debian-mirror-gitlab/app/controllers/profiles/active_sessions_controller.rb
2023-05-27 22:25:52 +05:30

20 lines
555 B
Ruby

# frozen_string_literal: true
class Profiles::ActiveSessionsController < Profiles::ApplicationController
feature_category :system_access
def index
@sessions = ActiveSession.list(current_user).reject(&:is_impersonated)
end
def destroy
# params[:id] can be an Rack::Session::SessionId#private_id
ActiveSession.destroy_session(current_user, params[:id])
current_user.forget_me!
respond_to do |format|
format.html { redirect_to profile_active_sessions_url, status: :found }
format.js { head :ok }
end
end
end