|Topic:||security key web service tokens are displayed when the service is disabled or if the user is not authorized any more|
|Versions affected:||2.1 to 2.1.2+, 2.0 to 2.0.5+ (1.9.x not affected)|
|Reported by:||Jerome Mouneyrac|
|Workaround:||Do not enable then disable web services|
Expired web service tokens were being displayed.