• #dev 2018-12-09
  • Prev
    Next
  • #indieweb
  • #dev
  • #wordpress
  • #meta
  • #stream
  • #microformats
  • #known
  • #events
#dev ≡
  • ←
  • →
2018-12-09 UTC
# 11:05
Zegnat You could keep track only of tokens that were revoked - instead of all tokens issued - but that is just storage space saving at the start and nothing else. Another option is to only support wholesale token revokation and store only a timestamp, invalidating all tokens before the timestamp. Less state (your server doesn’t need to remember any tokens) but still some state and may have usability issues