-
One thing I'm wondering is how to force logout users.
1. When a user changes his password, all old Tokens should be invalid. Is this happening already?
2. There should be a way to invalidate all r…
-
This would be a nice thing to have since it would allow for other servers to use the same login system while blocking modifications to the official api's database.
Scopes
---
An example of a sc…
-
### Microsoft.Identity.Web Library
Microsoft.Identity.Web
### Microsoft.Identity.Web version
2.19.0
### Web app
Sign-in users
### Web API
Protected web APIs call downstream web APIs
### Token …
-
Many OAuth implementations let a user create "personal access tokens", that allow them to access _their own_ data without going through an entire authentication flow. This would simplify many common t…
-
-
In order to comply with https://web.nvd.nist.gov/view/800-53/Rev4/control?controlName=AC-10, we would like to be able to control the maximum number of active tokens per user per client, such that old …
-
Hi, I'm getting this error when trying to log in. Can confirm my handle and appkey are correct. If they are not, I do indeed get the second error. Right now it directly takes me to the third case and …
-
Hello ,
I had an issue regarding the logout . Once i am done with my logout and it's not popping me agin to enter the user name and password , why is it so ?
is it not the expected behaviour ? If s…
-
Kerberos tokens generally expire every 10 hours or so, thus any long running service that connects to HBase/Hadoop via Kerberos authentication will need to implement a feature to refresh tokens.
He…
-