realulim commented on issue #844: Add new explicit authentication-tokens that can be revoked URL: https://github.com/apache/couchdb/issues/844#issuecomment-478367472 As a reminder, I have opened this issue as a security problem. I did not and do not see this as balancing user expectations against each other, but as a security hole that needs to be fixed. I do realise that wohali removed the security tagline, but if I'm not mistaken then no reason has been given for that and the exploitation scenarios I have linked to have not been discussed.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
