]> cat aescling's git repositories - mastodon.git/commit
cat aescling's git repositories / mastodon.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1c903c7) | patch
Fix other sessions not being logged out on password change (#14252)
authorEugen Rochko <eugen@zeonfederated.com>
Tue, 7 Jul 2020 13:26:31 +0000 (15:26 +0200)
committerGitHub <noreply@github.com>
Tue, 7 Jul 2020 13:26:31 +0000 (15:26 +0200)
commit844870273ffb1a663c768494c265caef6768ff83
tree8edd28a8130e478fd9d396a075e9ca62e5f47be3tree | snapshot
parent1c903c7ad64221ea4102404e1efbc5d1ac3cc076commit | diff
Fix other sessions not being logged out on password change (#14252)

While OAuth tokens were immediately revoked, accessing the home
controller immediately generated new OAuth tokens and "revived"
the session due to a combination of using remember_me tokens and
overwriting the `authenticate_user!` method
app/controllers/auth/passwords_controller.rb diff | blob | history
app/controllers/auth/registrations_controller.rb diff | blob | history
app/controllers/home_controller.rb diff | blob | history
source code fur Kibicat Mastodon