You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We get this information when someone logs in via GitHub, from Django Social Auth and store it in the database. To the best of my knowledge we aren't using the token. Having it presents an extra security risk that we could easily avoid, so we should stop saving it to the database.
The text was updated successfully, but these errors were encountered:
lucyb
changed the title
Stop storing GitHub session tokens for users
Stop storing GitHub access_tokens for users
Mar 21, 2024
We get this information when someone logs in via GitHub, from Django Social Auth and store it in the database. To the best of my knowledge we aren't using the token. Having it presents an extra security risk that we could easily avoid, so we should stop saving it to the database.
The text was updated successfully, but these errors were encountered: