Page MenuHomePhabricator
Differential D17458

Provide "bin/auth revoke" with a revoker for Conduit tokens
ClosedPublic
Actions

Authored by epriestley on Mar 3 2017, 10:22 PM.
Tags
None
Referenced Files
F19041004: D17458.diff
Wed, Nov 26, 2:11 PM
F18834106: D17458.diff
Oct 26 2025, 6:54 AM
F18811501: D17458.id41984.diff
Oct 20 2025, 3:49 AM
F18811500: D17458.id41983.diff
Oct 20 2025, 3:49 AM
F18811499: D17458.id.diff
Oct 20 2025, 3:49 AM
F18807499: D17458.diff
Oct 19 2025, 2:07 AM
F18769485: D17458.id41983.diff
Oct 8 2025, 7:48 AM
F18768103: D17458.diff
Oct 8 2025, 1:46 AM
View All Files
Subscribers
None

Details

Reviewers
chad
Maniphest Tasks
T12313: Cloudflare leaked all HTTPS traffic on the internet into public caches ("Cloudbleed")
Commits
rP8ce25838f541: Provide "bin/auth revoke" with a revoker for Conduit tokens
Summary

Ref T12313. This puts a UI on revoking credentials after a widespread compromise like Cloudbleed or a local one like copy/pasting a token into public chat.

For now, I'm only providing a revoker for conduit tokens since that's the immediate use case.

Test Plan
  • Revoked in user + type, everything + user, everywhere + type, and everything + everywhere modes.
  • Verified that conduit tokens were destroyed in all cases.

Diff Detail

Repository
rP Phabricator
Branch
revoke1
Lint
Lint Passed
Unit
Tests Passed
Build Status
Buildable 15887
Build 21031: Run Core Tests
Build 21030: arc lint + arc unit

Revision Contents
Changeset List

Diff 41983

View Options

src/__phutil_library_map__.php

Loading...
View Options

src/applications/auth/management/PhabricatorAuthManagementRevokeWorkflow.php

Loading...
View Options

src/applications/auth/revoker/PhabricatorAuthConduitTokenRevoker.php

Loading...
View Options

src/applications/auth/revoker/PhabricatorAuthRevoker.php

Loading...
Phabricator · Built by Phacility