Software / code / prosody
Diff
spec/util_sasl_spec.lua @ 12742:126aefd2c4c6
mod_tokenauth: Invalidate tokens issued before most recent password change
This is a security improvement, to ensure that sessions authenticated using a
token (note: not currently possible in stock Prosody) are invalidated just
like password-authenticated sessions are.
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Thu, 06 Oct 2022 15:59:07 +0100 |
| parent | 10502:f1c0aa521dd5 |
| child | 13113:191fe4866e3e |
