dimas-b commented on PR #2197: URL: https://github.com/apache/polaris/pull/2197#issuecomment-3235250729
> There is no old reset endpoint. Sorry, typo on my part. I meant "old rotate". > How is that quite different? For credential refresh, the rotate endpoint can just accept an optional input to allow manual credential refresh. The "rotate" endpoint keeps old credentials effective (they become secondary). The "rotate" endpoint implies that the client ID never changes. If we're to allow completely replacing both the client ID and all associated secrets, that's no longer "rotation", IMHO. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@polaris.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
