-
- Downloads
Revoke all authorized applications on password reset (#21325)
* Clear sessions on password change
* Rename User::clear_sessions to revoke_access for a clearer meaning
* Add reset paassword controller test
* Use User.find instead of User.find_for_authentication for reset password test
* Use redirect and render for better test meaning in reset password
Co-authored-by: 
Effy Elden <effy@effy.space>
Showing
- app/controllers/auth/passwords_controller.rb 2 additions, 0 deletionsapp/controllers/auth/passwords_controller.rb
- app/models/user.rb 10 additions, 6 deletionsapp/models/user.rb
- spec/controllers/auth/passwords_controller_spec.rb 61 additions, 0 deletionsspec/controllers/auth/passwords_controller_spec.rb
Loading
Please register or sign in to comment