OAuth1 icon indicating copy to clipboard operation
OAuth1 copied to clipboard

Published 20 hours ago verified publisher icon WP-API

Added a new method to deal with the build up of old tokens.

Open mcondave opened this issue 9 years ago • 3 comments

Before adding the "oauth1_access_..." token, revoke any existing tokens for the user/consumer pair so the user's profile isn't flooded with old access tokens that are no longer applicable.

Related to the following issues:

#134 #131

mcondave avatar May 13 '16 14:05 mcondave

I tried this. And while it did clear out all the old access_tokens, I could not log in to my app, despite it leaving one behind.

kosso avatar May 16 '16 14:05 kosso

@kosso Was an error message returned either on the client side or in your logs?

mcondave avatar May 16 '16 14:05 mcondave

I've just tried this change again on 2.0-Beta15 and it appears to be working as expected now.

No more duplicate Application entries on the profile page from the same client.

Though, whether this is a desirable effect, I haven't quite decided.

eg: One 'universal' iOS client app installed on two devices (eg: an iPhone and an iPad). Each time you logged in on one device, any stored token on the other device would be invalidated.

kosso avatar Oct 11 '16 16:10 kosso