Tess Rinearson An Over Engineering Disaster with Macaroons



  • Revocation is hard because it can’t be done immediately (have to wait for issued capabilities to expire)
  • Hard to develop locally as discharge macaroons have to be reissued frequently
  • Caused uptime dependency issue with server that had to stay up to mint/attenuate/validate macaroons or something like that (ACL via macaroons?)