https://bugzilla.wikimedia.org/show_bug.cgi?id=45199
--- Comment #2 from Brion Vibber <[email protected]> --- Under ideal circumstances I'd recommend this: * drop all uses of token salt -- use the same token for all things in the session * return the token in the login response along with the session key * have a single method for fetching the token (if using saved login cookies, for instance) This should help simplify things. :) -- You are receiving this mail because: You are on the CC list for the bug. You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
