Y
Hacker News
new
|
ask
|
show
|
jobs
by
hueving
3661 days ago
revocation list only needs to contain tokens that haven't expired. If there is an 'event' that causes this info to be lost, then expire everything by changing the global secret.