[
https://issues.apache.org/jira/browse/COUCHDB-2794?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14726184#comment-14726184
]
ASF GitHub Bot commented on COUCHDB-2794:
-----------------------------------------
Github user kxepal commented on a diff in the pull request:
https://github.com/apache/couchdb-documentation/pull/28#discussion_r38471723
--- Diff: src/config/auth.rst ---
@@ -214,7 +214,7 @@ Authentication Configuration
.. config:option:: secret :: Proxy Auth secret token
- The secret token used for :ref:`api/auth/proxy` method. ::
+ The secret token is used for :ref:`api/auth/proxy` and for
:ref:`api/auth/cookie`. ::
--- End diff --
I think about just generic "authentication secret token" or something, but
you may figure something else and better (:
> Documentation not fully correct for couch_httpd_auth/secret
> -----------------------------------------------------------
>
> Key: COUCHDB-2794
> URL: https://issues.apache.org/jira/browse/COUCHDB-2794
> Project: CouchDB
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: Documentation
> Reporter: Nathan Vander Wilt
> Assignee: Andy Wenk
>
> The documentation for couch_httpd_auth/secret [currently
> states](http://docs.couchdb.org/en/latest/config/auth.html#couch_httpd_auth/secret)
> that the value is:
> > The secret token used for Proxy Authentication method.
> This does appear to be the case, but it's worth noting that AFAICT this
> secret is also used to sign cookie authentication as well — i.e. changing it
> will "log out" all current cookie-based sessions.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
