tanyaaja icon indicating copy to clipboard operation
tanyaaja copied to clipboard

Published 20 hours ago verified publisher icon mazipan

FEAT: Revoke Refresh Tokens on Session-Destroy

Open haruelrovix opened this issue 8 months ago • 6 comments

Closes (https://github.com/mazipan/tanyaaja/issues/94)

Description

Tested on Logout ✅

HTTP Requests
-------------

GET    /_next/static/media/TanyaAja.15bf8495.svg                      200 OK
GET    /_next/static/chunks/app/login/page.js                         200 OK
GET    /_next/static/webpack/webpack.22acd9070cb303c3.hot-update.js   200 OK
GET    /_next/static/webpack/22acd9070cb303c3.webpack.hot-update.json 200 OK
GET    /login                                                         200 OK
GET    /login                                                         200 OK
DELETE /api/private/user/session-destroy                              200 OK
GET    /api/private/user/by-uuid/***                                  200 OK

📝 I haven't checked the Delete User flow, but I guess we need to Revoke the Refresh token there as well.

References:

haruelrovix avatar Oct 24 '23 03:10 haruelrovix