Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
[oAuth] User profile should be updated every time they are authenticated #124
I have the following scenario.
Scenario: Auth, revoke and auth again Given I authenticate using dribbble oauth And I receive the JWT among with accessToken And I can make a request to dribbble using that accessToken When I revoke the app from my account And login again Then I receive the same accessToken And the requests to dribbble returns "Bad credentials" And I cannot use the same user again within the app
This might be related to https://github.com/feathersjs/feathers-authentication/blob/fca25f2b5b03b773975595ae9ac034199df5127b/src/services/oauth2/index.js#L42-L51 because we're not doing anything if the user exists in the db.
Probably do a patch to user/ with the new accessToken? or maybe the whole profile because in the meantime, the user can also change his profile pic or name or email and we're not keeping the truth in our db.