joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,917 Commits 2 Branches 18 Tags
fd8a11bc274fb6c89a6088b1162b4e694d9b61f3
Commit Graph

3 Commits

Author SHA1 Message Date
Manuel
6d0b2f5346 fix: session object properties can be updated by foreign user; this fixes a security vulnerability in which a foreign user can write to the session object of another user if the session object ID is known; the fix prevents writing to foreign session objects ([GHSA-6w4q-23cf-j9jp](https://github.com/parse-community/parse-server/security/advisories/GHSA-6w4q-23cf-j9jp)) (#8182) 2022-09-20 02:18:07 +02:00
Florent Vilmart
d83a0b6808 Use Prettier JS (#5017) 
* Adds prettier

* Run lint before tests
 2018-09-01 13:58:06 -04:00
Benjamin Wilson Friedman
219ad7224a Fixes sessionTokens being overridden in 'find' (#4332) 
* remove session token replacement code

* adds cases for _User/_Session with sessionToken and with/without masterKey
 2017-11-25 15:28:08 -05:00