Timeline for Should we store accesstoken in our database for oauth2?
Current License: CC BY-SA 3.0
4 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| May 8, 2017 at 11:21 | comment | added | Jonas Köritz | @Konrad Garus Most providers like facebook or google will correlate sessions for a single application into a single entry and invalidate older access tokens on login. | |
| Oct 30, 2015 at 9:28 | comment | added | Konrad Garus | I have the exact same issue. The problem is, every time they log in, new OAuth session is established. After 20 logins, there will be 20 "loose" sessions open. If you go to a page listing authorized tokens on your service provider's site, it looks like headache. How do you deal with that? | |
| Nov 11, 2014 at 17:11 | review | First posts | |||
| Nov 11, 2014 at 17:41 | |||||
| Nov 11, 2014 at 17:06 | history | answered | Bruce | CC BY-SA 3.0 |