Eugen Rochko 844870273f Fix other sessions not being logged out on password change (#14252) ...

While OAuth tokens were immediately revoked, accessing the home
controller immediately generated new OAuth tokens and "revived"
the session due to a combination of using remember_me tokens and
overwriting the `authenticate_user!` method

2020-07-07 15:26:31 +02:00

807 B

Raw Blame History

View Raw