- Maniphest Tasks
- T13043: Improve authentication revocation behaviors
- rPd4b3cd5255b6: Document the "bin/auth revoke" tool
The tone of this doc is a little glib and light for documentation that will frequently be viewed in an emergency. I get that "You might do this with these commands:" is intended to suggest there are multiple ways to achieve the same result, but could also convey the impression that this set of commands might not actually accomplish the desired result. This page should give an administrator the warm fuzzies after carrying out the suggested steps.
"you should revoke" instead of "you may want to"
Just for the record, the result of the above is the same as --everything --everywhere, except the above keeps SSH keys, right?
"If you believe a user's credentials have been compromised" makes more sense than "affected by a compromise".
Also, "you should revoke" instead of "you may want to".
Too snarky for emergency documentation.