2021-06-30 UTC
# [jacky] a bit of brain banging: what's the implication of having a specialized token and authorization endpoint for people? like if you were building a service - I can see it as a way to do a 'harder' check against the usability of a token or request flow but I can see that being done by doing some session checking