diff options
author | Lars Wirzenius <liw@liw.fi> | 2019-05-19 12:45:42 +0300 |
---|---|---|
committer | Lars Wirzenius <liw@liw.fi> | 2019-05-19 12:45:42 +0300 |
commit | 935473a117177545b1802c6d334b5db4ad9f2956 (patch) | |
tree | 373bac84c059f24f3350ccd6f24efce020e9010f | |
parent | 060b3da6cb5289b2600c6365e216641e864efc7e (diff) | |
download | ick.liw.fi-935473a117177545b1802c6d334b5db4ad9f2956.tar.gz |
Change: KILLSESSION requirement to be about individual sessions
-rw-r--r-- | yuck.mdwn | 4 |
1 files changed, 2 insertions, 2 deletions
@@ -216,8 +216,8 @@ reference in discussions. an end-user or an API client) so that it still exists, but authentication cannot ever succeed. -* (KILLSESSION) It must be possible to kill existing web sessions to - kick out someone who is logged in to Yuck. +* (KILLSESSION) It must be possible to kill existing individual web + sessions to kick out someone who is logged in to Yuck. * (KEYROTATION) The IDP MUST rotate signing keys so that a leaked key can be easily replaces. The IDP MUST have a secure way to distribute |