier, as we only have the "public" contract to maintain

* Refactored session functionality to SessionService

no-issue

This splits the session logic away from the HTTP responding logic,
which will allows us to decouple session creation/modification from the
API. Eventually this can be used to create sessions based on magiclink
style tokens.

* Instantiated and exported the new SessionService

no-issue

* Refactored session middleware to take session service

no-issue

This removes duplication of code and makes the middleware more explicit
that it's just a wrapper around the session service.

* Updated to use external @tryghost/session-service

no-issue
 2020-04-02 16:27:31 +02:00
Daniel Lockyer 5a748ee5a9 Updated eslint-plugin-ghost dependency 
no issue
 2020-04-02 14:11:33 +01:00
Renovate Bot f8f8a4b597
Update dependency express-hbs to v2.3.2 2020-04-01 18:04:24 +00:00
Daniel Lockyer 5989400df7 Removed unused chalk dependency 
no issue

- left over from removing the stable branch warning from the Gruntfile
- it's not used anywhere else
 2020-04-01 19:02:55 +01:00
Hannah Wolfe e4404f9b9a Removed unnecessary dependency matchdep 
- Don't really need a dependency here, can work without it
- matchdep hasn't been updated in 3 years, and has a web of potentially insecure dependencies
- Unlikely to affect us, but safer to go without
 2020-04-01 17:50:03 +01:00
Hannah Wolfe c3e0e82604 Removed unused grunt-cli dependency 
- this should be installed globally
 2020-04-01 17:50:03 +01:00
Hannah Wolfe 9cf4312ae2 Removed misc unused dependencies 2020-04-01 15:38:26 +01:00
Renovate Bot 36a55eb0a4 Pin dependencies 2020-04-01 15:35:02 +01:00
Daniel Lockyer 02bf8773b9 Automated the release process 
no issue
 2020-04-01 15:17:52 +01:00
Renovate Bot 634b5e83a2
Update dependency uuid to v7.0.3 2020-04-01 12:49:34 +00:00
Hannah Wolfe 25f51056f5 Remove unused dev dependency should-http 2020-04-01 13:30:38 +01:00
Hannah Wolfe a4175ff218 Swapped grunt-cssnano for grunt-postcss+cssnano 
- The grunt-cssnano plugin is old and no longer maintained
- It uses insecure dependencies that don't really impact us, but we want to get rid of warnings
- Swapping for grunt-postcss+cssnano is a more up-to-date way of sorting this out
 2020-04-01 13:17:49 +01:00
Renovate Bot 4c554ae131 Update dependency @tryghost/image-transform to v0.2.0 2020-03-30 10:55:07 +01:00
Daniel Lockyer d35fd96abb Updated grunt-mocha-cli dependency 
no issue
 2020-03-30 10:52:48 +01:00
renovate[bot] f0f22d80b3
Update dependency bookshelf to v0.15.2 (#10982) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-03-30 22:42:25 +13:00
Kevin Ansfield b984da9839 🐛 Fixed "Incorrectly eaten value" error if markdown footnote has trailing newline whitespace 
no issue

- update `url-utils` dependency which contains a fixed version of remark footnote parsing
 2020-03-29 20:26:04 +01:00
Renovate Bot 4042a7f952
Update dependency @sentry/node to v5.15.4 2020-03-27 13:49:59 +00:00
Renovate Bot 3a04fd5623
Update dependency @sentry/node to v5.15.3 2020-03-27 10:23:45 +00:00
Renovate Bot 73c8edd03b
Update dependency @tryghost/url-utils to v0.6.15 2020-03-27 04:24:17 +00:00
Renovate Bot 92adad098c
Update dependency @tryghost/string to v0.1.7 2020-03-27 02:16:31 +00:00