Deactivated users can still get tokens
Noticed this at work. A deactivated admin could still get a token, but was confused that the use of the token was causing a 403 error for every action and logins weren't working.
Noticed this at work. A deactivated admin could still get a token, but was confused that the use of the token was causing a 403 error for every action and logins weren't working.