BUG#AC-9337:Revoking or invalidating previous access tokens upon generating new access token rest

Rachana · Rachana · commit 1ce5bad6ea6b · 2024-05-09T03:57:18.000-07:00
diff --git a/app/code/Magento/JwtUserToken/Model/RevokedValidator.php b/app/code/Magento/JwtUserToken/Model/RevokedValidator.php
@@ -40,8 +40,7 @@ public function validate(UserToken $token): void
             (int) $token->getUserContext()->getUserType(),
             (int) $token->getUserContext()->getUserId()
         );
-
-        if ($revoked && $token->getData()->getIssued()->getTimestamp() <= $revoked->getBeforeTimestamp()) {
+        if ($revoked && $token->getData()->getIssued()->getTimestamp() >= $revoked->getBeforeTimestamp()) {
             throw new AuthorizationException(__('User token has been revoked'));
         }
     }

Original file line number	Diff line number	Diff line change
`@@ -40,8 +40,7 @@ public function validate(UserToken $token): void`
`40`	`40`	`(int) $token->getUserContext()->getUserType(),`
`41`	`41`	`(int) $token->getUserContext()->getUserId()`
`42`	`42`	`);`
`43`		`-`
`44`		`- if ($revoked && $token->getData()->getIssued()->getTimestamp() <= $revoked->getBeforeTimestamp()) {`
	`43`	`+ if ($revoked && $token->getData()->getIssued()->getTimestamp() >= $revoked->getBeforeTimestamp()) {`
`45`	`44`	`throw new AuthorizationException(__('User token has been revoked'));`
`46`	`45`	`}`
`47`	`46`	`}`