diff options
author | Kim Alvefur <zash@zash.se> | 2023-04-12 10:21:32 +0200 |
---|---|---|
committer | Kim Alvefur <zash@zash.se> | 2023-04-12 10:21:32 +0200 |
commit | 816d0819f2065caa10dd95915157b3fb3b17f477 (patch) | |
tree | 8e6fc85998317919af127f0c1343106b1b798274 /spec | |
parent | 2fc0c66f0123970ea3f8fdc3a460e8000eaaa1c2 (diff) | |
download | prosody-816d0819f2065caa10dd95915157b3fb3b17f477.tar.gz prosody-816d0819f2065caa10dd95915157b3fb3b17f477.zip |
mod_tokenauth: Only check if expiry of expiring tokens
Some tokens, e.g. OAuth2 refresh tokens, might not have their lifetime
explicitly bounded here, but rather be bounded by the lifetime of
something else, like the OAuth2 client.
Open question: Would it be better to enforce a lifetime on all tokens?
Diffstat (limited to 'spec')
0 files changed, 0 insertions, 0 deletions