You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently the deactivate method still returns a DID and the log still exists. Should we make this more robust and delete the log or something along those lines?
The text was updated successfully, but these errors were encountered:
In the conversation @swcurran mentioned that a 3rd party operator handling a "right to be forgotten" request could just delete the relevant DID log and then anyone trying to resolve the DID would get a 404. I think this is a satisfactory solution. Maybe a description of this flow can be added to the spec under "Security and Privacy Considerations"
Currently the deactivate method still returns a DID and the log still exists. Should we make this more robust and delete the log or something along those lines?
The text was updated successfully, but these errors were encountered: