| ▲ | matja 2 days ago | |
What if the "slug" was a prefix for the API key revocation URL, so the API key was actually a valid URL that revoked itself if fetched/clicked? :) | ||
| ▲ | out_of_protocol a day ago | parent | next [-] | |
i suspect a lot of tools will try to fetch the url without explicit user action (e.g. messengers do that kind of crap). Gotta be hard to keep keys non-revoked, which is a nice side-effect | ||
| ▲ | vjay15 a day ago | parent | prev [-] | |
but api keys arent meant to be revoked once used right? | ||