Michael Bromley
Michael Bromley
Thanks for resurrecting this detailed comment as an issue. I somehow missed it the first time and never replied. This is well worth considering newly. Regarding the possibility of exposing...
Hi @ssex-dev. If you have `authOptions.requireVerification` set to `true` (which is the default), then the attacker would not be able to gain access to the account data without verifying the...
@usama8800 this class of attack is known as an an enumeration attack - basically a way to extract data from the system which we don't want to expose, e.g. all...
Note that since v1.6 it is possible to define a unique index on SKU using the EntityMetadataModifier API: https://www.vendure.io/docs/typescript-api/configuration/entity-options/#entitymetadatamodifier
I spent a good few hours working on this today. The actual implementation is quite straightforward, but the problem was that it was not working for some unknown reason. I...
After giving this some thought, I have decided that this is best handled in conjunction with #1425. It makes sense to have a job like this run periodically and that...
Thanks for the report. This behaviour is defined in this file: https://github.com/vendure-ecommerce/vendure/blob/master/packages/core/src/config/promotion/actions/order-fixed-discount-action.ts In the mean time I advise you create an use your own custom version of this action. Feel...
Hi @simpian thanks for all the extra details. I'll take a closer look into this soon. But the proration logic is, unfortunately, inherently lossy due to rounding. For much more...
I'll need to do more research on it when I get time. I spent a significant amount of time -several days- last time I worked on getting taxes & promotions...
Note: it seems that MySQL automatically adds an index to all FK constraints: https://stackoverflow.com/a/304339/772859 Also confirmed by looking at the schema definition for OrderLine: 