Software / code / prosody
Diff
plugins/mod_auth_internal_plain.lua @ 12742:126aefd2c4c6
mod_tokenauth: Invalidate tokens issued before most recent password change
This is a security improvement, to ensure that sessions authenticated using a
token (note: not currently possible in stock Prosody) are invalidated just
like password-authenticated sessions are.
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Thu, 06 Oct 2022 15:59:07 +0100 (2022-10-06) |
| parent | 12646:3f38f4735c7a |
| child | 12950:2cb5994e3f94 |
