Unify password changing and invalidate auth tokens (#27625)

- Unify the password changing code - Invalidate existing auth tokens when changing passwords
2024-02-04 15:05:26 +01:00 · 2024-02-04 15:05:26 +01:00 · 688d4a1f71
commit 688d4a1f71
parent f8b471ace1
3 changed files with 20 additions and 1 deletions
--- a/models/auth/auth_token.go
+++ b/models/auth/auth_token.go
@ -54,6 +54,11 @@ func DeleteAuthTokenByID(ctx context.Context, id string) error {
 	return err
 }

+func DeleteAuthTokensByUserID(ctx context.Context, uid int64) error {
+	_, err := db.GetEngine(ctx).Where(builder.Eq{"user_id": uid}).Delete(&AuthToken{})
+	return err
+}
+
 func DeleteExpiredAuthTokens(ctx context.Context) error {
 	_, err := db.GetEngine(ctx).Where(builder.Lt{"expires_unix": timeutil.TimeStampNow()}).Delete(&AuthToken{})
 	return err