]> git.openstreetmap.org Git - rails.git/commit
projects / rails.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c694c78) | patch
Invalidate existing sessions when changing email or password
authorTom Hughes <tom@compton.nu>
Tue, 29 Sep 2020 13:22:51 +0000 (14:22 +0100)
committerTom Hughes <tom@compton.nu>
Tue, 29 Sep 2020 13:34:08 +0000 (14:34 +0100)
commit7db541d697436a4ff24f6f5a6bb2c0ecc9b8a9e6
treee30c5f1b0d129d08b6dc4d6fa4fdc8e357456f2ftree | snapshot
parentc694c78c9a9fbc46f71519546cddc15f70835d20commit | diff
Invalidate existing sessions when changing email or password

As we don't have any way to actually find the active sessions for
an account we instead store a fingerprint in the session, and refuse
to use any session with a different fingerprint.
app/controllers/application_controller.rb diff | blob | history
app/controllers/users_controller.rb diff | blob | history
app/models/user.rb diff | blob | history
The OpenStreetMap web site