On Sun, Jul 5, 2020 at 2:38 AM Benchu Yao <[email protected]> wrote:
> Does the "Automatically invalidate any existing token upon login" > mentioned by guac-1126 > < > https://github.com/apache/guacamole-client/commit/360ec0929e5ca0641fe85eff73864a46b1b26586 > > > refer > to the same browser cannot have two tokens? > Yes, this would invalidate tokens within the same browser - that is, if a user attempts to log in and the AngularJS web application finds that an existing token is already present in the browser's store, it will invalidate the existing one on the server so that it cannot be re-used by someone else and generate a new one. > I found that on different browsers, a user can have multiple tokens > Yes, that is correct - there is currently no limitation in Guacamole as to how many times a user may log in and how many systems they may be logged in from. -Nick
