Comment 29 for bug 1490804

Revision history for this message
Morgan Fainberg (mdrnstm) wrote : Re: PKI Token Revocation Bypass

I am going to be -1 on changing DOA and changing how we hash immediately as this will break anyone who does not use the libraries (aka any language but python).

Lets aim for a fix that doesn't break absolutely everyone.

DOA is not impacted by this as it forces live validation.

Let's not change DOA and only change how middleware interacts in a non-live validated token workflow for Liberty (preferably something back-portable).