Conversation

Notices

1. Embed this notice
   feld (feld@bikeshed.party)'s status on Thursday, 03-Aug-2023 00:12:50 JST feld

   in reply to

   • janusfox 🍅
   • Zorin =^o.o^=
   • Captain Packrat
   > Login sessions are done with tokens; there's no need to sign out sessions on a password change in this decade.
   
   unless the tokens *never* expire because they didn't implement the refresh/renew mechanism (*cough* mastodon *cough*)
   • Embed this notice
     Zorin =^o.o^= (zorinlynx@tiggi.es)'s status on Thursday, 03-Aug-2023 00:12:51 JST Zorin =^o.o^=

     in reply to

     • janusfox 🍅
     • Captain Packrat

     @janusfox @captpackrat The password change really should have a checkbox “Sign out all devices” which you can leave unchecked. Login sessions are done with tokens; there's no need to sign out sessions on a password change in this decade.

   • Embed this notice
     janusfox 🍅 (janusfox@animal.business)'s status on Thursday, 03-Aug-2023 00:12:52 JST janusfox 🍅

     in reply to

     • Captain Packrat

     @captpackrat For the MS services I have at work, it relies on Azure SSO. I'm not defending M$ garbage or anything, but I will say this problem is at least solvable on corporate stuff.

   • Embed this notice
     Captain Packrat (captpackrat@pawb.fun)'s status on Thursday, 03-Aug-2023 00:12:56 JST Captain Packrat

     "You changed your password, now you need to sign in 50 times on every single computer you use because Microsoft can't use a single login for Windows, Office, Teams, and Onedrive."