6:49 a.m.
With regards to refresh tokens it would be nice to add support for users to be able to
manage applications at the same time.
https://issues.jboss.org/browse/KEYCLOAK-312:
Account management should have a page that lists all applications and clients that have
access to a users account. This would be a list of applications and clients that have been
given a refresh token (and where the refresh token hasn't expired). For clients it
should also list the scope that was granted (probably doesn't make sense to list this
for applications).
Users should be able to revoke access to an individual application or client. This would
result in the refresh token being invalidated so the application or client wouldn't be
able to retrieve a new token.
8:34 a.m.
Ok, I'll add that to my list.
On 2/20/2014 7:49 AM, Stian Thorgersen wrote:
With regards to refresh tokens it would be nice to add support for
users to be able to manage applications at the same time.
https://issues.jboss.org/browse/KEYCLOAK-312:
Account management should have a page that lists all applications and clients that have
access to a users account. This would be a list of applications and clients that have been
given a refresh token (and where the refresh token hasn't expired). For clients it
should also list the scope that was granted (probably doesn't make sense to list this
for applications).
Users should be able to revoke access to an individual application or client. This would
result in the refresh token being invalidated so the application or client wouldn't be
able to retrieve a new token.
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
3981
days inactive
3981
days old
1 comments
2 participants
participants (2)
-
Bill Burke -
Stian Thorgersen