Open sknebel opened 5 years ago
Should the Auth Endpoint be able to request a limited TTL?
It can force a limited TTL by triggering token revocation at the right time, but then it isn't transparent to the other actors.
Should the Auth Endpoint be able to request a limited TTL?
It can force a limited TTL by triggering token revocation at the right time, but then it isn't transparent to the other actors.