From 91307d4a362a8fab0022aba19ab74bec9cb46f8f Mon Sep 17 00:00:00 2001
From: Aaron Parecki <aaron@parecki.com>
Date: Sun, 12 Jul 2015 14:01:21 -0700
Subject: [PATCH] todo

---
 controllers/auth.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/controllers/auth.php b/controllers/auth.php
index 1244fe0..3611416 100644
--- a/controllers/auth.php
+++ b/controllers/auth.php
@@ -118,6 +118,8 @@ $app->get('/auth/start', function() use($app) {
     && $user->authorization_endpoint == $authorizationEndpoint
     && !array_key_exists('restart', $params)) {
 
+    // TODO: fix this by caching the endpoints maybe in the session instead of writing them to the DB here.
+    // Then remove the line below that blanks out the access token
     $user->micropub_endpoint = $micropubEndpoint;
     $user->authorization_endpoint = $authorizationEndpoint;
     $user->token_endpoint = $tokenEndpoint;
@@ -134,6 +136,7 @@ $app->get('/auth/start', function() use($app) {
     $user->micropub_endpoint = $micropubEndpoint;
     $user->authorization_endpoint = $authorizationEndpoint;
     $user->token_endpoint = $tokenEndpoint;
+    $user->micropub_access_token = ''; // blank out the access token if they attempt to sign in again
     $user->save();
 
     $html = render('auth_start', array(