ghost 4.47.4 → 5.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/Gruntfile.js +24 -24
- package/README.md +3 -2
- package/content/themes/casper/assets/built/global.css +1 -1
- package/content/themes/casper/assets/built/global.css.map +1 -1
- package/content/themes/casper/assets/built/screen.css +1 -1
- package/content/themes/casper/assets/built/screen.css.map +1 -1
- package/content/themes/casper/assets/css/global.css +2 -2
- package/content/themes/casper/assets/css/screen.css +412 -664
- package/content/themes/casper/author.hbs +48 -35
- package/content/themes/casper/default.hbs +5 -23
- package/content/themes/casper/error-404.hbs +1 -1
- package/content/themes/casper/index.hbs +29 -22
- package/content/themes/casper/package.json +25 -37
- package/content/themes/casper/page.hbs +12 -12
- package/content/themes/casper/partials/icons/facebook.hbs +1 -1
- package/content/themes/casper/partials/icons/twitter.hbs +1 -1
- package/content/themes/casper/partials/post-card.hbs +26 -40
- package/content/themes/casper/post.hbs +54 -50
- package/content/themes/casper/tag.hbs +42 -47
- package/core/boot.js +18 -15
- package/core/bridge.js +24 -25
- package/core/built/assets/ghost-dark-b6e3268bcae976a8675b0d9ae54540f2.css +1 -0
- package/core/built/assets/{ghost.min-a2a47979b0b61d15a3914042a7b1cd20.js → ghost.min-2cc3688ea6600a54e0cd83107a8577e8.js} +1138 -1212
- package/core/built/assets/ghost.min-a40c7b301c702bd84c2fae19366ab5d7.css +1 -0
- package/core/built/assets/icons/analytics.svg +14 -0
- package/core/built/assets/icons/calendar.svg +4 -1
- package/core/built/assets/icons/email-at.svg +1 -1
- package/core/built/assets/icons/email-name.svg +1 -1
- package/core/built/assets/icons/info.svg +1 -1
- package/core/built/assets/icons/twitter-logo.svg +3 -0
- package/core/built/assets/{vendor.min-97fd438f4772c5ec6bb30ad779b8530e.js → vendor.min-2bca41946dea27dc292428db605d466d.js} +99 -93
- package/core/cli/README.md +88 -0
- package/core/cli/command.js +129 -0
- package/core/cli/repl.js +32 -0
- package/core/cli/timetravel.js +87 -0
- package/core/frontend/apps/amp/lib/helpers/amp_content.js +10 -12
- package/core/frontend/apps/amp/lib/router.js +2 -3
- package/core/frontend/helpers/body_class.js +2 -2
- package/core/frontend/helpers/excerpt.js +0 -2
- package/core/frontend/helpers/get.js +23 -24
- package/core/frontend/helpers/ghost_head.js +104 -108
- package/core/frontend/helpers/navigation.js +0 -2
- package/core/frontend/helpers/prev_post.js +20 -26
- package/core/frontend/helpers/price.js +2 -2
- package/core/frontend/meta/author-url.js +2 -2
- package/core/frontend/meta/description.js +3 -3
- package/core/frontend/meta/excerpt.js +1 -2
- package/core/frontend/meta/generate-excerpt.js +2 -11
- package/core/frontend/meta/paginated-url.js +1 -1
- package/core/frontend/meta/rss-url.js +0 -1
- package/core/frontend/meta/url.js +4 -4
- package/core/frontend/services/data/entry-lookup.js +1 -1
- package/core/frontend/services/data/fetch-data.js +1 -1
- package/core/frontend/services/helpers/handlebars.js +11 -12
- package/core/frontend/services/proxy.js +11 -1
- package/core/frontend/services/rendering/context.js +1 -5
- package/core/frontend/services/rendering/format-response.js +9 -2
- package/core/frontend/services/rendering/index.js +0 -4
- package/core/frontend/services/rendering/render-entry.js +1 -1
- package/core/frontend/services/rendering/templates.js +15 -5
- package/core/frontend/services/routing/CollectionRouter.js +2 -2
- package/core/frontend/services/routing/EmailRouter.js +2 -2
- package/core/frontend/services/routing/ParentRouter.js +1 -1
- package/core/frontend/services/routing/PreviewRouter.js +3 -3
- package/core/frontend/services/routing/{config/v4.js → config.js} +3 -5
- package/core/frontend/services/routing/controllers/channel.js +0 -10
- package/core/frontend/services/routing/controllers/collection.js +0 -9
- package/core/frontend/services/routing/controllers/email-post.js +2 -7
- package/core/frontend/services/routing/controllers/entry.js +1 -3
- package/core/frontend/services/routing/controllers/index.js +2 -2
- package/core/frontend/services/routing/controllers/{preview.js → previews.js} +3 -8
- package/core/frontend/services/routing/controllers/static.js +1 -6
- package/core/frontend/services/routing/router-manager.js +38 -20
- package/core/frontend/services/rss/generate-feed.js +7 -9
- package/core/frontend/services/theme-engine/active.js +0 -8
- package/core/frontend/services/theme-engine/config/defaults.json +1 -3
- package/core/frontend/services/theme-engine/middleware/index.js +0 -1
- package/core/frontend/services/theme-engine/middleware/update-global-template-options.js +0 -69
- package/core/frontend/services/theme-engine/middleware/update-local-template-options.js +3 -6
- package/core/frontend/web/middleware/static-theme.js +14 -6
- package/core/frontend/web/routes.js +9 -9
- package/core/frontend/web/site.js +15 -18
- package/core/server/adapters/scheduling/post-scheduling/index.js +1 -1
- package/core/server/api/README.md +2 -6
- package/core/server/api/canary/authentication.js +4 -3
- package/core/server/api/canary/{email-preview.js → email-previews.js} +9 -8
- package/core/server/api/canary/index.js +14 -18
- package/core/server/api/canary/members.js +4 -24
- package/core/server/api/{v3/actions.js → canary/newsletters-public.js} +6 -6
- package/core/server/api/canary/newsletters.js +1 -13
- package/core/server/api/canary/notifications.js +17 -22
- package/core/server/api/canary/offers-public.js +28 -0
- package/core/server/api/canary/pages.js +1 -1
- package/core/server/api/canary/posts.js +4 -8
- package/core/server/api/canary/{preview.js → previews.js} +1 -1
- package/core/server/api/canary/schedules.js +1 -1
- package/core/server/api/canary/session.js +1 -1
- package/core/server/api/canary/settings-public.js +3 -1
- package/core/server/api/canary/settings.js +30 -16
- package/core/server/api/canary/utils/index.js +2 -4
- package/core/server/api/canary/utils/serializers/input/index.js +0 -4
- package/core/server/api/canary/utils/serializers/input/members.js +46 -17
- package/core/server/api/canary/utils/serializers/input/pages.js +0 -17
- package/core/server/api/canary/utils/serializers/input/posts.js +1 -28
- package/core/server/api/canary/utils/serializers/input/settings.js +61 -142
- package/core/server/api/canary/utils/serializers/input/tiers.js +56 -12
- package/core/server/api/canary/utils/serializers/output/authentication.js +2 -6
- package/core/server/api/canary/utils/serializers/output/index.js +2 -10
- package/core/server/api/canary/utils/serializers/output/mappers/index.js +1 -0
- package/core/server/api/canary/utils/serializers/output/mappers/newsletters.js +24 -0
- package/core/server/api/canary/utils/serializers/output/mappers/pages.js +1 -1
- package/core/server/api/canary/utils/serializers/output/mappers/posts.js +9 -7
- package/core/server/api/canary/utils/serializers/output/mappers/settings.js +5 -31
- package/core/server/api/canary/utils/serializers/output/members.js +21 -11
- package/core/server/api/canary/utils/serializers/output/offers.js +9 -1
- package/core/server/api/canary/utils/serializers/output/{preview.js → previews.js} +2 -2
- package/core/server/api/canary/utils/serializers/output/settings.js +6 -14
- package/core/server/api/canary/utils/serializers/output/site.js +0 -1
- package/core/server/api/canary/utils/serializers/output/tiers.js +35 -75
- package/core/server/api/canary/utils/serializers/output/utils/clean.js +5 -10
- package/core/server/api/canary/utils/serializers/output/utils/extra-attrs.js +0 -126
- package/core/server/api/canary/utils/serializers/output/utils/post-gating.js +1 -1
- package/core/server/api/canary/utils/serializers/output/utils/url.js +0 -5
- package/core/server/api/canary/utils/validators/input/index.js +2 -2
- package/core/server/api/canary/utils/validators/input/{passwordreset.js → password_reset.js} +2 -2
- package/core/server/api/canary/utils/validators/input/settings.js +2 -23
- package/core/server/api/canary/utils/validators/utils/json-schema.js +1 -2
- package/core/server/api/index.js +1 -7
- package/core/server/api/shared/serializers/input/utils/settings-key-group-mapper.js +2 -2
- package/core/server/api/shared/serializers/input/utils/settings-key-type-mapper.js +2 -4
- package/core/server/data/db/connection.js +0 -13
- package/core/server/data/exporter/index.js +4 -1
- package/core/server/data/exporter/table-lists.js +13 -15
- package/core/server/data/importer/importers/data/base.js +16 -7
- package/core/server/data/importer/importers/data/data-importer.js +38 -1
- package/core/server/data/importer/importers/data/newsletters.js +45 -0
- package/core/server/data/importer/importers/data/posts.js +40 -12
- package/core/server/data/importer/importers/data/products.js +68 -0
- package/core/server/data/importer/importers/data/settings.js +10 -10
- package/core/server/data/importer/importers/data/stripe-prices.js +59 -0
- package/core/server/data/importer/importers/data/stripe-products.js +61 -0
- package/core/server/data/migrations/utils/constants.js +3 -0
- package/core/server/data/migrations/utils/index.js +10 -0
- package/core/server/data/migrations/utils/migrations.js +156 -0
- package/core/server/data/migrations/utils/permissions.js +291 -0
- package/core/server/data/migrations/utils/schema.js +158 -0
- package/core/server/data/migrations/utils/settings.js +59 -0
- package/core/server/data/migrations/utils/tables.js +94 -0
- package/core/server/data/migrations/versions/1.25/01-final-v1.js +2 -0
- package/core/server/data/migrations/versions/1.25/02-noop.js +6 -0
- package/core/server/data/migrations/versions/2.37/01-final-v2.js +2 -0
- package/core/server/data/migrations/versions/3.41/01-final-v3.js +2 -0
- package/core/server/data/migrations/versions/4.0/22-solve-orphaned-webhooks.js +3 -9
- package/core/server/data/migrations/versions/4.0/23-regenerate-posts-html.js +2 -11
- package/core/server/data/migrations/versions/4.11/02-add-email-verification-required-setting.js +1 -1
- package/core/server/data/migrations/versions/4.12/02-fix-member-statuses.js +1 -1
- package/core/server/data/migrations/versions/4.14/02-fix-free-members-status-events.js +1 -1
- package/core/server/data/migrations/versions/4.22/01-add-is-launch-complete-setting.js +1 -1
- package/core/server/data/migrations/versions/4.22/02-update-launch-complete-setting-from-user-data.js +1 -1
- package/core/server/data/migrations/versions/4.35/2022-02-02-10-38-add-default-content-visibility-tiers-setting.js +1 -1
- package/core/server/data/migrations/versions/4.45/2022-04-21-02-55-add-notifications-key-entry-to-settings-table.js +1 -1
- package/core/server/data/migrations/versions/4.6/01-remove-comped-status.js +1 -1
- package/core/server/data/migrations/versions/4.7/03-add-labs-setting.js +1 -1
- package/core/server/data/migrations/versions/4.9/05-fix-missed-mobiledoc-url-transforms.js +1 -1
- package/core/server/data/migrations/versions/4.9/06-add-comped-status.js +1 -1
- package/core/server/data/migrations/versions/4.9/07-update-comped-members-status-events.js +1 -1
- package/core/server/data/migrations/versions/5.0/2022-03-14-12-33-delete-duplicate-offer-redemptions.js +36 -0
- package/core/server/data/migrations/versions/5.0/2022-03-28-15-25-backfill-mrr-adjustments-for-offers.js +108 -0
- package/core/server/data/migrations/versions/5.0/2022-04-25-10-32-backfill-mrr-for-discounted-subscriptions.js +44 -0
- package/core/server/data/migrations/versions/5.0/2022-04-26-15-44-backfill-mrr-events-for-canceled-subscriptions.js +73 -0
- package/core/server/data/migrations/versions/5.0/2022-04-27-11-26-backfill-mrr-for-canceled-subscriptions.js +31 -0
- package/core/server/data/migrations/versions/5.0/2022-04-28-03-26-remove-author-id-column-from-posts-table.js +7 -0
- package/core/server/data/migrations/versions/5.0/2022-05-03-09-39-drop-nullable-subscribe-event-newsletter-id.js +4 -0
- package/core/server/data/migrations/versions/5.0/2022-05-04-15-24-map-existing-emails-to-default-newsletter.js +44 -0
- package/core/server/data/migrations/versions/5.0/2022-05-05-13-13-migrate-legacy-recipient-filters.js +30 -0
- package/core/server/data/migrations/versions/5.0/2022-05-05-13-29-add-newsletters-admin-integration-permission-roles.js +20 -0
- package/core/server/data/migrations/versions/5.0/2022-05-05-15-17-drop-oauth-table.js +3 -0
- package/core/server/data/migrations/versions/5.0/2022-05-06-08-16-cleanup-client-subscriber-permissions.js +68 -0
- package/core/server/data/migrations/versions/5.0/2022-05-06-13-22-add-frontend-integration.js +68 -0
- package/core/server/data/migrations/versions/5.0/2022-05-09-10-00-drop-members-subscribed-column.js +18 -0
- package/core/server/data/migrations/versions/5.0/2022-05-09-14-17-cleanup-invalid-users-status.js +17 -0
- package/core/server/data/migrations/versions/5.0/2022-05-10-08-33-drop-members-analytics-table.js +3 -0
- package/core/server/data/migrations/versions/5.0/2022-05-10-14-57-cleanup-invalid-posts-status.js +17 -0
- package/core/server/data/migrations/versions/5.0/2022-05-11-12-08-drop-webhooks-status-column.js +18 -0
- package/core/server/data/migrations/versions/5.0/2022-05-11-13-12-rename-settings.js +51 -0
- package/core/server/data/migrations/versions/5.0/2022-05-11-16-36-remove-unused-settings.js +54 -0
- package/core/server/data/migrations/versions/5.0/2022-05-12-10-29-add-newsletter-permissions-for-editors-and-authors.js +20 -0
- package/core/server/data/migrations/versions/5.0/2022-05-12-13-51-add-label-permissions-for-authors.js +12 -0
- package/core/server/data/migrations/versions/5.0/2022-05-13-11-38-drop-none-email-recipient-filter.js +28 -0
- package/core/server/data/migrations/versions/5.0/2022-05-21-00-00-regenerate-posts-html.js +70 -0
- package/core/server/data/schema/commands.js +35 -3
- package/core/server/data/schema/default-settings/default-settings.json +2 -159
- package/core/server/data/schema/fixtures/fixture-manager.js +11 -2
- package/core/server/data/schema/fixtures/fixtures.json +16 -7
- package/core/server/data/schema/schema.js +26 -38
- package/core/server/data/schema/validator.js +2 -0
- package/core/server/ghost-server.js +34 -64
- package/core/server/lib/image/gravatar.js +25 -9
- package/core/server/models/api-key.js +3 -26
- package/core/server/models/base/plugins/bulk-operations.js +14 -6
- package/core/server/models/integration.js +17 -0
- package/core/server/models/member.js +8 -4
- package/core/server/models/newsletter.js +27 -0
- package/core/server/models/post.js +30 -32
- package/core/server/models/relations/authors.js +74 -100
- package/core/server/models/settings.js +6 -2
- package/core/server/models/webhook.js +2 -1
- package/core/server/run-update-check.js +1 -1
- package/core/server/services/api-version-compatibility/index.js +24 -18
- package/core/server/services/api-version-compatibility/legacy-api-path-match.js +23 -0
- package/core/server/services/api-version-compatibility/mw-version-rewrites.js +36 -0
- package/core/server/services/auth/api-key/admin.js +8 -7
- package/core/server/services/auth/passwordreset.js +3 -3
- package/core/server/services/auth/session/express-session.js +1 -1
- package/core/server/services/auth/session/index.js +1 -1
- package/core/server/services/auth/setup.js +8 -8
- package/core/server/services/bulk-email/bulk-email-processor.js +5 -1
- package/core/server/services/email-analytics/lib/event-processor.js +25 -14
- package/core/server/services/frontend-data-service/frontend-data-service.js +27 -0
- package/core/server/services/frontend-data-service/index.js +6 -0
- package/core/server/services/mail/index.js +14 -1
- package/core/server/services/mega/email-preview.js +14 -15
- package/core/server/services/mega/mega.js +37 -52
- package/core/server/services/mega/post-email-serializer.js +18 -28
- package/core/server/services/members/api.js +0 -3
- package/core/server/services/members/config.js +0 -49
- package/core/server/services/members/exporter/query.js +88 -0
- package/core/server/services/members/middleware.js +3 -135
- package/core/server/services/members/service.js +2 -29
- package/core/server/services/members/settings.js +3 -9
- package/core/server/services/newsletters/service.js +78 -10
- package/core/server/services/posts/post-scheduling-service.js +5 -17
- package/core/server/services/posts/posts-service.js +15 -62
- package/core/server/services/public-config/site.js +0 -6
- package/core/server/services/route-settings/index.js +0 -3
- package/core/server/services/route-settings/settings-loader.js +10 -34
- package/core/server/services/route-settings/validate.js +1 -7
- package/core/server/services/settings/index.js +1 -77
- package/core/server/services/settings/settings-service.js +184 -0
- package/core/server/services/themes/validate.js +1 -1
- package/core/server/services/url/Resources.js +1 -3
- package/core/server/services/url/UrlGenerator.js +1 -1
- package/core/server/services/url/UrlService.js +6 -20
- package/core/server/services/url/{configs/v2.js → config.js} +0 -0
- package/core/server/services/users.js +2 -2
- package/core/server/services/webhooks/listen.js +5 -2
- package/core/server/services/webhooks/serialize.js +6 -7
- package/core/server/services/webhooks/trigger.js +62 -47
- package/core/server/update-check.js +1 -1
- package/core/server/web/admin/app.js +1 -1
- package/core/server/web/admin/views/default-prod.html +4 -4
- package/core/server/web/admin/views/default.html +4 -4
- package/core/server/web/api/app.js +3 -15
- package/core/server/web/api/canary/admin/app.js +1 -1
- package/core/server/web/api/canary/admin/middleware.js +3 -1
- package/core/server/web/api/canary/admin/routes.js +7 -23
- package/core/server/web/api/canary/content/app.js +2 -3
- package/core/server/web/api/canary/content/routes.js +5 -4
- package/core/server/web/members/app.js +5 -4
- package/core/server/web/parent/backend.js +0 -1
- package/core/server/web/parent/frontend.js +5 -6
- package/core/server/web/parent/middleware/ghost-locals.js +0 -3
- package/core/server/web/well-known.js +14 -1
- package/core/shared/config/defaults.json +5 -2
- package/core/shared/config/overrides.json +1 -27
- package/core/shared/html-to-plaintext.js +78 -10
- package/core/shared/labs.js +4 -8
- package/core/shared/settings-cache/cache.js +38 -4
- package/core/shared/settings-cache/public.js +13 -7
- package/core/shared/url-utils.js +0 -2
- package/ghost.js +6 -0
- package/package.json +66 -64
- package/yarn.lock +765 -1300
- package/core/built/assets/ghost-dark-c94ae212747200ca4bafc37cfb0714d8.css +0 -1
- package/core/built/assets/ghost.min-4084931bc22e794fe3722139050a80b3.css +0 -1
- package/core/frontend/helpers/author.js +0 -41
- package/core/frontend/helpers/products.js +0 -65
- package/core/frontend/services/rendering/secure.js +0 -19
- package/core/frontend/services/routing/config/canary.js +0 -61
- package/core/frontend/services/routing/config/v2.js +0 -54
- package/core/frontend/services/routing/config/v3.js +0 -54
- package/core/frontend/services/theme-engine/engines/create.js +0 -45
- package/core/frontend/services/theme-engine/engines/index.js +0 -5
- package/core/frontend/services/theme-engine/middleware/update-local-template-data.js +0 -9
- package/core/server/api/canary/products-public.js +0 -34
- package/core/server/api/canary/products.js +0 -116
- package/core/server/api/canary/utils/serializers/input/products.js +0 -28
- package/core/server/api/canary/utils/serializers/output/email-previews.js +0 -7
- package/core/server/api/canary/utils/serializers/output/products.js +0 -213
- package/core/server/api/v2/actions.js +0 -38
- package/core/server/api/v2/authentication.js +0 -191
- package/core/server/api/v2/authors-public.js +0 -69
- package/core/server/api/v2/config.js +0 -12
- package/core/server/api/v2/db.js +0 -120
- package/core/server/api/v2/images.js +0 -20
- package/core/server/api/v2/index.js +0 -147
- package/core/server/api/v2/integrations.js +0 -144
- package/core/server/api/v2/invites.js +0 -126
- package/core/server/api/v2/mail.js +0 -66
- package/core/server/api/v2/notifications.js +0 -96
- package/core/server/api/v2/oembed.js +0 -186
- package/core/server/api/v2/pages-public.js +0 -78
- package/core/server/api/v2/pages.js +0 -197
- package/core/server/api/v2/posts-public.js +0 -78
- package/core/server/api/v2/posts.js +0 -192
- package/core/server/api/v2/preview.js +0 -46
- package/core/server/api/v2/redirects.js +0 -28
- package/core/server/api/v2/roles.js +0 -19
- package/core/server/api/v2/schedules.js +0 -77
- package/core/server/api/v2/session.js +0 -70
- package/core/server/api/v2/settings-public.js +0 -17
- package/core/server/api/v2/settings.js +0 -195
- package/core/server/api/v2/site.js +0 -14
- package/core/server/api/v2/slack.js +0 -12
- package/core/server/api/v2/slugs.js +0 -51
- package/core/server/api/v2/tags-public.js +0 -71
- package/core/server/api/v2/tags.js +0 -159
- package/core/server/api/v2/themes.js +0 -133
- package/core/server/api/v2/users.js +0 -179
- package/core/server/api/v2/utils/index.js +0 -34
- package/core/server/api/v2/utils/permissions.js +0 -112
- package/core/server/api/v2/utils/serializers/index.js +0 -9
- package/core/server/api/v2/utils/serializers/input/db.js +0 -20
- package/core/server/api/v2/utils/serializers/input/index.js +0 -33
- package/core/server/api/v2/utils/serializers/input/integrations.js +0 -33
- package/core/server/api/v2/utils/serializers/input/pages.js +0 -203
- package/core/server/api/v2/utils/serializers/input/posts.js +0 -218
- package/core/server/api/v2/utils/serializers/input/settings.js +0 -152
- package/core/server/api/v2/utils/serializers/input/tags.js +0 -35
- package/core/server/api/v2/utils/serializers/input/users.js +0 -26
- package/core/server/api/v2/utils/serializers/input/utils/url.js +0 -71
- package/core/server/api/v2/utils/serializers/input/webhooks.js +0 -12
- package/core/server/api/v2/utils/serializers/output/actions.js +0 -13
- package/core/server/api/v2/utils/serializers/output/all.js +0 -25
- package/core/server/api/v2/utils/serializers/output/authentication.js +0 -68
- package/core/server/api/v2/utils/serializers/output/authors.js +0 -21
- package/core/server/api/v2/utils/serializers/output/config.js +0 -21
- package/core/server/api/v2/utils/serializers/output/db.js +0 -40
- package/core/server/api/v2/utils/serializers/output/images.js +0 -19
- package/core/server/api/v2/utils/serializers/output/index.js +0 -107
- package/core/server/api/v2/utils/serializers/output/integrations.js +0 -35
- package/core/server/api/v2/utils/serializers/output/invites.js +0 -24
- package/core/server/api/v2/utils/serializers/output/mail.js +0 -19
- package/core/server/api/v2/utils/serializers/output/notifications.js +0 -29
- package/core/server/api/v2/utils/serializers/output/oembed.js +0 -8
- package/core/server/api/v2/utils/serializers/output/pages.js +0 -26
- package/core/server/api/v2/utils/serializers/output/posts.js +0 -26
- package/core/server/api/v2/utils/serializers/output/preview.js +0 -9
- package/core/server/api/v2/utils/serializers/output/redirects.js +0 -5
- package/core/server/api/v2/utils/serializers/output/roles.js +0 -29
- package/core/server/api/v2/utils/serializers/output/schedules.js +0 -5
- package/core/server/api/v2/utils/serializers/output/settings.js +0 -61
- package/core/server/api/v2/utils/serializers/output/site.js +0 -16
- package/core/server/api/v2/utils/serializers/output/slugs.js +0 -11
- package/core/server/api/v2/utils/serializers/output/tags.js +0 -25
- package/core/server/api/v2/utils/serializers/output/themes.js +0 -25
- package/core/server/api/v2/utils/serializers/output/users.js +0 -45
- package/core/server/api/v2/utils/serializers/output/utils/clean.js +0 -174
- package/core/server/api/v2/utils/serializers/output/utils/date.js +0 -21
- package/core/server/api/v2/utils/serializers/output/utils/extra-attrs.js +0 -161
- package/core/server/api/v2/utils/serializers/output/utils/mapper.js +0 -136
- package/core/server/api/v2/utils/serializers/output/utils/post-gating.js +0 -29
- package/core/server/api/v2/utils/serializers/output/utils/settings-type-group-mapper.js +0 -24
- package/core/server/api/v2/utils/serializers/output/utils/url.js +0 -67
- package/core/server/api/v2/utils/serializers/output/webhooks.js +0 -15
- package/core/server/api/v2/utils/validators/index.js +0 -9
- package/core/server/api/v2/utils/validators/input/images.js +0 -85
- package/core/server/api/v2/utils/validators/input/index.js +0 -45
- package/core/server/api/v2/utils/validators/input/invitations.js +0 -49
- package/core/server/api/v2/utils/validators/input/invites.js +0 -21
- package/core/server/api/v2/utils/validators/input/oembed.js +0 -17
- package/core/server/api/v2/utils/validators/input/pages.js +0 -46
- package/core/server/api/v2/utils/validators/input/passwordreset.js +0 -36
- package/core/server/api/v2/utils/validators/input/posts.js +0 -46
- package/core/server/api/v2/utils/validators/input/settings.js +0 -79
- package/core/server/api/v2/utils/validators/input/setup.js +0 -17
- package/core/server/api/v2/utils/validators/input/tags.js +0 -6
- package/core/server/api/v2/utils/validators/input/users.js +0 -21
- package/core/server/api/v2/utils/validators/output/index.js +0 -1
- package/core/server/api/v2/utils/validators/utils/json-schema.js +0 -17
- package/core/server/api/v2/webhooks.js +0 -163
- package/core/server/api/v3/authentication.js +0 -192
- package/core/server/api/v3/authors-public.js +0 -69
- package/core/server/api/v3/config.js +0 -12
- package/core/server/api/v3/db.js +0 -131
- package/core/server/api/v3/email-preview.js +0 -74
- package/core/server/api/v3/email.js +0 -65
- package/core/server/api/v3/identities.js +0 -36
- package/core/server/api/v3/images.js +0 -20
- package/core/server/api/v3/index.js +0 -179
- package/core/server/api/v3/integrations.js +0 -150
- package/core/server/api/v3/invites.js +0 -125
- package/core/server/api/v3/labels.js +0 -162
- package/core/server/api/v3/mail.js +0 -66
- package/core/server/api/v3/memberSigninUrls.js +0 -33
- package/core/server/api/v3/members.js +0 -412
- package/core/server/api/v3/membersStripeConnect.js +0 -29
- package/core/server/api/v3/notifications.js +0 -96
- package/core/server/api/v3/oembed.js +0 -23
- package/core/server/api/v3/pages-public.js +0 -77
- package/core/server/api/v3/pages.js +0 -199
- package/core/server/api/v3/posts-public.js +0 -76
- package/core/server/api/v3/posts.js +0 -200
- package/core/server/api/v3/preview.js +0 -44
- package/core/server/api/v3/redirects.js +0 -47
- package/core/server/api/v3/roles.js +0 -19
- package/core/server/api/v3/schedules.js +0 -77
- package/core/server/api/v3/session.js +0 -70
- package/core/server/api/v3/settings-public.js +0 -17
- package/core/server/api/v3/settings.js +0 -224
- package/core/server/api/v3/site.js +0 -14
- package/core/server/api/v3/slack.js +0 -12
- package/core/server/api/v3/slugs.js +0 -48
- package/core/server/api/v3/snippets.js +0 -115
- package/core/server/api/v3/tags-public.js +0 -71
- package/core/server/api/v3/tags.js +0 -159
- package/core/server/api/v3/themes.js +0 -131
- package/core/server/api/v3/users.js +0 -242
- package/core/server/api/v3/utils/index.js +0 -34
- package/core/server/api/v3/utils/permissions.js +0 -116
- package/core/server/api/v3/utils/serializers/index.js +0 -9
- package/core/server/api/v3/utils/serializers/input/authors.js +0 -31
- package/core/server/api/v3/utils/serializers/input/db.js +0 -20
- package/core/server/api/v3/utils/serializers/input/index.js +0 -41
- package/core/server/api/v3/utils/serializers/input/integrations.js +0 -33
- package/core/server/api/v3/utils/serializers/input/members.js +0 -62
- package/core/server/api/v3/utils/serializers/input/pages.js +0 -208
- package/core/server/api/v3/utils/serializers/input/posts.js +0 -242
- package/core/server/api/v3/utils/serializers/input/settings.js +0 -168
- package/core/server/api/v3/utils/serializers/input/tags.js +0 -42
- package/core/server/api/v3/utils/serializers/input/users.js +0 -26
- package/core/server/api/v3/utils/serializers/input/utils/slug-filter-order.js +0 -18
- package/core/server/api/v3/utils/serializers/input/utils/url.js +0 -71
- package/core/server/api/v3/utils/serializers/input/webhooks.js +0 -12
- package/core/server/api/v3/utils/serializers/output/actions.js +0 -13
- package/core/server/api/v3/utils/serializers/output/all.js +0 -25
- package/core/server/api/v3/utils/serializers/output/authentication.js +0 -69
- package/core/server/api/v3/utils/serializers/output/authors.js +0 -21
- package/core/server/api/v3/utils/serializers/output/config.js +0 -25
- package/core/server/api/v3/utils/serializers/output/db.js +0 -40
- package/core/server/api/v3/utils/serializers/output/email-preview.js +0 -7
- package/core/server/api/v3/utils/serializers/output/emails.js +0 -13
- package/core/server/api/v3/utils/serializers/output/identities.js +0 -7
- package/core/server/api/v3/utils/serializers/output/images.js +0 -19
- package/core/server/api/v3/utils/serializers/output/index.js +0 -135
- package/core/server/api/v3/utils/serializers/output/integrations.js +0 -35
- package/core/server/api/v3/utils/serializers/output/invites.js +0 -24
- package/core/server/api/v3/utils/serializers/output/labels.js +0 -25
- package/core/server/api/v3/utils/serializers/output/mail.js +0 -19
- package/core/server/api/v3/utils/serializers/output/member-signin_urls.js +0 -7
- package/core/server/api/v3/utils/serializers/output/members.js +0 -228
- package/core/server/api/v3/utils/serializers/output/notifications.js +0 -29
- package/core/server/api/v3/utils/serializers/output/oembed.js +0 -8
- package/core/server/api/v3/utils/serializers/output/pages.js +0 -26
- package/core/server/api/v3/utils/serializers/output/posts.js +0 -26
- package/core/server/api/v3/utils/serializers/output/preview.js +0 -10
- package/core/server/api/v3/utils/serializers/output/redirects.js +0 -5
- package/core/server/api/v3/utils/serializers/output/roles.js +0 -29
- package/core/server/api/v3/utils/serializers/output/schedules.js +0 -5
- package/core/server/api/v3/utils/serializers/output/settings.js +0 -65
- package/core/server/api/v3/utils/serializers/output/site.js +0 -19
- package/core/server/api/v3/utils/serializers/output/slugs.js +0 -11
- package/core/server/api/v3/utils/serializers/output/snippets.js +0 -97
- package/core/server/api/v3/utils/serializers/output/tags.js +0 -25
- package/core/server/api/v3/utils/serializers/output/themes.js +0 -25
- package/core/server/api/v3/utils/serializers/output/users.js +0 -74
- package/core/server/api/v3/utils/serializers/output/utils/clean.js +0 -166
- package/core/server/api/v3/utils/serializers/output/utils/date.js +0 -21
- package/core/server/api/v3/utils/serializers/output/utils/extra-attrs.js +0 -174
- package/core/server/api/v3/utils/serializers/output/utils/mapper.js +0 -197
- package/core/server/api/v3/utils/serializers/output/utils/post-gating.js +0 -39
- package/core/server/api/v3/utils/serializers/output/utils/settings-type-group-mapper.js +0 -24
- package/core/server/api/v3/utils/serializers/output/utils/url.js +0 -67
- package/core/server/api/v3/utils/serializers/output/webhooks.js +0 -15
- package/core/server/api/v3/utils/validators/index.js +0 -9
- package/core/server/api/v3/utils/validators/input/images.js +0 -85
- package/core/server/api/v3/utils/validators/input/index.js +0 -61
- package/core/server/api/v3/utils/validators/input/invitations.js +0 -49
- package/core/server/api/v3/utils/validators/input/invites.js +0 -21
- package/core/server/api/v3/utils/validators/input/labels.js +0 -6
- package/core/server/api/v3/utils/validators/input/members.js +0 -6
- package/core/server/api/v3/utils/validators/input/oembed.js +0 -17
- package/core/server/api/v3/utils/validators/input/pages.js +0 -46
- package/core/server/api/v3/utils/validators/input/passwordreset.js +0 -36
- package/core/server/api/v3/utils/validators/input/posts.js +0 -46
- package/core/server/api/v3/utils/validators/input/settings.js +0 -89
- package/core/server/api/v3/utils/validators/input/setup.js +0 -17
- package/core/server/api/v3/utils/validators/input/snippets.js +0 -6
- package/core/server/api/v3/utils/validators/input/tags.js +0 -6
- package/core/server/api/v3/utils/validators/input/users.js +0 -22
- package/core/server/api/v3/utils/validators/input/webhooks.js +0 -27
- package/core/server/api/v3/utils/validators/output/index.js +0 -1
- package/core/server/api/v3/utils/validators/utils/json-schema.js +0 -17
- package/core/server/api/v3/webhooks.js +0 -130
- package/core/server/data/migrations/utils.js +0 -571
- package/core/server/data/migrations/versions/1.13/1-custom-template-post.js +0 -7
- package/core/server/data/migrations/versions/1.13/2-theme-permissions.js +0 -58
- package/core/server/data/migrations/versions/1.18/1-add-webhooks-table.js +0 -2
- package/core/server/data/migrations/versions/1.19/1-webhook-permissions.js +0 -31
- package/core/server/data/migrations/versions/1.20/1-remove-settings-keys.js +0 -65
- package/core/server/data/migrations/versions/1.21/1-add-contributor-role.js +0 -58
- package/core/server/data/migrations/versions/1.22/1-multiple-authors-DDL.js +0 -2
- package/core/server/data/migrations/versions/1.22/1-multiple-authors-DML.js +0 -63
- package/core/server/data/migrations/versions/1.25/1-update-koenig-beta-html.js +0 -70
- package/core/server/data/migrations/versions/1.25/2-demo-post.js +0 -55
- package/core/server/data/migrations/versions/1.3/1-post-excerpt.js +0 -7
- package/core/server/data/migrations/versions/1.4/1-codeinjection-post.js +0 -14
- package/core/server/data/migrations/versions/1.5/1-og-twitter-post.js +0 -34
- package/core/server/data/migrations/versions/1.7/1-add-backup-client.js +0 -10
- package/core/server/data/migrations/versions/1.9/1-add-permissions-redirect.js +0 -23
- package/core/server/data/migrations/versions/2.0/1-rename-amp-column.js +0 -44
- package/core/server/data/migrations/versions/2.0/2-update-posts.js +0 -7
- package/core/server/data/migrations/versions/2.0/3-remove-koenig-labs.js +0 -42
- package/core/server/data/migrations/versions/2.0/4-permalink-setting.js +0 -85
- package/core/server/data/migrations/versions/2.0/5-remove-demo-post.js +0 -85
- package/core/server/data/migrations/versions/2.0/6-replace-fixture-posts.js +0 -10
- package/core/server/data/migrations/versions/2.13/1-remove-empty-strings.js +0 -5
- package/core/server/data/migrations/versions/2.14/1-add-actions-table.js +0 -2
- package/core/server/data/migrations/versions/2.14/2-add-actions-permissions.js +0 -12
- package/core/server/data/migrations/versions/2.15/1-add-type-column-to-integrations.js +0 -8
- package/core/server/data/migrations/versions/2.15/2-insert-zapier-integration.js +0 -69
- package/core/server/data/migrations/versions/2.16/1-add-members-perrmissions.js +0 -1
- package/core/server/data/migrations/versions/2.17/1-normalize-settings.js +0 -74
- package/core/server/data/migrations/versions/2.17/2-posts-add-canonical-url.js +0 -7
- package/core/server/data/migrations/versions/2.18/1-restore-settings-from-backup.js +0 -134
- package/core/server/data/migrations/versions/2.2/1-add-sessions-table.js +0 -2
- package/core/server/data/migrations/versions/2.2/2-add-integrations-and-api-key-tables.js +0 -6
- package/core/server/data/migrations/versions/2.2/3-insert-admin-integration-role.js +0 -83
- package/core/server/data/migrations/versions/2.2/4-insert-integration-and-api-key-permissions.js +0 -77
- package/core/server/data/migrations/versions/2.2/5-add-mobiledoc-revisions-table.js +0 -2
- package/core/server/data/migrations/versions/2.21/1-update-editor-permissions.js +0 -28
- package/core/server/data/migrations/versions/2.22/1-add-member-permissions-to-roles.js +0 -47
- package/core/server/data/migrations/versions/2.27/1-insert-ghost-db-backup-role.js +0 -83
- package/core/server/data/migrations/versions/2.27/2-insert-db-backup-integration.js +0 -69
- package/core/server/data/migrations/versions/2.27/3-add-subdirectory-to-relative-canonical-urls.js +0 -100
- package/core/server/data/migrations/versions/2.28/1-add-db-backup-content-permission.js +0 -9
- package/core/server/data/migrations/versions/2.28/2-add-db-backup-content-permission-to-roles.js +0 -15
- package/core/server/data/migrations/versions/2.28/3-insert-ghost-scheduler-role.js +0 -84
- package/core/server/data/migrations/versions/2.28/4-insert-scheduler-integration.js +0 -69
- package/core/server/data/migrations/versions/2.28/5-add-scheduler-permission-to-roles.js +0 -23
- package/core/server/data/migrations/versions/2.28/6-add-type-column.js +0 -6
- package/core/server/data/migrations/versions/2.28/7-populate-type-column.js +0 -6
- package/core/server/data/migrations/versions/2.28/8-remove-page-column.js +0 -6
- package/core/server/data/migrations/versions/2.29/1-add-post-page-column.js +0 -20
- package/core/server/data/migrations/versions/2.29/2-populate-post-page-column.js +0 -98
- package/core/server/data/migrations/versions/2.29/3-remove-page-type-column.js +0 -15
- package/core/server/data/migrations/versions/2.3/1-add-webhook-columns.js +0 -45
- package/core/server/data/migrations/versions/2.3/2-add-webhook-edit-permission.js +0 -9
- package/core/server/data/migrations/versions/2.31/1-remove-name-and-password-from-members-table.js +0 -15
- package/core/server/data/migrations/versions/2.32/01-add-members-stripe-customers-table.js +0 -4
- package/core/server/data/migrations/versions/2.32/02-add-name-to-members-table.js +0 -7
- package/core/server/data/migrations/versions/2.33/01-correct-members-stripe-customers-table.js +0 -37
- package/core/server/data/migrations/versions/2.34/01-add-stripe-customers-subscriptions-table.js +0 -2
- package/core/server/data/migrations/versions/2.34/02-add-email-to-members-stripe-customers-table.js +0 -7
- package/core/server/data/migrations/versions/2.34/03-add-name-to-members-stripe-customers-table.js +0 -7
- package/core/server/data/migrations/versions/2.35/01-add-note-to-members-table.js +0 -7
- package/core/server/data/migrations/versions/2.37/01-add-self-signup-and-from address-to-members-settings.js +0 -67
- package/core/server/data/migrations/versions/2.6/1-add-webhook-permission-roles.js +0 -31
- package/core/server/data/migrations/versions/2.8/1-add-members-table.js +0 -2
- package/core/server/data/migrations/versions/3.0/01-remove-user-ghost-auth-columns.js +0 -14
- package/core/server/data/migrations/versions/3.0/02-drop-token-auth-tables.js +0 -31
- package/core/server/data/migrations/versions/3.0/03-drop-client-auth-tables.js +0 -35
- package/core/server/data/migrations/versions/3.0/04-add-posts-meta-table.js +0 -2
- package/core/server/data/migrations/versions/3.0/05-populate-posts-meta-table.js +0 -83
- package/core/server/data/migrations/versions/3.0/06-remove-posts-meta-columns.js +0 -44
- package/core/server/data/migrations/versions/3.0/07-add-posts-type-column.js +0 -8
- package/core/server/data/migrations/versions/3.0/08-populate-posts-type-column.js +0 -94
- package/core/server/data/migrations/versions/3.0/09-remove-posts-page-column.js +0 -7
- package/core/server/data/migrations/versions/3.0/10-remove-empty-strings.js +0 -81
- package/core/server/data/migrations/versions/3.0/11-update-posts-html.js +0 -7
- package/core/server/data/migrations/versions/3.0/12-populate-members-table-from-subscribers.js +0 -54
- package/core/server/data/migrations/versions/3.0/13-drop-subscribers-table.js +0 -34
- package/core/server/data/migrations/versions/3.0/14-remove-subscribers-flag.js +0 -24
- package/core/server/data/migrations/versions/3.1/01-add-send-email-when-published-to-posts.js +0 -7
- package/core/server/data/migrations/versions/3.1/02-add-email-subject-to-posts-meta.js +0 -7
- package/core/server/data/migrations/versions/3.1/03-add-email-preview-permissions.js +0 -18
- package/core/server/data/migrations/versions/3.1/04-add-subscribed-flag-to-members.js +0 -7
- package/core/server/data/migrations/versions/3.1/05-add-emails-table.js +0 -2
- package/core/server/data/migrations/versions/3.1/06-add-email-permissions.js +0 -15
- package/core/server/data/migrations/versions/3.1/07-add-uuid-field-to-members.js +0 -8
- package/core/server/data/migrations/versions/3.1/08-add-uuid-values-to-members.js +0 -23
- package/core/server/data/migrations/versions/3.1/09-add-further-email-permissions.js +0 -25
- package/core/server/data/migrations/versions/3.1/10-add-email-error-data-column.js +0 -8
- package/core/server/data/migrations/versions/3.11/01-remove-broken-complimentary-plan-from-members-settings.js +0 -68
- package/core/server/data/migrations/versions/3.12/01-add-identity-permission.js +0 -7
- package/core/server/data/migrations/versions/3.12/02-remove-legacy-is-paid-flag-from-settings.js +0 -93
- package/core/server/data/migrations/versions/3.18/01-add-email-preview-permissions-to-roles.js +0 -39
- package/core/server/data/migrations/versions/3.18/02-add-members_stripe_connect-auth-permissions.js +0 -7
- package/core/server/data/migrations/versions/3.19/01-update-member-from-email-address.js +0 -91
- package/core/server/data/migrations/versions/3.2/01-add-cancel-at-period-end-to-subscriptions.js +0 -7
- package/core/server/data/migrations/versions/3.22/01-removed-legacy-values-from-settings-table.js +0 -65
- package/core/server/data/migrations/versions/3.22/02-settings-key-renames.js +0 -90
- package/core/server/data/migrations/versions/3.22/03-add-group-and-flags-to-settings.js +0 -15
- package/core/server/data/migrations/versions/3.22/04-populate-settings-groups-and-flags.js +0 -194
- package/core/server/data/migrations/versions/3.22/05-migrate-members-subscription-settings.js +0 -182
- package/core/server/data/migrations/versions/3.22/06-migrate-stripe-connect-settings.js +0 -132
- package/core/server/data/migrations/versions/3.22/07-update-type-for-settings.js +0 -137
- package/core/server/data/migrations/versions/3.23/01-migrate-bulk-email-settings.js +0 -65
- package/core/server/data/migrations/versions/3.23/02-remove-bulk-email-settings.js +0 -48
- package/core/server/data/migrations/versions/3.23/03-update-portal-button-setting.js +0 -24
- package/core/server/data/migrations/versions/3.23/04-add-meta-columns-to-tags-table.js +0 -54
- package/core/server/data/migrations/versions/3.24/01-populate-group-for-new-portal-settings.js +0 -38
- package/core/server/data/migrations/versions/3.25/01-add-members-stripe-webhook-settings.js +0 -22
- package/core/server/data/migrations/versions/3.26/01-add-amp-gtag-id-setting.js +0 -20
- package/core/server/data/migrations/versions/3.29/01-remove-duplicate-subscriptions.js +0 -53
- package/core/server/data/migrations/versions/3.29/02-remove-duplicate-customers.js +0 -53
- package/core/server/data/migrations/versions/3.29/03-remove-orphaned-customers.js +0 -35
- package/core/server/data/migrations/versions/3.29/04-remove-orphaned-subscriptions.js +0 -35
- package/core/server/data/migrations/versions/3.29/05-add-member-constraints.js +0 -177
- package/core/server/data/migrations/versions/3.30/01-add-member-signin-url-permission-roles.js +0 -8
- package/core/server/data/migrations/versions/3.32/01-add-member-support-address-setting.js +0 -27
- package/core/server/data/migrations/versions/3.32/02-add-member-reply-address-setting.js +0 -20
- package/core/server/data/migrations/versions/3.32/03-add-routes-hash-setting.js +0 -20
- package/core/server/data/migrations/versions/3.33/01-add-email-recipients-tables.js +0 -8
- package/core/server/data/migrations/versions/3.34/01-add-tokens-table.js +0 -2
- package/core/server/data/migrations/versions/3.35/01-add-address-columns-to-emails-table.js +0 -14
- package/core/server/data/migrations/versions/3.36/01-add-snippets-table.js +0 -2
- package/core/server/data/migrations/versions/3.36/02-add-snippets-permissions.js +0 -56
- package/core/server/data/migrations/versions/3.37/01-update-portal-button-setting.js +0 -30
- package/core/server/data/migrations/versions/3.38/01-add-email-recipient-filter-column.js +0 -8
- package/core/server/data/migrations/versions/3.38/02-populate-email-recipient-filter-column.js +0 -34
- package/core/server/data/migrations/versions/3.38/03-add-recipient-filter-column.js +0 -8
- package/core/server/data/migrations/versions/3.38/04-populate-recipient-filter-column.js +0 -49
- package/core/server/data/migrations/versions/3.38/05-add-emails-track-opens-column.js +0 -7
- package/core/server/data/migrations/versions/3.38/06-add-newsletter-settings.js +0 -16
- package/core/server/data/migrations/versions/3.38/07-migrate-newsletter-settings-from-config.js +0 -48
- package/core/server/data/migrations/versions/3.38/08-repopulate-send-email-when-published-down-migration.js +0 -25
- package/core/server/data/migrations/versions/3.38/09-remove-send-email-when-published-column.js +0 -7
- package/core/server/data/migrations/versions/3.39/01-add-members-signup-redirect-settings.js +0 -16
- package/core/server/data/migrations/versions/3.39/02-add-user-id-to-api-keys-table.js +0 -7
- package/core/server/data/migrations/versions/3.39/03-add-email-track-opens-setting.js +0 -16
- package/core/server/data/migrations/versions/3.39/04-add-cancellation-reason-column.js +0 -7
- package/core/server/data/migrations/versions/3.39/05-remove-unused-columns-on-emails.js +0 -14
- package/core/server/data/migrations/versions/3.39/06-add-email-recipient-index.js +0 -58
- package/core/server/data/migrations/versions/3.39/07-add-email-recipients-event-timestamps.js +0 -19
- package/core/server/data/migrations/versions/3.39/08-add-email-stats-columns.js +0 -22
- package/core/server/data/migrations/versions/3.40/01-add-members-email-open-rate-column.js +0 -8
- package/core/server/data/migrations/versions/3.40/02-add members-email-aggregation-columns.js +0 -16
- package/core/server/data/migrations/versions/3.40/03-populate-members-email-counts.js +0 -15
- package/core/server/data/migrations/versions/3.41/01-add-firstpromoter-settings.js +0 -16
- package/core/server/data/migrations/versions/3.6/1-add-labels-table.js +0 -2
- package/core/server/data/migrations/versions/3.6/2-add-members-labels-table.js +0 -2
- package/core/server/data/migrations/versions/3.6/3-add-labels-permissions.js +0 -47
- package/core/server/data/migrations/versions/3.7/01-fix-incorrect-member-labels-foreign-keys.js +0 -46
- package/core/server/data/migrations/versions/3.8/01-add-geolocation-to-members.js +0 -7
- package/core/server/data/migrations/versions/3.9/01-add-member-sigin-url-permissions.js +0 -7
- package/core/server/services/mail/utils.js +0 -34
- package/core/server/services/url/configs/canary.js +0 -143
- package/core/server/services/url/configs/v3.js +0 -141
- package/core/server/services/url/configs/v4.js +0 -143
- package/core/server/web/api/v2/admin/app.js +0 -43
- package/core/server/web/api/v2/admin/middleware.js +0 -85
- package/core/server/web/api/v2/admin/routes.js +0 -200
- package/core/server/web/api/v2/content/app.js +0 -38
- package/core/server/web/api/v2/content/middleware.js +0 -23
- package/core/server/web/api/v2/content/routes.js +0 -37
- package/core/server/web/api/v3/admin/app.js +0 -43
- package/core/server/web/api/v3/admin/middleware.js +0 -89
- package/core/server/web/api/v3/admin/routes.js +0 -267
- package/core/server/web/api/v3/content/app.js +0 -38
- package/core/server/web/api/v3/content/middleware.js +0 -23
- package/core/server/web/api/v3/content/routes.js +0 -37
- package/core/server/web/oauth/app.js +0 -153
- package/core/server/web/oauth/index.js +0 -1
|
@@ -1,143 +0,0 @@
|
|
|
1
|
-
/*
|
|
2
|
-
* These are the default resources and filters.
|
|
3
|
-
* They contain minimum filters for public accessibility of resources.
|
|
4
|
-
*/
|
|
5
|
-
|
|
6
|
-
// @TODO: keep this similar to ./canary.js until the v5 release
|
|
7
|
-
|
|
8
|
-
module.exports = [
|
|
9
|
-
{
|
|
10
|
-
type: 'posts',
|
|
11
|
-
modelOptions: {
|
|
12
|
-
modelName: 'Post',
|
|
13
|
-
filter: 'status:published+type:post',
|
|
14
|
-
exclude: [
|
|
15
|
-
'title',
|
|
16
|
-
'mobiledoc',
|
|
17
|
-
'html',
|
|
18
|
-
'plaintext',
|
|
19
|
-
// @TODO: https://github.com/TryGhost/Ghost/issues/10335
|
|
20
|
-
// 'page',
|
|
21
|
-
'status',
|
|
22
|
-
'amp',
|
|
23
|
-
'codeinjection_head',
|
|
24
|
-
'codeinjection_foot',
|
|
25
|
-
'meta_title',
|
|
26
|
-
'meta_description',
|
|
27
|
-
'custom_excerpt',
|
|
28
|
-
'og_image',
|
|
29
|
-
'og_title',
|
|
30
|
-
'og_description',
|
|
31
|
-
'twitter_image',
|
|
32
|
-
'twitter_title',
|
|
33
|
-
'twitter_description',
|
|
34
|
-
'custom_template',
|
|
35
|
-
'locale'
|
|
36
|
-
],
|
|
37
|
-
withRelated: ['tags', 'authors'],
|
|
38
|
-
withRelatedPrimary: {
|
|
39
|
-
primary_tag: 'tags',
|
|
40
|
-
primary_author: 'authors'
|
|
41
|
-
},
|
|
42
|
-
withRelatedFields: {
|
|
43
|
-
tags: ['tags.id', 'tags.slug'],
|
|
44
|
-
authors: ['users.id', 'users.slug']
|
|
45
|
-
}
|
|
46
|
-
},
|
|
47
|
-
events: {
|
|
48
|
-
add: 'post.published',
|
|
49
|
-
update: 'post.published.edited',
|
|
50
|
-
remove: 'post.unpublished'
|
|
51
|
-
}
|
|
52
|
-
},
|
|
53
|
-
{
|
|
54
|
-
type: 'pages',
|
|
55
|
-
modelOptions: {
|
|
56
|
-
modelName: 'Post',
|
|
57
|
-
exclude: [
|
|
58
|
-
'title',
|
|
59
|
-
'mobiledoc',
|
|
60
|
-
'html',
|
|
61
|
-
'plaintext',
|
|
62
|
-
// @TODO: https://github.com/TryGhost/Ghost/issues/10335
|
|
63
|
-
// 'page',
|
|
64
|
-
// 'status',
|
|
65
|
-
'amp',
|
|
66
|
-
'codeinjection_head',
|
|
67
|
-
'codeinjection_foot',
|
|
68
|
-
'meta_title',
|
|
69
|
-
'meta_description',
|
|
70
|
-
'custom_excerpt',
|
|
71
|
-
'og_image',
|
|
72
|
-
'og_title',
|
|
73
|
-
'og_description',
|
|
74
|
-
'twitter_image',
|
|
75
|
-
'twitter_title',
|
|
76
|
-
'twitter_description',
|
|
77
|
-
'custom_template',
|
|
78
|
-
'locale',
|
|
79
|
-
'tags',
|
|
80
|
-
'authors',
|
|
81
|
-
'primary_tag',
|
|
82
|
-
'primary_author'
|
|
83
|
-
],
|
|
84
|
-
filter: 'status:published+type:page'
|
|
85
|
-
},
|
|
86
|
-
events: {
|
|
87
|
-
add: 'page.published',
|
|
88
|
-
update: 'page.published.edited',
|
|
89
|
-
remove: 'page.unpublished'
|
|
90
|
-
}
|
|
91
|
-
},
|
|
92
|
-
{
|
|
93
|
-
type: 'tags',
|
|
94
|
-
keep: ['id', 'slug'],
|
|
95
|
-
modelOptions: {
|
|
96
|
-
modelName: 'Tag',
|
|
97
|
-
exclude: [
|
|
98
|
-
'description',
|
|
99
|
-
'meta_title',
|
|
100
|
-
'meta_description',
|
|
101
|
-
'parent_id'
|
|
102
|
-
],
|
|
103
|
-
filter: 'visibility:public',
|
|
104
|
-
shouldHavePosts: {
|
|
105
|
-
joinTo: 'tag_id',
|
|
106
|
-
joinTable: 'posts_tags'
|
|
107
|
-
}
|
|
108
|
-
},
|
|
109
|
-
events: {
|
|
110
|
-
add: 'tag.added',
|
|
111
|
-
update: ['tag.edited', 'tag.attached', 'tag.detached'],
|
|
112
|
-
remove: 'tag.deleted'
|
|
113
|
-
}
|
|
114
|
-
},
|
|
115
|
-
{
|
|
116
|
-
type: 'authors',
|
|
117
|
-
modelOptions: {
|
|
118
|
-
modelName: 'User',
|
|
119
|
-
exclude: [
|
|
120
|
-
'bio',
|
|
121
|
-
'website',
|
|
122
|
-
'location',
|
|
123
|
-
'facebook',
|
|
124
|
-
'twitter',
|
|
125
|
-
'locale',
|
|
126
|
-
'accessibility',
|
|
127
|
-
'meta_title',
|
|
128
|
-
'meta_description',
|
|
129
|
-
'tour'
|
|
130
|
-
],
|
|
131
|
-
filter: 'visibility:public',
|
|
132
|
-
shouldHavePosts: {
|
|
133
|
-
joinTo: 'author_id',
|
|
134
|
-
joinTable: 'posts_authors'
|
|
135
|
-
}
|
|
136
|
-
},
|
|
137
|
-
events: {
|
|
138
|
-
add: 'user.activated',
|
|
139
|
-
update: ['user.activated.edited', 'user.attached', 'user.detached'],
|
|
140
|
-
remove: 'user.deleted'
|
|
141
|
-
}
|
|
142
|
-
}
|
|
143
|
-
];
|
|
@@ -1,43 +0,0 @@
|
|
|
1
|
-
const debug = require('@tryghost/debug')('web:v2:admin:app');
|
|
2
|
-
const boolParser = require('express-query-boolean');
|
|
3
|
-
const express = require('../../../../../shared/express');
|
|
4
|
-
const sentry = require('../../../../../shared/sentry');
|
|
5
|
-
const bodyParser = require('body-parser');
|
|
6
|
-
const shared = require('../../../shared');
|
|
7
|
-
const apiMw = require('../../middleware');
|
|
8
|
-
const routes = require('./routes');
|
|
9
|
-
const errorHandler = require('@tryghost/mw-error-handler');
|
|
10
|
-
const APIVersionCompatibilityService = require('../../../../services/api-version-compatibility');
|
|
11
|
-
|
|
12
|
-
module.exports = function setupApiApp() {
|
|
13
|
-
debug('Admin API v2 setup start');
|
|
14
|
-
const apiApp = express('v2 admin');
|
|
15
|
-
|
|
16
|
-
// API middleware
|
|
17
|
-
|
|
18
|
-
// Body parsing
|
|
19
|
-
apiApp.use(bodyParser.json({limit: '1mb'}));
|
|
20
|
-
apiApp.use(bodyParser.urlencoded({extended: true, limit: '1mb'}));
|
|
21
|
-
|
|
22
|
-
// Query parsing
|
|
23
|
-
apiApp.use(boolParser());
|
|
24
|
-
|
|
25
|
-
// Check version matches for API requests, depends on res.locals.safeVersion being set
|
|
26
|
-
// Therefore must come after themeHandler.ghostLocals, for now
|
|
27
|
-
apiApp.use(apiMw.versionMatch);
|
|
28
|
-
|
|
29
|
-
// Admin API shouldn't be cached
|
|
30
|
-
apiApp.use(shared.middleware.cacheControl('private'));
|
|
31
|
-
|
|
32
|
-
// Routing
|
|
33
|
-
apiApp.use(routes());
|
|
34
|
-
|
|
35
|
-
// API error handling
|
|
36
|
-
apiApp.use(errorHandler.resourceNotFound);
|
|
37
|
-
apiApp.use(APIVersionCompatibilityService.errorHandler);
|
|
38
|
-
apiApp.use(errorHandler.handleJSONResponseV2(sentry));
|
|
39
|
-
|
|
40
|
-
debug('Admin API v2 setup end');
|
|
41
|
-
|
|
42
|
-
return apiApp;
|
|
43
|
-
};
|
|
@@ -1,85 +0,0 @@
|
|
|
1
|
-
const errors = require('@tryghost/errors');
|
|
2
|
-
const tpl = require('@tryghost/tpl');
|
|
3
|
-
const auth = require('../../../../services/auth');
|
|
4
|
-
const shared = require('../../../shared');
|
|
5
|
-
const apiMw = require('../../middleware');
|
|
6
|
-
|
|
7
|
-
const messages = {
|
|
8
|
-
notImplemented: 'The server does not support the functionality required to fulfill the request.'
|
|
9
|
-
};
|
|
10
|
-
|
|
11
|
-
const notImplemented = function (req, res, next) {
|
|
12
|
-
// CASE: user is logged in, allow
|
|
13
|
-
if (!req.api_key) {
|
|
14
|
-
return next();
|
|
15
|
-
}
|
|
16
|
-
|
|
17
|
-
// @NOTE: integrations have limited access for now
|
|
18
|
-
// all APIs are considered to be in "maintenance" stability index
|
|
19
|
-
const allowlisted = {
|
|
20
|
-
site: ['GET'],
|
|
21
|
-
posts: ['GET', 'PUT', 'DELETE', 'POST'],
|
|
22
|
-
pages: ['GET', 'PUT', 'DELETE', 'POST'],
|
|
23
|
-
images: ['POST'],
|
|
24
|
-
webhooks: ['POST', 'PUT', 'DELETE'],
|
|
25
|
-
tags: ['GET', 'PUT', 'DELETE', 'POST'],
|
|
26
|
-
users: ['GET'],
|
|
27
|
-
themes: ['POST', 'PUT'],
|
|
28
|
-
config: ['GET'],
|
|
29
|
-
schedules: ['PUT'],
|
|
30
|
-
db: ['POST']
|
|
31
|
-
};
|
|
32
|
-
|
|
33
|
-
const match = req.url.match(/^\/(\w+)\/?/);
|
|
34
|
-
|
|
35
|
-
if (match) {
|
|
36
|
-
const entity = match[1];
|
|
37
|
-
|
|
38
|
-
if (allowlisted[entity] && allowlisted[entity].includes(req.method)) {
|
|
39
|
-
return next();
|
|
40
|
-
}
|
|
41
|
-
}
|
|
42
|
-
|
|
43
|
-
next(new errors.InternalServerError({
|
|
44
|
-
errorType: 'NotImplementedError',
|
|
45
|
-
message: tpl(messages.notImplemented),
|
|
46
|
-
statusCode: '501'
|
|
47
|
-
}));
|
|
48
|
-
};
|
|
49
|
-
|
|
50
|
-
/**
|
|
51
|
-
* Authentication for private endpoints
|
|
52
|
-
*/
|
|
53
|
-
module.exports.authAdminApi = [
|
|
54
|
-
auth.authenticate.authenticateAdminApi,
|
|
55
|
-
auth.authorize.authorizeAdminApi,
|
|
56
|
-
apiMw.updateUserLastSeen,
|
|
57
|
-
apiMw.cors,
|
|
58
|
-
shared.middleware.urlRedirects.adminSSLAndHostRedirect,
|
|
59
|
-
shared.middleware.prettyUrls,
|
|
60
|
-
notImplemented
|
|
61
|
-
];
|
|
62
|
-
|
|
63
|
-
/**
|
|
64
|
-
* Authentication for private endpoints with token in URL
|
|
65
|
-
* Ex.: For scheduler publish endpoint
|
|
66
|
-
*/
|
|
67
|
-
module.exports.authAdminApiWithUrl = [
|
|
68
|
-
auth.authenticate.authenticateAdminApiWithUrl,
|
|
69
|
-
auth.authorize.authorizeAdminApi,
|
|
70
|
-
apiMw.updateUserLastSeen,
|
|
71
|
-
apiMw.cors,
|
|
72
|
-
shared.middleware.urlRedirects.adminSSLAndHostRedirect,
|
|
73
|
-
shared.middleware.prettyUrls,
|
|
74
|
-
notImplemented
|
|
75
|
-
];
|
|
76
|
-
|
|
77
|
-
/**
|
|
78
|
-
* Middleware for public admin endpoints
|
|
79
|
-
*/
|
|
80
|
-
module.exports.publicAdminApi = [
|
|
81
|
-
apiMw.cors,
|
|
82
|
-
shared.middleware.urlRedirects.adminSSLAndHostRedirect,
|
|
83
|
-
shared.middleware.prettyUrls,
|
|
84
|
-
notImplemented
|
|
85
|
-
];
|
|
@@ -1,200 +0,0 @@
|
|
|
1
|
-
const express = require('../../../../../shared/express');
|
|
2
|
-
const api = require('../../../../api').v2;
|
|
3
|
-
const mw = require('./middleware');
|
|
4
|
-
const apiMw = require('../../middleware');
|
|
5
|
-
|
|
6
|
-
const shared = require('../../../shared');
|
|
7
|
-
|
|
8
|
-
module.exports = function apiRoutes() {
|
|
9
|
-
const router = express.Router('v2 admin');
|
|
10
|
-
|
|
11
|
-
// alias delete with del
|
|
12
|
-
router.del = router.delete;
|
|
13
|
-
|
|
14
|
-
router.use(apiMw.cors);
|
|
15
|
-
|
|
16
|
-
const http = api.http;
|
|
17
|
-
|
|
18
|
-
// ## Public
|
|
19
|
-
router.get('/site', mw.publicAdminApi, http(api.site.read));
|
|
20
|
-
|
|
21
|
-
// ## Configuration
|
|
22
|
-
router.get('/config', mw.authAdminApi, http(api.config.read));
|
|
23
|
-
|
|
24
|
-
// ## Posts
|
|
25
|
-
router.get('/posts', mw.authAdminApi, http(api.posts.browse));
|
|
26
|
-
router.post('/posts', mw.authAdminApi, http(api.posts.add));
|
|
27
|
-
router.get('/posts/:id', mw.authAdminApi, http(api.posts.read));
|
|
28
|
-
router.get('/posts/slug/:slug', mw.authAdminApi, http(api.posts.read));
|
|
29
|
-
router.put('/posts/:id', mw.authAdminApi, http(api.posts.edit));
|
|
30
|
-
router.del('/posts/:id', mw.authAdminApi, http(api.posts.destroy));
|
|
31
|
-
|
|
32
|
-
// ## Pages
|
|
33
|
-
router.get('/pages', mw.authAdminApi, http(api.pages.browse));
|
|
34
|
-
router.post('/pages', mw.authAdminApi, http(api.pages.add));
|
|
35
|
-
router.get('/pages/:id', mw.authAdminApi, http(api.pages.read));
|
|
36
|
-
router.get('/pages/slug/:slug', mw.authAdminApi, http(api.pages.read));
|
|
37
|
-
router.put('/pages/:id', mw.authAdminApi, http(api.pages.edit));
|
|
38
|
-
router.del('/pages/:id', mw.authAdminApi, http(api.pages.destroy));
|
|
39
|
-
|
|
40
|
-
// # Integrations
|
|
41
|
-
|
|
42
|
-
router.get('/integrations', mw.authAdminApi, http(api.integrations.browse));
|
|
43
|
-
router.get('/integrations/:id', mw.authAdminApi, http(api.integrations.read));
|
|
44
|
-
router.post('/integrations', mw.authAdminApi, http(api.integrations.add));
|
|
45
|
-
router.put('/integrations/:id', mw.authAdminApi, http(api.integrations.edit));
|
|
46
|
-
router.del('/integrations/:id', mw.authAdminApi, http(api.integrations.destroy));
|
|
47
|
-
|
|
48
|
-
// ## Schedules
|
|
49
|
-
router.put('/schedules/:resource/:id', mw.authAdminApiWithUrl, http(api.schedules.publish));
|
|
50
|
-
|
|
51
|
-
// ## Settings
|
|
52
|
-
router.get('/settings/routes/yaml', mw.authAdminApi, http(api.settings.download));
|
|
53
|
-
router.post('/settings/routes/yaml',
|
|
54
|
-
mw.authAdminApi,
|
|
55
|
-
apiMw.upload.single('routes'),
|
|
56
|
-
apiMw.upload.validation({type: 'routes'}),
|
|
57
|
-
http(api.settings.upload)
|
|
58
|
-
);
|
|
59
|
-
|
|
60
|
-
router.get('/settings', mw.authAdminApi, http(api.settings.browse));
|
|
61
|
-
router.get('/settings/:key', mw.authAdminApi, http(api.settings.read));
|
|
62
|
-
router.put('/settings', mw.authAdminApi, http(api.settings.edit));
|
|
63
|
-
|
|
64
|
-
// ## Users
|
|
65
|
-
router.get('/users', mw.authAdminApi, http(api.users.browse));
|
|
66
|
-
router.get('/users/:id', mw.authAdminApi, http(api.users.read));
|
|
67
|
-
router.get('/users/slug/:slug', mw.authAdminApi, http(api.users.read));
|
|
68
|
-
// NOTE: We don't expose any email addresses via the public api.
|
|
69
|
-
router.get('/users/email/:email', mw.authAdminApi, http(api.users.read));
|
|
70
|
-
|
|
71
|
-
router.put('/users/password', mw.authAdminApi, http(api.users.changePassword));
|
|
72
|
-
router.put('/users/owner', mw.authAdminApi, http(api.users.transferOwnership));
|
|
73
|
-
router.put('/users/:id', mw.authAdminApi, http(api.users.edit));
|
|
74
|
-
router.del('/users/:id', mw.authAdminApi, http(api.users.destroy));
|
|
75
|
-
|
|
76
|
-
// ## Tags
|
|
77
|
-
router.get('/tags', mw.authAdminApi, http(api.tags.browse));
|
|
78
|
-
router.get('/tags/:id', mw.authAdminApi, http(api.tags.read));
|
|
79
|
-
router.get('/tags/slug/:slug', mw.authAdminApi, http(api.tags.read));
|
|
80
|
-
router.post('/tags', mw.authAdminApi, http(api.tags.add));
|
|
81
|
-
router.put('/tags/:id', mw.authAdminApi, http(api.tags.edit));
|
|
82
|
-
router.del('/tags/:id', mw.authAdminApi, http(api.tags.destroy));
|
|
83
|
-
|
|
84
|
-
// ## Roles
|
|
85
|
-
router.get('/roles/', mw.authAdminApi, http(api.roles.browse));
|
|
86
|
-
|
|
87
|
-
// ## Slugs
|
|
88
|
-
router.get('/slugs/:type/:name', mw.authAdminApi, http(api.slugs.generate));
|
|
89
|
-
|
|
90
|
-
// ## Themes
|
|
91
|
-
router.get('/themes/', mw.authAdminApi, http(api.themes.browse));
|
|
92
|
-
|
|
93
|
-
router.get('/themes/:name/download',
|
|
94
|
-
mw.authAdminApi,
|
|
95
|
-
http(api.themes.download)
|
|
96
|
-
);
|
|
97
|
-
|
|
98
|
-
router.post('/themes/upload',
|
|
99
|
-
mw.authAdminApi,
|
|
100
|
-
apiMw.upload.single('file'),
|
|
101
|
-
apiMw.upload.validation({type: 'themes'}),
|
|
102
|
-
http(api.themes.upload)
|
|
103
|
-
);
|
|
104
|
-
|
|
105
|
-
router.put('/themes/:name/activate',
|
|
106
|
-
mw.authAdminApi,
|
|
107
|
-
http(api.themes.activate)
|
|
108
|
-
);
|
|
109
|
-
|
|
110
|
-
router.del('/themes/:name',
|
|
111
|
-
mw.authAdminApi,
|
|
112
|
-
http(api.themes.destroy)
|
|
113
|
-
);
|
|
114
|
-
|
|
115
|
-
// ## Notifications
|
|
116
|
-
router.get('/notifications', mw.authAdminApi, http(api.notifications.browse));
|
|
117
|
-
router.post('/notifications', mw.authAdminApi, http(api.notifications.add));
|
|
118
|
-
router.del('/notifications/:notification_id', mw.authAdminApi, http(api.notifications.destroy));
|
|
119
|
-
|
|
120
|
-
// ## DB
|
|
121
|
-
router.get('/db', mw.authAdminApi, http(api.db.exportContent));
|
|
122
|
-
router.post('/db',
|
|
123
|
-
mw.authAdminApi,
|
|
124
|
-
apiMw.upload.single('importfile'),
|
|
125
|
-
apiMw.upload.validation({type: 'db'}),
|
|
126
|
-
http(api.db.importContent)
|
|
127
|
-
);
|
|
128
|
-
router.del('/db', mw.authAdminApi, http(api.db.deleteAllContent));
|
|
129
|
-
router.post('/db/backup',
|
|
130
|
-
mw.authAdminApi,
|
|
131
|
-
http(api.db.backupContent)
|
|
132
|
-
);
|
|
133
|
-
|
|
134
|
-
// ## Mail
|
|
135
|
-
router.post('/mail', mw.authAdminApi, http(api.mail.send));
|
|
136
|
-
router.post('/mail/test', mw.authAdminApi, http(api.mail.sendTest));
|
|
137
|
-
|
|
138
|
-
// ## Slack
|
|
139
|
-
router.post('/slack/test', mw.authAdminApi, http(api.slack.sendTest));
|
|
140
|
-
|
|
141
|
-
// ## Sessions
|
|
142
|
-
router.get('/session', mw.authAdminApi, http(api.session.read));
|
|
143
|
-
// We don't need auth when creating a new session (logging in)
|
|
144
|
-
router.post('/session',
|
|
145
|
-
shared.middleware.brute.globalBlock,
|
|
146
|
-
shared.middleware.brute.userLogin,
|
|
147
|
-
http(api.session.add)
|
|
148
|
-
);
|
|
149
|
-
router.del('/session', mw.authAdminApi, http(api.session.delete));
|
|
150
|
-
|
|
151
|
-
// ## Authentication
|
|
152
|
-
router.post('/authentication/passwordreset',
|
|
153
|
-
shared.middleware.brute.globalReset,
|
|
154
|
-
shared.middleware.brute.userReset,
|
|
155
|
-
http(api.authentication.generateResetToken)
|
|
156
|
-
);
|
|
157
|
-
router.put('/authentication/passwordreset', shared.middleware.brute.globalBlock, http(api.authentication.resetPassword));
|
|
158
|
-
router.post('/authentication/invitation', http(api.authentication.acceptInvitation));
|
|
159
|
-
router.get('/authentication/invitation', http(api.authentication.isInvitation));
|
|
160
|
-
router.post('/authentication/setup', http(api.authentication.setup));
|
|
161
|
-
router.put('/authentication/setup', mw.authAdminApi, http(api.authentication.updateSetup));
|
|
162
|
-
router.get('/authentication/setup', http(api.authentication.isSetup));
|
|
163
|
-
|
|
164
|
-
// ## Images
|
|
165
|
-
router.post('/images/upload',
|
|
166
|
-
mw.authAdminApi,
|
|
167
|
-
apiMw.upload.single('file'),
|
|
168
|
-
apiMw.upload.validation({type: 'images'}),
|
|
169
|
-
apiMw.normalizeImage,
|
|
170
|
-
http(api.images.upload)
|
|
171
|
-
);
|
|
172
|
-
|
|
173
|
-
// ## Invites
|
|
174
|
-
router.get('/invites', mw.authAdminApi, http(api.invites.browse));
|
|
175
|
-
router.get('/invites/:id', mw.authAdminApi, http(api.invites.read));
|
|
176
|
-
router.post('/invites', mw.authAdminApi, http(api.invites.add));
|
|
177
|
-
router.del('/invites/:id', mw.authAdminApi, http(api.invites.destroy));
|
|
178
|
-
|
|
179
|
-
// ## Redirects (JSON based)
|
|
180
|
-
router.get('/redirects/json', mw.authAdminApi, http(api.redirects.download));
|
|
181
|
-
router.post('/redirects/json',
|
|
182
|
-
mw.authAdminApi,
|
|
183
|
-
apiMw.upload.single('redirects'),
|
|
184
|
-
apiMw.upload.validation({type: 'redirects'}),
|
|
185
|
-
http(api.redirects.upload)
|
|
186
|
-
);
|
|
187
|
-
|
|
188
|
-
// ## Webhooks (RESTHooks)
|
|
189
|
-
router.post('/webhooks', mw.authAdminApi, http(api.webhooks.add));
|
|
190
|
-
router.put('/webhooks/:id', mw.authAdminApi, http(api.webhooks.edit));
|
|
191
|
-
router.del('/webhooks/:id', mw.authAdminApi, http(api.webhooks.destroy));
|
|
192
|
-
|
|
193
|
-
// ## Oembed (fetch response from oembed provider)
|
|
194
|
-
router.get('/oembed', mw.authAdminApi, http(api.oembed.read));
|
|
195
|
-
|
|
196
|
-
// ## Actions
|
|
197
|
-
router.get('/actions/:type/:id', mw.authAdminApi, http(api.actions.browse));
|
|
198
|
-
|
|
199
|
-
return router;
|
|
200
|
-
};
|
|
@@ -1,38 +0,0 @@
|
|
|
1
|
-
const debug = require('@tryghost/debug')('web:api:v2:content:app');
|
|
2
|
-
const boolParser = require('express-query-boolean');
|
|
3
|
-
const bodyParser = require('body-parser');
|
|
4
|
-
const express = require('../../../../../shared/express');
|
|
5
|
-
const sentry = require('../../../../../shared/sentry');
|
|
6
|
-
const shared = require('../../../shared');
|
|
7
|
-
const routes = require('./routes');
|
|
8
|
-
const errorHandler = require('@tryghost/mw-error-handler');
|
|
9
|
-
const versionMissmatchHandler = require('@tryghost/mw-api-version-mismatch');
|
|
10
|
-
const {APIVersionCompatibilityServiceInstance} = require('../../../../services/api-version-compatibility');
|
|
11
|
-
|
|
12
|
-
module.exports = function setupApiApp() {
|
|
13
|
-
debug('Content API v2 setup start');
|
|
14
|
-
const apiApp = express('v2 content');
|
|
15
|
-
|
|
16
|
-
// API middleware
|
|
17
|
-
|
|
18
|
-
// @NOTE: req.body is undefined if we don't use this parser, this can trouble if components rely on req.body being present
|
|
19
|
-
apiApp.use(bodyParser.json({limit: '1mb'}));
|
|
20
|
-
|
|
21
|
-
// Query parsing
|
|
22
|
-
apiApp.use(boolParser());
|
|
23
|
-
|
|
24
|
-
// API shouldn't be cached
|
|
25
|
-
apiApp.use(shared.middleware.cacheControl('private'));
|
|
26
|
-
|
|
27
|
-
// Routing
|
|
28
|
-
apiApp.use(routes());
|
|
29
|
-
|
|
30
|
-
// API error handling
|
|
31
|
-
apiApp.use(errorHandler.resourceNotFound);
|
|
32
|
-
apiApp.use(versionMissmatchHandler(APIVersionCompatibilityServiceInstance));
|
|
33
|
-
apiApp.use(errorHandler.handleJSONResponse(sentry));
|
|
34
|
-
|
|
35
|
-
debug('Content API v2 setup end');
|
|
36
|
-
|
|
37
|
-
return apiApp;
|
|
38
|
-
};
|
|
@@ -1,23 +0,0 @@
|
|
|
1
|
-
const cors = require('cors');
|
|
2
|
-
const auth = require('../../../../services/auth');
|
|
3
|
-
const shared = require('../../../shared');
|
|
4
|
-
|
|
5
|
-
/**
|
|
6
|
-
* Auth Middleware Packages
|
|
7
|
-
*
|
|
8
|
-
* IMPORTANT
|
|
9
|
-
* - cors middleware MUST happen before pretty urls, because otherwise cors header can get lost on redirect
|
|
10
|
-
* - url redirects MUST happen after cors, otherwise cors header can get lost on redirect
|
|
11
|
-
*/
|
|
12
|
-
|
|
13
|
-
/**
|
|
14
|
-
* Authentication for public endpoints
|
|
15
|
-
*/
|
|
16
|
-
module.exports.authenticatePublic = [
|
|
17
|
-
shared.middleware.brute.contentApiKey,
|
|
18
|
-
auth.authenticate.authenticateContentApi,
|
|
19
|
-
auth.authorize.authorizeContentApi,
|
|
20
|
-
cors(),
|
|
21
|
-
shared.middleware.urlRedirects.adminSSLAndHostRedirect,
|
|
22
|
-
shared.middleware.prettyUrls
|
|
23
|
-
];
|
|
@@ -1,37 +0,0 @@
|
|
|
1
|
-
const express = require('../../../../../shared/express');
|
|
2
|
-
const cors = require('cors');
|
|
3
|
-
const api = require('../../../../api').v2;
|
|
4
|
-
const mw = require('./middleware');
|
|
5
|
-
|
|
6
|
-
module.exports = function apiRoutes() {
|
|
7
|
-
const router = express.Router('v2 content');
|
|
8
|
-
|
|
9
|
-
router.use(cors());
|
|
10
|
-
|
|
11
|
-
const http = api.http;
|
|
12
|
-
|
|
13
|
-
// ## Posts
|
|
14
|
-
router.get('/posts', mw.authenticatePublic, http(api.postsPublic.browse));
|
|
15
|
-
router.get('/posts/:id', mw.authenticatePublic, http(api.postsPublic.read));
|
|
16
|
-
router.get('/posts/slug/:slug', mw.authenticatePublic, http(api.postsPublic.read));
|
|
17
|
-
|
|
18
|
-
// ## Pages
|
|
19
|
-
router.get('/pages', mw.authenticatePublic, http(api.pagesPublic.browse));
|
|
20
|
-
router.get('/pages/:id', mw.authenticatePublic, http(api.pagesPublic.read));
|
|
21
|
-
router.get('/pages/slug/:slug', mw.authenticatePublic, http(api.pagesPublic.read));
|
|
22
|
-
|
|
23
|
-
// ## Users
|
|
24
|
-
router.get('/authors', mw.authenticatePublic, http(api.authorsPublic.browse));
|
|
25
|
-
router.get('/authors/:id', mw.authenticatePublic, http(api.authorsPublic.read));
|
|
26
|
-
router.get('/authors/slug/:slug', mw.authenticatePublic, http(api.authorsPublic.read));
|
|
27
|
-
|
|
28
|
-
// ## Tags
|
|
29
|
-
router.get('/tags', mw.authenticatePublic, http(api.tagsPublic.browse));
|
|
30
|
-
router.get('/tags/:id', mw.authenticatePublic, http(api.tagsPublic.read));
|
|
31
|
-
router.get('/tags/slug/:slug', mw.authenticatePublic, http(api.tagsPublic.read));
|
|
32
|
-
|
|
33
|
-
// ## Settings
|
|
34
|
-
router.get('/settings', mw.authenticatePublic, http(api.publicSettings.browse));
|
|
35
|
-
|
|
36
|
-
return router;
|
|
37
|
-
};
|
|
@@ -1,43 +0,0 @@
|
|
|
1
|
-
const debug = require('@tryghost/debug')('web:v3:admin:app');
|
|
2
|
-
const boolParser = require('express-query-boolean');
|
|
3
|
-
const express = require('../../../../../shared/express');
|
|
4
|
-
const sentry = require('../../../../../shared/sentry');
|
|
5
|
-
const bodyParser = require('body-parser');
|
|
6
|
-
const shared = require('../../../shared');
|
|
7
|
-
const apiMw = require('../../middleware');
|
|
8
|
-
const routes = require('./routes');
|
|
9
|
-
const errorHandler = require('@tryghost/mw-error-handler');
|
|
10
|
-
const APIVersionCompatibilityService = require('../../../../services/api-version-compatibility');
|
|
11
|
-
|
|
12
|
-
module.exports = function setupApiApp() {
|
|
13
|
-
debug('Admin API v3 setup start');
|
|
14
|
-
const apiApp = express('v3 admin');
|
|
15
|
-
|
|
16
|
-
// API middleware
|
|
17
|
-
|
|
18
|
-
// Body parsing
|
|
19
|
-
apiApp.use(bodyParser.json({limit: '1mb'}));
|
|
20
|
-
apiApp.use(bodyParser.urlencoded({extended: true, limit: '1mb'}));
|
|
21
|
-
|
|
22
|
-
// Query parsing
|
|
23
|
-
apiApp.use(boolParser());
|
|
24
|
-
|
|
25
|
-
// Check version matches for API requests, depends on res.locals.safeVersion being set
|
|
26
|
-
// Therefore must come after themeHandler.ghostLocals, for now
|
|
27
|
-
apiApp.use(apiMw.versionMatch);
|
|
28
|
-
|
|
29
|
-
// Admin API shouldn't be cached
|
|
30
|
-
apiApp.use(shared.middleware.cacheControl('private'));
|
|
31
|
-
|
|
32
|
-
// Routing
|
|
33
|
-
apiApp.use(routes());
|
|
34
|
-
|
|
35
|
-
// API error handling
|
|
36
|
-
apiApp.use(errorHandler.resourceNotFound);
|
|
37
|
-
apiApp.use(APIVersionCompatibilityService.errorHandler);
|
|
38
|
-
apiApp.use(errorHandler.handleJSONResponseV2(sentry));
|
|
39
|
-
|
|
40
|
-
debug('Admin API v3 setup end');
|
|
41
|
-
|
|
42
|
-
return apiApp;
|
|
43
|
-
};
|