potiuk commented on PR #23:
URL: https://github.com/apache/comdev/pull/23#issuecomment-4892258326

   Also it triggered me to implement another change - those tokens can be now 
removed by admin "purge-token" option as well as they will automatically purge 
themselves when Oauth metadata indicate that groups/permissions of the user 
changed in LDAP (ASF Oauth already provides that information) - which adds 
additional memory savings and database savings. Previously, those tokens would 
have been rejected if auth interface would reject the token - now (if enabled) 
the tokens will be "out of abundance of caution" immediately removed when we 
see any "permission/group change" for the user when it tries to login with 
token that was generated with previous set of permissions.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to