Comment 1 for bug 1159990

Revision history for this message
Henry Nash (henry-nash) wrote :

It seems to me that the issue is to more cleanly implement the concept that:

- creating the token for the first time will create the token entry and enumerate the authorization agreed
- validating a token should simply enumerate the authorisation agreed at the time of authentication