about summary refs log tree commit diff
path: root/streaming
diff options
context:
space:
mode:
authorClworld <clworld@ggtea.org>2017-05-28 06:27:54 +0900
committerEugen Rochko <eugen@zeonfederated.com>2017-05-27 23:27:54 +0200
commit2e429c0c25c0f82abb6a6b348195cd541052397e (patch)
treeaef32683a4c8e3a02ae325b6d51b3c5f8c0eec31 /streaming
parente0e12b0feefd84437f33a3af1290fce65d5b22a0 (diff)
Reject revoked access_token on Streaming API. (#3367)
Diffstat (limited to 'streaming')
-rw-r--r--streaming/index.js2
1 files changed, 1 insertions, 1 deletions
diff --git a/streaming/index.js b/streaming/index.js
index 908e70d20..5145732e2 100644
--- a/streaming/index.js
+++ b/streaming/index.js
@@ -168,7 +168,7 @@ if (cluster.isMaster) {
         return;
       }
 
-      client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id, users.filtered_languages FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 LIMIT 1', [token], (err, result) => {
+      client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id, users.filtered_languages FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 AND oauth_access_tokens.revoked_at IS NULL LIMIT 1', [token], (err, result) => {
         done();
 
         if (err) {