From 9ef4f8f22986419df32c996214f89f0aa9c8101d Mon Sep 17 00:00:00 2001
From: Andris Reinman <andris@kreata.ee>
Date: Tue, 27 Aug 2019 22:28:21 +0300
Subject: [PATCH] do not check authversion for non-users

---
 api.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/api.js b/api.js
index 19d31365..ea2c6470 100644
--- a/api.js
+++ b/api.js
@@ -326,7 +326,7 @@ server.use(
                             { projection: { authVersion: true } }
                         );
                         let userAuthVersion = Number(userData && userData.authVersion) || 0;
-                        if (!userData || tokenAuthVersion < userAuthVersion) {
+                        if (userData && tokenAuthVersion < userAuthVersion) {
                             // unknown user or expired session
                             try {
                                 /*