[openstreetmap/openstreetmap-website] auto-delete oauth tokens after X time (#1201)

Haikuch notifications at github.com
Mon Apr 11 16:42:17 UTC 2016

of course, there is no doubt that using one account for several applications isnt free of tracking. Its just annoying to see, that I can read my behavior of using external applications since I registered to OSM. I can see, how I was using frequently different apps and at what daytime.

And thats because, and there is the problem with our different points of view, I keep cookies only for one browser session. That means, anytime I use the services I get a new token that will stay in my account until revolution, or I delete them manually. Oh, and the reason I delete all my cookies after session is because I dont like to be tracked by sites :) (and to train password typing by the way...)

Anyway, I see there are technical reasons to keep the tokens because users keep logged into the apps over days and weeks. Best way would be, to give users the opportunity to set token-lifetime and to choose how many tokens for a single app are allowed.

And at least, please add a button to revoke all tokens, because deleting tokens of 4 years one by one is a pain *** :)

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20160411/3b49f319/attachment.html>

More information about the rails-dev mailing list