From 40b8f0c2939ee6bdf2e796f3998af83c5bfce15b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=A9mie=20Astori?= <jeremie@astori.fr>
Date: Thu, 18 Aug 2016 00:02:40 -0400
Subject: [PATCH] Make sure users with wrong tokens are locked out instead of
 crashing the app

---
 src/server.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/server.js b/src/server.js
index 88401bb8..872e4308 100644
--- a/src/server.js
+++ b/src/server.js
@@ -286,10 +286,10 @@ function auth(data) {
 		}
 	} else {
 		client = manager.findClient(data.user, data.token);
-		var signedIn = data.token && data.token === client.config.token;
+		var signedIn = data.token && client && data.token === client.config.token;
 		var token;
 
-		if (data.remember || data.token) {
+		if (client && (data.remember || data.token)) {
 			token = client.config.token;
 		}