Skip to content
Permalink
Browse files

Fix the issue that user access token can be leaked via restful api

  • Loading branch information
robinshine committed Nov 20, 2020
1 parent 0c06015 commit a4491e5f79dc6cc96eac20972eedc8905ddf6089
@@ -112,13 +112,15 @@

private String fullName;

@JsonView(DefaultView.class)
@Embedded
private SsoInfo ssoInfo = new SsoInfo();

@Column(unique=true, nullable=false)
private String email;

@Column(unique=true, nullable=false)
@JsonView(DefaultView.class)
private String accessToken = RandomStringUtils.randomAlphanumeric(ACCESS_TOKEN_LEN);

@OneToMany(mappedBy="user", cascade=CascadeType.REMOVE)

This file was deleted.

0 comments on commit a4491e5

Please sign in to comment.