New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Invalidate tokens on password change #1783

Merged

DavisRayM merged 3 commits into master from invalidate-session-on-password-reset

Mar 24, 2020

Commits on Mar 24, 2020

Invalidate tokens on password change
```
- Invalidate a users api and temporary token when they're password
  changes either through the password reset email or through an
  authenticated session.
- Modify test to verify that the api and temporary tokens are renewed
```
DavisRayM committed Mar 24, 2020
Configuration menu
View commit details

Copy full SHA for 550bdc0

Browse repository at this point
Copy the full SHA

550bdc0 View commit details

Browse the repository at this point in the history
Update profiles documentation
```
Include information about information returned when an authenticated
user changes their password
```
DavisRayM committed Mar 24, 2020
Configuration menu
View commit details

Copy full SHA for ff22509

Browse repository at this point
Copy the full SHA

ff22509 View commit details

Browse the repository at this point in the history
Return username after password reset

DavisRayM committed Mar 24, 2020
Configuration menu
View commit details

Copy full SHA for 9441a45

Browse repository at this point
Copy the full SHA

9441a45 View commit details

Browse the repository at this point in the history