mirror of https://github.com/mastodon/mastodon
Fix other sessions not being logged out on password change (#14252)
While OAuth tokens were immediately revoked, accessing the home controller immediately generated new OAuth tokens and "revived" the session due to a combination of using remember_me tokens and overwriting the `authenticate_user!` methodpull/14259/head
parent
1c903c7ad6
commit
844870273f
Loading…
Reference in New Issue