Skip to content

Commit

Permalink
Use current Accounts token location in auth endpoints
Browse files Browse the repository at this point in the history
- Update the default auth endpoints to store and remove tokens from the
  location expected by the Meteor Accounts package
  - The `accounts-base` package now stores hashed tokens in
    `services.resume.loginTokens.hashedToken`, instead of storing a
    `services.resume.loginTokens.token` unhashed.
- Resolve kahmali#79
  • Loading branch information
jazeee committed Jun 15, 2015
1 parent 8c7cbe4 commit 9dc92fe
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,8 @@
#### Warning - Potentially breaking change
- Restivus used to store the account login token in the user document: `services.resume.loginTokens.token`
- Restivus now stores the account login token as a hashed token, in the user document: `services.resume.loginTokens.hashedToken`
- This matches Meteor Accounts package
- This means that all clients consuming a Restivus API will need to reauthenticate with their
username/email and password after this update, as their existing tokens will be rendered invalid.

#### Changed
- Update default auth endpoints to match current Accounts token storage (see #79)
Expand Down

0 comments on commit 9dc92fe

Please sign in to comment.