Firstyear
Firstyear
I intentionally didn't add it to leap because it's easy to work around as you noted. It's also a pain in the butt to actually keep stuff up to date...
poking @yaleman to come back to this :)
So what's interesting here is that while you have presented a solution to the problem, I think there is a better solution - we have mostly written application passwords now,...
So the idea is there are per-application and per-device passwords. So you would have an IMAP password for your laptop and your phone, and those are different to say a...
And there is a header or cookie version of the authe session token you can pass back. It's set after the call to AuthStep::Init.
> I just tried the same thing with curl CLI and there seem to be a lot of moving parts so I can't quite figure out the full picture: >...
Yeah, anonymous can't use service tokens.
> So it's `Authorization: Bearer `? > > I'm sure I tried that first and it didn't work, I'll have to have another poke at it soon. Yes, just like...
There is a long history related to that. We considered if we should allow anonymous based on *no* Bearer auth, but we thought about it and went okay, we want...
I'd be happy to see this as a feature. I'd probably make it some kind of config where we can adjust how home dirs are managed, because we also likely...