summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorLars Wirzenius <liw@liw.fi>2019-05-19 12:45:42 +0300
committerLars Wirzenius <liw@liw.fi>2019-05-19 12:45:42 +0300
commit935473a117177545b1802c6d334b5db4ad9f2956 (patch)
tree373bac84c059f24f3350ccd6f24efce020e9010f
parent060b3da6cb5289b2600c6365e216641e864efc7e (diff)
downloadick.liw.fi-935473a117177545b1802c6d334b5db4ad9f2956.tar.gz
Change: KILLSESSION requirement to be about individual sessions
-rw-r--r--yuck.mdwn4
1 files changed, 2 insertions, 2 deletions
diff --git a/yuck.mdwn b/yuck.mdwn
index 5cb86ed..5c3b7c3 100644
--- a/yuck.mdwn
+++ b/yuck.mdwn
@@ -216,8 +216,8 @@ reference in discussions.
an end-user or an API client) so that it still exists, but
authentication cannot ever succeed.
-* (KILLSESSION) It must be possible to kill existing web sessions to
- kick out someone who is logged in to Yuck.
+* (KILLSESSION) It must be possible to kill existing individual web
+ sessions to kick out someone who is logged in to Yuck.
* (KEYROTATION) The IDP MUST rotate signing keys so that a leaked key
can be easily replaces. The IDP MUST have a secure way to distribute