access_token also not valid anymore when user disabled

Question

access_token also not valid anymore when user disabled

Closed this issue 6 years ago · 1 comments

This was a nice side effect of implementing a fix for https://github.com/eduvpn/vpn-user-portal/issues/99.

So whenever a user is disabled the access_token is rejected, so stuff in the API about disabled user can all be removed (or get dummy values), because that is no longer relevant.

Answer 1 · 2018-12-04T23:58:24.000Z

Or maybe we should restore this?! Probably not as it makes clients simpler!