ryan/chore
1
0
Fork 0
Code Issues 3 Pull Requests Actions Packages Projects 5 Releases Wiki Activity

feat: implement force logout notifications for password reset and account deletion
All checks were successful
Chore App Build, Test, and Push Docker Images / build-and-push (push) Successful in 2m29s
Details

Browse Source
This commit is contained in:
Ryan Kegel
2026-03-05 16:52:11 -05:00
parent a10836d412
commit b2618361e4
8 changed files with 397 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/api/auth_api.py
View File

@@ -364,7 +364,7 @@ def reset_password():
refresh_tokens_db.remove(TokenQuery.user_id == user.id)
# Notify all active sessions (other tabs/devices) to sign out immediately
send_event_to_user(user.id, Event(EventType.FORCE_LOGOUT.value, Payload({})))
send_event_to_user(user.id, Event(EventType.FORCE_LOGOUT.value, Payload({'reason': 'password_reset'})))
resp = jsonify({'message': 'Password has been reset'})
_clear_auth_cookies(resp)