Delete refresh token grants when active sessions is deleted.

Revsgaard · Revsgaard · commit e48814d0df0e · 2025-11-25T11:41:49.000+01:00
diff --git a/src/FoxIDs.Control/Controllers/Tracks/TActiveSessionsController.cs b/src/FoxIDs.Control/Controllers/Tracks/TActiveSessionsController.cs
@@ -18,12 +18,14 @@ public class TActiveSessionsController : ApiController
     {
         private readonly TelemetryScopedLogger logger;
         private readonly IMapper mapper;
+        private readonly OAuthRefreshTokenGrantDownBaseLogic oAuthRefreshTokenGrantDownBaseLogic;
         private readonly ActiveSessionLogic activeSessionLogic;
 
-        public TActiveSessionsController(TelemetryScopedLogger logger, IMapper mapper, ActiveSessionLogic activeSessionLogic) : base(logger)
+        public TActiveSessionsController(TelemetryScopedLogger logger, IMapper mapper, OAuthRefreshTokenGrantDownBaseLogic oAuthRefreshTokenGrantDownBaseLogic, ActiveSessionLogic activeSessionLogic) : base(logger)
         {
             this.logger = logger;
             this.mapper = mapper;
+            this.oAuthRefreshTokenGrantDownBaseLogic = oAuthRefreshTokenGrantDownBaseLogic;
             this.activeSessionLogic = activeSessionLogic;
         }
 
@@ -88,6 +90,7 @@ public async Task<IActionResult> DeleteActiveSessions(string userIdentifier = nu
                 upPartyName = upPartyName?.Trim().ToLower();
                 sessionId = sessionId?.Trim();
 
+                await oAuthRefreshTokenGrantDownBaseLogic.DeleteRefreshTokenGrantsAsync(userIdentifier, sub: sub, sessionId: sessionId, upPartyName: upPartyName);
                 await activeSessionLogic.DeleteSessionsAsync(userIdentifier, sub: sub, sessionId: sessionId, downPartyName: downPartyName, upPartyName: upPartyName);
 
                 return NoContent();

Original file line number	Diff line number	Diff line change
`@@ -18,12 +18,14 @@ public class TActiveSessionsController : ApiController`
`18`	`18`	`{`
`19`	`19`	`private readonly TelemetryScopedLogger logger;`
`20`	`20`	`private readonly IMapper mapper;`
	`21`	`+ private readonly OAuthRefreshTokenGrantDownBaseLogic oAuthRefreshTokenGrantDownBaseLogic;`
`21`	`22`	`private readonly ActiveSessionLogic activeSessionLogic;`
`22`	`23`
`23`		`- public TActiveSessionsController(TelemetryScopedLogger logger, IMapper mapper, ActiveSessionLogic activeSessionLogic) : base(logger)`
	`24`	`+ public TActiveSessionsController(TelemetryScopedLogger logger, IMapper mapper, OAuthRefreshTokenGrantDownBaseLogic oAuthRefreshTokenGrantDownBaseLogic, ActiveSessionLogic activeSessionLogic) : base(logger)`
`24`	`25`	`{`
`25`	`26`	`this.logger = logger;`
`26`	`27`	`this.mapper = mapper;`
	`28`	`+ this.oAuthRefreshTokenGrantDownBaseLogic = oAuthRefreshTokenGrantDownBaseLogic;`
`27`	`29`	`this.activeSessionLogic = activeSessionLogic;`
`28`	`30`	`}`
`29`	`31`
`@@ -88,6 +90,7 @@ public async Task<IActionResult> DeleteActiveSessions(string userIdentifier = nu`
`88`	`90`	`upPartyName = upPartyName?.Trim().ToLower();`
`89`	`91`	`sessionId = sessionId?.Trim();`
`90`	`92`
	`93`	`+ await oAuthRefreshTokenGrantDownBaseLogic.DeleteRefreshTokenGrantsAsync(userIdentifier, sub: sub, sessionId: sessionId, upPartyName: upPartyName);`
`91`	`94`	`await activeSessionLogic.DeleteSessionsAsync(userIdentifier, sub: sub, sessionId: sessionId, downPartyName: downPartyName, upPartyName: upPartyName);`
`92`	`95`
`93`	`96`	`return NoContent();`