Erik Johnston f21e24ffc2 Add ability for access tokens to belong to one user but grant access to another user. (#8616) ... We do it this way round so that only the "owner" can delete the access token (i.e. `/logout/all` by the "owner" also deletes that token, but `/logout/all` by the "target user" doesn't). A future PR will add an API for creating such a token. When the target user and authenticated entity are different the `Processed request` log line will be logged with a: `{@admin:server as @bob:server} ...`. I'm not convinced by that format (especially since it adds spaces in there, making it harder to use `cut -d ' '` to chop off the start of log lines). Suggestions welcome.		2020-10-29 15:58:44 +00:00
..
__init__.py	Test ratelimiter	2014-09-02 15:16:26 +01:00
test_auth.py	Add ability for access tokens to belong to one user but grant access to another user. (#8616)	2020-10-29 15:58:44 +00:00
test_filtering.py	Remove the deprecated Handlers object (#8494)	2020-10-09 07:24:34 -04:00
test_ratelimiting.py	Add ability for access tokens to belong to one user but grant access to another user. (#8616)	2020-10-29 15:58:44 +00:00