fix: token + redirect

2022-03-16 21:44:57 +05:30
parent 83001b859c
commit 99b846811a
12 changed files with 65 additions and 32 deletions
--- a/server/handlers/token.go
+++ b/server/handlers/token.go
@@ -110,8 +110,6 @@ func TokenHandler() gin.HandlerFunc {
 				return
 			}

-			// rollover the session for security
-			sessionstore.RemoveState(sessionDataSplit[1])
 			// validate session
 			claims, err := token.ValidateBrowserSession(gc, sessionDataSplit[1])
 			if err != nil {
@@ -121,6 +119,8 @@ func TokenHandler() gin.HandlerFunc {
 				})
 				return
 			}
+			// rollover the session for security
+			sessionstore.RemoveState(sessionDataSplit[1])
 			userID = claims.Subject
 			roles = claims.Roles
 			scope = claims.Scope