diff options
author | Eugen Rochko <eugen@zeonfederated.com> | 2020-07-07 15:26:31 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2020-07-07 15:26:31 +0200 |
commit | 844870273ffb1a663c768494c265caef6768ff83 (patch) | |
tree | 8edd28a8130e478fd9d396a075e9ca62e5f47be3 /app/controllers/concerns/account_controller_concern.rb | |
parent | 1c903c7ad64221ea4102404e1efbc5d1ac3cc076 (diff) |
Fix other sessions not being logged out on password change (#14252)
While OAuth tokens were immediately revoked, accessing the home controller immediately generated new OAuth tokens and "revived" the session due to a combination of using remember_me tokens and overwriting the `authenticate_user!` method
Diffstat (limited to 'app/controllers/concerns/account_controller_concern.rb')
0 files changed, 0 insertions, 0 deletions