[H3] revoke_user_tokens is a 501 stub whose comment claims partial behavior #17

Open
opened 2026-06-05 17:35:33 -07:00 by azcomputerguru · 0 comments

Severity: High

Component(s): server

Affected file(s):

  • server/src/api/auth_logout.rs:116

Problem:
revoke_user_tokens is a 501 stub, but its comment claims partial behavior, misleading callers.

Recommended fix:
Delete the route until the session-tracking table exists, or implement a minimal real version and make the comment/error match.

Remediation phase: P0

From the 2026-06-05 three-way review (Claude+Gemini+Grok) — see reports/review-2026-06-05/SYNTHESIS-three-way.md (finding H3) and REMEDIATION-PLAN.md (P0).

**Severity:** High **Component(s):** server **Affected file(s):** - `server/src/api/auth_logout.rs:116` **Problem:** `revoke_user_tokens` is a 501 stub, but its comment claims partial behavior, misleading callers. **Recommended fix:** Delete the route until the session-tracking table exists, or implement a minimal real version and make the comment/error match. **Remediation phase:** P0 From the 2026-06-05 three-way review (Claude+Gemini+Grok) — see reports/review-2026-06-05/SYNTHESIS-three-way.md (finding H3) and REMEDIATION-PLAN.md (P0).
azcomputerguru added the severity:highcomponent:serversecurity labels 2026-06-05 17:35:33 -07:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: azcomputerguru/guru-connect#17