Fix other sessions not being logged out on password change (#14252)
While OAuth tokens were immediately revoked, accessing the home controller immediately generated new OAuth tokens and "revived" the session due to a combination of using remember_me tokens and overwriting the `authenticate_user!` methodlocal
parent
1c903c7ad6
commit
844870273f
3 changed files with 14 additions and 3 deletions
Loading…
Reference in new issue