Y
Hacker News
new
|
ask
|
show
|
jobs
by
oneplane
269 days ago
If the long-lived token is actually a private key that is non-retrievable and the secrecy and origin is attested by a HSM, I'm fine with that.