Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TokenExpiredError on logout #12

Open
IvanAnishchuk opened this issue Jun 21, 2019 · 1 comment
Open

TokenExpiredError on logout #12

IvanAnishchuk opened this issue Jun 21, 2019 · 1 comment

Comments

@IvanAnishchuk
Copy link

When I try to log out and token have already expired, it causes 500 error (because destroy_tokens doesn't work). Shouldn't we ignore that and just clear the session when that happens?
@IvanAnishchuk
Copy link
Author

Actually, come to think of it, even when token is not expired there's no such endpoint on my auth server (based on django-oauth-toolkit). This get request simply generates a 404 error. It does, however, have revoke_token endpoint (RFC 7009 compliant) -- but even if we made the url configurable that requires a post request, not get, and possibly client authorization...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@IvanAnishchuk