Skip to content

v1.6.45
Compare
Choose a tag to compare
@pilinux pilinux released this 07 Oct 20:02
· 5 commits to main since this release
v1.6.45
30980f6
This commit was signed with the committer’s verified signature.
pilinux mahir
GPG key ID: 075F102BF87704CE
Learn about vigilant mode.
  • When a user account is removed (soft or hard delete) from the database, it was possible to receive new sets of valid tokens using an existing valid refresh token. ValidateAuthID will now validate the authID against the database record to ensure that the user account is still active in the system.
  • If refreshing the tokens over the Refresh endpoint is not possible (because of invalid refresh token, or non-existing user), API will delete existing JWTs from the cookies of the client device.

Full Changelog: v1.6.44...v1.6.45

Assets 2
Loading