Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Detect when a device expires (not just an access token) and cleanup #127

Open
DMRobertson opened this issue May 23, 2023 · 0 comments
Open

Detect when a device expires (not just an access token) and cleanup #127

DMRobertson opened this issue May 23, 2023 · 0 comments
Labels
poller proxy-only Proxy limitation
Milestone
v1.1

Comments

@DMRobertson
Copy link
Contributor

As noticed here #51 (comment)

Problem: how do we distinguish between a device expiry and a token expiry?

If we don't, we'll end up keeping device-scoped data forever, in particular, to-device messages. This will be A Problem.

I mooted that

Maybe it's sufficient to look for soft or hard logouts, and expire entire devices on hard logouts?

But for this we'd have to understand how the OIDC "compatability" layer works in Synapse. Do device expiries get communicated as hard logouts, and do token expiries get communicated as soft logouts? I will need to understand what is going on and liase with @sandhose.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
poller proxy-only Proxy limitation
Projects
None yet
Milestone
v1.1
Development

No branches or pull requests
2 participants
@kegsay @DMRobertson