From 79a9b23096088cef196fa197d8ea0354a398a0bf Mon Sep 17 00:00:00 2001
From: Robert Korulczyk <robert@korulczyk.pl>
Date: Tue, 21 Feb 2023 17:23:20 +0100
Subject: [PATCH] fix: normal logout affects all sessions (#3571)

Previously all user tokens were deleted, which logouts from all sessions.
---
 framework/core/src/Forum/Controller/LogOutController.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/framework/core/src/Forum/Controller/LogOutController.php b/framework/core/src/Forum/Controller/LogOutController.php
index c2ef4800e..f5eb88d30 100644
--- a/framework/core/src/Forum/Controller/LogOutController.php
+++ b/framework/core/src/Forum/Controller/LogOutController.php
@@ -102,11 +102,12 @@ class LogOutController implements RequestHandlerInterface
             return new HtmlResponse($view->render());
         }
 
+        $accessToken = $session->get('access_token');
         $response = new RedirectResponse($url);
 
         $this->authenticator->logOut($session);
 
-        $actor->accessTokens()->delete();
+        $actor->accessTokens()->where('token', $accessToken)->delete();
 
         $this->events->dispatch(new LoggedOut($actor, false));