From 3510aa443b700c98f1187eeea76e281dbf166dcd Mon Sep 17 00:00:00 2001
From: Dimitrie Stefanescu <didimitrie@gmail.com>
Date: Fri, 11 Dec 2020 00:02:20 +0000
Subject: [PATCH] fix(server): token revokation checks for format (bearer xxx)

---
 modules/core/graph/resolvers/apitoken.js | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/modules/core/graph/resolvers/apitoken.js b/modules/core/graph/resolvers/apitoken.js
index ea6838a27..6cb5d10fc 100644
--- a/modules/core/graph/resolvers/apitoken.js
+++ b/modules/core/graph/resolvers/apitoken.js
@@ -21,7 +21,12 @@ module.exports = {
       return await createPersonalAccessToken( context.userId, args.token.name, args.token.scopes, args.token.lifespan )
     },
     async apiTokenRevoke( parent, args, context, info ) {
-      await revokeToken( args.token.split( ' ' )[ 1 ], context.userId ) // let's not revoke other people's tokens
+      let id = null
+      if ( args.token.toLowerCase().includes( "bearer" ) )
+        id = args.token.split( ' ' )[ 1 ]
+      else
+        id = args.token
+      await revokeToken( id, context.userId ) // let's not revoke other people's tokens
       return true
     }
   }