On Tue, 2013-07-30 at 18:15 +0300, Alexander Kanavin wrote:
Also, after giving it some thought, I think that forcing the use of
refresh token can make sense in case of flaky servers or clock drift. So
I'll add that capability to the plugin, and the proper sequence will
look like this:
- request a token and try to use it
- if it's rejected, request a token again, with a flag that forces the
use of refresh token
- if the second token is also rejected, enable
GSIGNOND_UI_POLICY_REQUEST_PASSWORD and try for the last time.
I agree, forcing refresh makes sense.
I just noticed that we didn't have Alberto on this part of the mail
thread. Adding him back.
Senior Software Engineer
Open Source Technology Center
Usenerstr. 5a Phone: +49-228-2493652