# HG changeset patch
# User jbe
# Date 1506965884 -7200
# Node ID 2cb4a7d9e6e9fb438c2b0384fe31c5db67e7893b
# Parent  abf04224f1e1cb4791a7133e69c2e458c740ceb2
Bugfix in "expired_token" view: added missing qualifier to avoid authorization codes to be deleted when used

diff -r abf04224f1e1 -r 2cb4a7d9e6e9 core.sql
--- a/core.sql	Fri Sep 29 22:36:20 2017 +0200
+++ b/core.sql	Mon Oct 02 19:38:04 2017 +0200
@@ -6,7 +6,7 @@
 CREATE EXTENSION IF NOT EXISTS latlon;  -- load pgLatLon extenstion
 
 CREATE VIEW "liquid_feedback_version" AS
-  SELECT * FROM (VALUES ('4.0.0', 4, 0, 0))
+  SELECT * FROM (VALUES ('4.0-dev', 4, 0, -1))
   AS "subquery"("string", "major", "minor", "revision");
 
 
@@ -3633,7 +3633,7 @@
   SELECT * FROM "token" WHERE now() > "expiry" AND NOT (
     "token_type" = 'authorization' AND "used" AND EXISTS (
       SELECT NULL FROM "token" AS "other"
-      WHERE "other"."authorization_token_id" = "id" ) );
+      WHERE "other"."authorization_token_id" = "token"."id" ) );
 
 CREATE RULE "delete" AS ON DELETE TO "expired_token" DO INSTEAD
   DELETE FROM "token" WHERE "id" = OLD."id";
diff -r abf04224f1e1 -r 2cb4a7d9e6e9 update/core-update.v4.0.0-v4.0.1.sql
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/update/core-update.v4.0.0-v4.0.1.sql	Mon Oct 02 19:38:04 2017 +0200
@@ -0,0 +1,13 @@
+BEGIN;
+
+CREATE OR REPLACE VIEW "liquid_feedback_version" AS
+  SELECT * FROM (VALUES ('4.0.1', 4, 0, 1))
+  AS "subquery"("string", "major", "minor", "revision");
+
+CREATE OR REPLACE VIEW "expired_token" AS
+  SELECT * FROM "token" WHERE now() > "expiry" AND NOT (
+    "token_type" = 'authorization' AND "used" AND EXISTS (
+      SELECT NULL FROM "token" AS "other"
+      WHERE "other"."authorization_token_id" = "token"."id" ) );
+
+COMMIT;