User avatar
MarkAssPandi @MarkAssPandi@shrimpnet.gej.pet
9mo
@sophie @julia What about invalidating auth tokens tho
If token, or at least id of the token for example, is not stored, then there's no way to log-out user, which would be problematic in case an user would get their tokens compromised