I believe from when I looked at it you have to store the revocation tokens in a ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		nulltxt on Dec 14, 2023 \| parent \| context \| favorite \| on: Biscuit authorization I believe from when I looked at it you have to store the revocation tokens in a list so it isn't an amazing solution but better than storing the whole token ig

foota on Dec 14, 2023 [–]

It's generally better because revocation lists are assumed to be smaller than valid lists.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact