From ca38892322ab2f2910ff07e622d9b7412455e17d Mon Sep 17 00:00:00 2001
From: Daksh <hello@dak.sh>
Date: Thu, 10 Jan 2019 21:49:01 +0530
Subject: [PATCH] remove password from query.

---
 src/jwt/strategy.js | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/jwt/strategy.js b/src/jwt/strategy.js
index 65e2d35c1..5b1ea1231 100644
--- a/src/jwt/strategy.js
+++ b/src/jwt/strategy.js
@@ -22,7 +22,7 @@ export default (driver) => {
       const session = driver.session()
       const result = await session.run(
         'MATCH (user:User {id: $userId}) ' +
-        'RETURN user {.id, .slug, .name, .avatar, .email, .password, .role} as user LIMIT 1',
+        'RETURN user {.id, .slug, .name, .avatar, .email, .role} as user LIMIT 1',
         {
           userId: JWTPayload.id
         }
@@ -33,7 +33,6 @@ export default (driver) => {
       })
 
       if (currentUser) {
-        delete currentUser.password
         currentUser.avatar = fixUrl(currentUser.avatar)
         return next(null, currentUser)
       } else {