potiuk commented on PR #23: URL: https://github.com/apache/comdev/pull/23#issuecomment-4892258326
Also it triggered me to implement another change - those tokens can be now removed by admin "purge-token" option as well as they will automatically purge themselves when Oauth metadata indicate that groups/permissions of the user changed in LDAP (ASF Oauth already provides that information) - which adds additional memory savings and database savings. Previously, those tokens would have been rejected if auth interface would reject the token - now (if enabled) the tokens will be "out of abundance of caution" immediately removed when we see any "permission/group change" for the user when it tries to login with token that was generated with previous set of permissions. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
