moon
/
soapbox
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Revoke OAuth token on logout, fixes #445

This commit is contained in:
Alex Gleason 2020-09-28 13:05:20 -05:00
parent 532e37a347
commit 76b7b32e23
No known key found for this signature in database
GPG Key ID: 7211D1F99744FBB7
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
app/soapbox/actions/auth.js
View File

@ -145,7 +145,17 @@ export function logIn(username, password) {
export function logOut() { export function logOut() {
return (dispatch, getState) => { return (dispatch, getState) => {
const state = getState();
dispatch({ type: AUTH_LOGGED_OUT }); dispatch({ type: AUTH_LOGGED_OUT });
// Attempt to destroy OAuth token on logout
api(getState).post('/oauth/revoke', {
client_id: state.getIn(['auth', 'app', 'client_id']),
client_secret: state.getIn(['auth', 'app', 'client_secret']),
token: state.getIn(['auth', 'user', 'access_token']),
});
dispatch(showAlert('Successfully logged out.', '')); dispatch(showAlert('Successfully logged out.', ''));
}; };
} }