Story #2020
InvalidToken & InvalidCredentials are redundant
Start date:
2011-11-11
Due date:
% Done:
0%
Story Points:
Sprint:
Description
Invalid Credentials and InvalidToken seem to be the same, and never thrown in the same method, so at least* one should be deprecated. (recommend deprecating InvalidToken, since 'token' is both a vague term, and a subtype of 'credentials').
- it was also suggested that since neither can be thrown from the service implementations, (SSL connection intercedes and handles these situations), that both could be deprecated.
The other point of view is that the client could recast SSL exceptions to an InvalidCredentials exception
History
#1 Updated by Dave Vieglais over 12 years ago
- Position set to 1
#2 Updated by Dave Vieglais over 12 years ago
- Status changed from New to Rejected
These are different issues - a token (certificate) can be invalid which is a different issue to invalid credentials which means the certificate is ok, but the credentials contained therein are bogus.