Open geek-sajjad opened 2 years ago
Hi, add check user refresh token and user exist object in db to both of strategies validate methods.
this insure that if user deleted from the db , the accessToken is no longer be valid, and if user logouts , the accessToken is not longer be valid.
Hi, add check user refresh token and user exist object in db to both of strategies validate methods.
this insure that if user deleted from the db , the accessToken is no longer be valid, and if user logouts , the accessToken is not longer be valid.