hj/pleroma
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Delete Tokens and Authorizations on password change

Browse source 
Closes: https://git.pleroma.social/pleroma/pleroma/issues/320
This commit is contained in:
Haelwenn (lanodan) Monnier 2018-10-14 01:45:11 +02:00
commit eacab0fb05
No known key found for this signature in database
GPG key ID: D5B7A8E43C997DEE
5 changed files with 77 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

22
test/web/oauth/authorization_test.exs
View file

@ -55,4 +55,26 @@ defmodule Pleroma.Web.OAuth.AuthorizationTest do
assert {:error, "token expired"} == Authorization.use_token(expired_auth)
end
test "delete authorizations" do
{:ok, app} =
Repo.insert(
App.register_changeset(%App{}, %{
client_name: "client",
scopes: "scope",
redirect_uris: "url"
})
)
user = insert(:user)
{:ok, auth} = Authorization.create_authorization(app, user)
{:ok, auth} = Authorization.use_token(auth)
{auths, _} = Authorization.delete_user_authorizations(user)
{_, invalid} = Authorization.use_token(auth)
assert auth != invalid
end
end