top | item 13441412 (no title) Vishnevskiy | 9 years ago The normal token system revokes on password change, if you want to revoke and have extra security we offer MFA login which has unique tokens per login. If security is of importance to you then use MFA. discuss order hn newest lightedman|9 years ago Why are you not revoking tokens after session end across the board? Token re-use is one of the faster-rising security breach factors now days.
lightedman|9 years ago Why are you not revoking tokens after session end across the board? Token re-use is one of the faster-rising security breach factors now days.
lightedman|9 years ago