On 14/08/2015 06:44, Sean McArthur wrote:
> On Thu, Aug 13, 2015 at 1:39 PM Christopher Karlof <[email protected]
> <mailto:[email protected]>> wrote:
>
> Ryan, is it true that Pocket only has a time limited access token to
> your account anyway?
>
> It is not true.
It's...complicated.
Technically they get an access_token, which is indeed time-limited after
our recent work to implement refresh tokens. But they're expecting it
to behave like a refresh token, and since the Pocket integration was
done before they had a way to ask for one explicitly, we've been
discussing how to upgrade their existing access_token records into
refresh tokens once we complete the switchover.
It's further complicated by some debugging work we're doing, that means
access-tokens don't yet expire the way we want them to.
The most accurate answer is "no, but it will be a yes soon, but then
probably not for long".
So Sean's simple "no" is likely a more useful answer overall...
Cheers,
Ryan
> On Wed, Aug 12, 2015 at 1:56 AM, Ryan Kelly <[email protected]
> <mailto:[email protected]>> wrote:
>
> On 12/08/2015 18:24, Mozilla wrote:
> >
> > I’m investigating FxA now. I authorized Pocket to use my FxA to
> login.
> > But I want to revoke it now. Is any where I can do that?
>
> Unfortunately we don't yet expose a page for users to revoke FxA
> access
> tokens. It's definitely important though, and is on our roadmap for
> this quarter.
>
>
> Cheers,
>
> Ryan
> _______________________________________________
> Dev-fxacct mailing list
> [email protected] <mailto:[email protected]>
> https://mail.mozilla.org/listinfo/dev-fxacct
>
>
> _______________________________________________
> Dev-fxacct mailing list
> [email protected] <mailto:[email protected]>
> https://mail.mozilla.org/listinfo/dev-fxacct
>
_______________________________________________
Dev-fxacct mailing list
[email protected]
https://mail.mozilla.org/listinfo/dev-fxacct
