> because it can tell it was generated using a now-invalid sessionToken
This is the bit that I wasn't certain about, thanks for clarifying.
IIRC the storage server may accept token server's token that was obtained using a now-invalid sessionToken, but that's one layer removed from this so not immediately important.
Bug 1568336 Comment 2 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
> because it can tell it was generated using a now-invalid sessionToken
This is the bit that I wasn't certain about, thanks for clarifying.
IIRC the storage server may accept token server's token that was obtained using a now-invalid sessionToken, but that's one layer removed from this so not immediately important.
> because [tokenserver] can tell [certificate] was generated using a now-invalid sessionToken
This is the bit that I wasn't certain about, thanks for clarifying.
IIRC the storage server may accept token server's token that was obtained using a now-invalid sessionToken, but that's one layer removed from this so not immediately important.