wholetrans/docs-matrix-spec
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Remove concerns about backwards compatibility.

Browse source
This commit is contained in:
Patrick Cloke 2020-03-13 07:12:57 -04:00
parent 1facf7ff12
commit 61b306f8a8
1 changed files with 9 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

15
proposals/2457-password-modification-invalidating-devices.md
View file

@ -36,15 +36,18 @@ modifying the password.
## Potential issues ## Potential issues
While Synapse defaults to the behavior of invalidating other devices and The specification states:
sessions this may not be true of other implementations. Thus, a default of
`true` may not be backwards compatible. It might be more prudent to specify that > The homeserver SHOULD NOT revoke the access token provided in the request,
the behavior of not specifying the `logout_devices` flag is undefined. > however all other access tokens for the user should be revoked if the request
> succeeds.
Defaulting `logout_devices` to `true` should be backwards compatible.
## Alternatives ## Alternatives
Provide a new endpoint in a future version that supports an additional field (as A new endpoint could be provided in a future version of the specification that
above), using a new endpoint would avoid backwards compatibility issues. supports an additional field (as described above).
## Security considerations ## Security considerations