Michael and rest, I've been thinking about this issue and I realized that if we check the validity of the tokens on each request, this will imply that the token retrieval will be network dependent, and we want to avoid that.
We may make public the validate_user method call through DBus. That way, any app is responsible to validate the token if they consider is necessary and if the know they have net conn. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/624065 Title: Detect revoked SSO tokens -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
