Issue #2946882: Auth revoke on profile update (!138) · Merge requests · project / simple_oauth · GitLab

Snippets Groups Projects

Open Alexander Varwijk requested to merge issue/simple_oauth-2946882:issue/2946882-auth-cleanup into 6.0.x 8 months ago

This commit moves the logic that responds to user and consumer changes for token invalidation into a service. This allows projects to swap out the logic if needed.

The default logic is very conservative, favoring security and possibly invalidating tokens too frequently. However, the logic that's actually required for token invalidation can differ per project depending on their business logic and it's difficult to find generalised logic that works for everyone.

Activity

Alexander Varwijk added 1 commit 8 months ago
added 1 commit

3f3db166 - Issue #2946882: Auth revoke on profile update

Compare with previous version
Alexander Varwijk added 1 commit 8 months ago
added 1 commit

51089353 - Issue #2946882: Auth revoke on profile update

Compare with previous version
Alexander Varwijk added 1 commit 8 months ago
added 1 commit

0cb6013a - Issue #2946882: Auth revoke on profile update

Compare with previous version
Alexander Varwijk added 30 commits 2 months ago
added 30 commits

0cb6013a...418ede91 - 29 commits from branch project:6.0.x

e26bee53 - Issue #2946882: Auth revoke on profile update

Compare with previous version

Please register or sign in to reply