You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This issue was created with the document version "v1"
Services (such as vault or mytoken, we will not name them in the document) proxy a refresh token for the users and give them a proprietary token. This may help in some cases or not in other cases.
How do people feel about including such services in the doc. Do we want to add also lifetime recommendations on such services? It may derail the doc a bit, so in the current version I've only kept a very short remark.
The text was updated successfully, but these errors were encountered:
It's a bit tricky because there isn't really an RFC or other standard for them, but it does follow a certain pattern that requires careful risk assessment and guidance. I'm probably in favour of adding them in a special category.
This issue was created with the document version "v1"
Services (such as
vault
ormytoken
, we will not name them in the document) proxy a refresh token for the users and give them a proprietary token. This may help in some cases or not in other cases.How do people feel about including such services in the doc. Do we want to add also lifetime recommendations on such services? It may derail the doc a bit, so in the current version I've only kept a very short remark.
The text was updated successfully, but these errors were encountered: