From bb0752a72692d03b61f1719dca2a7cdc2b3052cc Mon Sep 17 00:00:00 2001 From: Aaron Parecki Date: Sun, 10 Jun 2018 13:09:40 -0700 Subject: add support for token revocation --- controllers/auth.php | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'controllers') diff --git a/controllers/auth.php b/controllers/auth.php index d90652b..f6d357e 100644 --- a/controllers/auth.php +++ b/controllers/auth.php @@ -278,6 +278,8 @@ $app->get('/signout', function() use($app) { $app->post('/auth/reset', function() use($app) { if($user=require_login($app, false)) { + revoke_micropub_token($user->micropub_access_token, $user->token_endpoint); + $user->authorization_endpoint = ''; $user->token_endpoint = ''; $user->micropub_endpoint = ''; @@ -286,7 +288,7 @@ $app->post('/auth/reset', function() use($app) { $user->micropub_scope = ''; $user->micropub_access_token = ''; $user->save(); - + unset($_SESSION['auth']); unset($_SESSION['me']); unset($_SESSION['auth_state']); -- cgit v1.2.3