diff options
author | Clworld <clworld@ggtea.org> | 2017-05-28 06:27:54 +0900 |
---|---|---|
committer | Eugen Rochko <eugen@zeonfederated.com> | 2017-05-27 23:27:54 +0200 |
commit | 2e429c0c25c0f82abb6a6b348195cd541052397e (patch) | |
tree | aef32683a4c8e3a02ae325b6d51b3c5f8c0eec31 /streaming | |
parent | e0e12b0feefd84437f33a3af1290fce65d5b22a0 (diff) |
Reject revoked access_token on Streaming API. (#3367)
Diffstat (limited to 'streaming')
-rw-r--r-- | streaming/index.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/streaming/index.js b/streaming/index.js index 908e70d20..5145732e2 100644 --- a/streaming/index.js +++ b/streaming/index.js @@ -168,7 +168,7 @@ if (cluster.isMaster) { return; } - client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id, users.filtered_languages FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 LIMIT 1', [token], (err, result) => { + client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id, users.filtered_languages FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 AND oauth_access_tokens.revoked_at IS NULL LIMIT 1', [token], (err, result) => { done(); if (err) { |