tanyaaja
tanyaaja copied to clipboard
FEAT: Revoke Refresh Tokens on Session-Destroy
Closes (https://github.com/mazipan/tanyaaja/issues/94)
Description
Tested on Logout ✅
HTTP Requests
-------------
GET /_next/static/media/TanyaAja.15bf8495.svg 200 OK
GET /_next/static/chunks/app/login/page.js 200 OK
GET /_next/static/webpack/webpack.22acd9070cb303c3.hot-update.js 200 OK
GET /_next/static/webpack/22acd9070cb303c3.webpack.hot-update.json 200 OK
GET /login 200 OK
GET /login 200 OK
DELETE /api/private/user/session-destroy 200 OK
GET /api/private/user/by-uuid/*** 200 OK
📝 I haven't checked the Delete User flow, but I guess we need to Revoke the Refresh token there as well.
References: