Ensure tokens are found in the database using the expected logic

app/Http/Controllers/Api/Client/AccountController.php

@@ -19,19 +19,19 @@ class AccountController extends ClientApiController
     private $updateService;
 
     /**
-     * @var \Illuminate\Auth\SessionGuard
+     * @var \Illuminate\Auth\AuthManager
      */
-    private $sessionGuard;
+    private $manager;
 
     /**
      * AccountController constructor.
      */
-    public function __construct(AuthManager $sessionGuard, UserUpdateService $updateService)
+    public function __construct(AuthManager $manager, UserUpdateService $updateService)
     {
         parent::__construct();
 
         $this->updateService = $updateService;
-        $this->sessionGuard = $sessionGuard;
+        $this->manager = $manager;
     }
 
     public function index(Request $request): array
@@ -64,13 +64,17 @@ class AccountController extends ClientApiController
     {
         $user = $this->updateService->handle($request->user(), $request->validated());
 
+        $guard = $this->manager->guard();
         // If you do not update the user in the session you'll end up working with a
         // cached copy of the user that does not include the updated password. Do this
         // to correctly store the new user details in the guard and allow the logout
         // other devices functionality to work.
-        $this->sessionGuard->setUser($user);
+        $guard->setUser($user);
 
-        $this->sessionGuard->logoutOtherDevices($request->input('password'));
+        // This method doesn't exist in the stateless Sanctum world.
+        if (method_exists($guard, 'logoutOtherDevices')) {
+            $guard->logoutOtherDevices($request->input('password'));
+        }
 
         return new JsonResponse([], Response::HTTP_NO_CONTENT);
     }