mirror of
https://github.com/aliasvault/aliasvault.git
synced 2026-03-28 11:33:47 -04:00
Add revoke all option to admin user refresh tokens (#874)
This commit is contained in:
Leendert de Borst
committed by
Leendert de Borst
Leendert de Borst
parent
9b038cb76c
commit
f148ccdeba
@@ -1,5 +1,9 @@
|
||||
@using AliasVault.RazorComponents.Tables
|
||||
|
||||
<div class="mb-4">
|
||||
<Button Color="danger" OnClick="RevokeAllTokens">Revoke All Tokens</Button>
|
||||
</div>
|
||||
|
||||
<SortableTable Columns="@_refreshTokenTableColumns" SortColumn="@SortColumn" SortDirection="@SortDirection" OnSortChanged="HandleSortChanged">
|
||||
@foreach (var entry in SortedRefreshTokenList)
|
||||
{
|
||||
@@ -29,6 +33,12 @@
|
||||
[Parameter]
|
||||
public EventCallback<AliasVaultUserRefreshToken> OnRevokeToken { get; set; }
|
||||
|
||||
/// <summary>
|
||||
/// Gets or sets the event callback to revoke all refresh tokens.
|
||||
/// </summary>
|
||||
[Parameter]
|
||||
public EventCallback OnRevokeAllTokens { get; set; }
|
||||
|
||||
private string SortColumn { get; set; } = "CreatedAt";
|
||||
private SortDirection SortDirection { get; set; } = SortDirection.Descending;
|
||||
|
||||
@@ -67,4 +77,21 @@
|
||||
{
|
||||
await OnRevokeToken.InvokeAsync(entry);
|
||||
}
|
||||
|
||||
private async Task RevokeAllTokens()
|
||||
{
|
||||
if (await ConfirmModalService.ShowConfirmation(
|
||||
title: "Confirm Revoke All Tokens",
|
||||
message: @"Are you sure you want to revoke all refresh tokens?
|
||||
|
||||
Important notes:
|
||||
• This will log out the user from all their devices.
|
||||
• They will need to log in again on each device.
|
||||
• This action cannot be undone.
|
||||
|
||||
Do you want to proceed with revoking all tokens?"))
|
||||
{
|
||||
await OnRevokeAllTokens.InvokeAsync();
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
@@ -96,7 +96,7 @@ else
|
||||
<div>
|
||||
<h3 class="mb-1 text-xl font-bold text-gray-900 dark:text-white">UserRefreshTokens (Logged in devices)</h3>
|
||||
|
||||
<RefreshTokenTable RefreshTokenList="@RefreshTokenList" OnRevokeToken="@RevokeRefreshToken" />
|
||||
<RefreshTokenTable RefreshTokenList="@RefreshTokenList" OnRevokeToken="@RevokeRefreshToken" OnRevokeAllTokens="@RevokeAllTokens" />
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
@@ -327,7 +327,7 @@ Do you want to proceed with the restoration?")) {
|
||||
{
|
||||
User.Blocked = !User.Blocked;
|
||||
|
||||
// If user is unblocked by the admin, also reset any lockout status, which can be
|
||||
// If user is unblocked by the admin, also reset any lockout status, which can be
|
||||
// automatically triggered by the system when user has entered an incorrect password too many times.
|
||||
if (!User.Blocked) {
|
||||
User.AccessFailedCount = 0;
|
||||
@@ -338,4 +338,20 @@ Do you want to proceed with the restoration?")) {
|
||||
await RefreshData();
|
||||
}
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// This method will revoke all refresh tokens for the user which will log out all their devices.
|
||||
/// </summary>
|
||||
private async Task RevokeAllTokens()
|
||||
{
|
||||
await using var dbContext = await DbContextFactory.CreateDbContextAsync();
|
||||
var tokens = await dbContext.AliasVaultUserRefreshTokens.Where(x => x.UserId == User!.Id).ToListAsync();
|
||||
|
||||
if (tokens.Any())
|
||||
{
|
||||
dbContext.AliasVaultUserRefreshTokens.RemoveRange(tokens);
|
||||
await dbContext.SaveChangesAsync();
|
||||
await RefreshData();
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user