From a2be0aab5f21ee7efe7d765b08853231a38fcf72 Mon Sep 17 00:00:00 2001
From: Joseph Warner <hardolaf@hardolaf.com>
Date: Mon, 2 Sep 2013 15:27:57 -0400
Subject: [feature/oauth] Update oauth::logout() to use clearAllTokens()

PHPBB3-11673
---
 phpBB/phpbb/auth/provider/oauth/oauth.php | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

(limited to 'phpBB')

diff --git a/phpBB/phpbb/auth/provider/oauth/oauth.php b/phpBB/phpbb/auth/provider/oauth/oauth.php
index 142c209c0a..a5709d8ff6 100644
--- a/phpBB/phpbb/auth/provider/oauth/oauth.php
+++ b/phpBB/phpbb/auth/provider/oauth/oauth.php
@@ -530,10 +530,8 @@ class phpbb_auth_provider_oauth extends phpbb_auth_provider_base
 	public function logout($data, $new_session)
 	{
 		// Clear all tokens belonging to the user
-		$sql = 'DELETE FROM ' . $this->auth_provider_oauth_token_storage_table . "
-			WHERE session_id = '" . $this->db->sql_escape($this->user->session_id) . "'
-				AND user_id = " . (int) $this->user->data['user_id'];
-		$this->db->sql_query($sql);
+		$storage = new phpbb_auth_provider_oauth_token_storage($this->db, $this->user, '', $this->auth_provider_oauth_token_storage_table);
+		$stroage->clearAllTokens();
 
 		return;
 	}
-- 
cgit v1.2.1