a computer of one of our users was stolen. on that computer a Seafile client is installed and associated with a user account on a Seafile server instance that we are responsible for. the device’s mass storage isn’t encrypted and due to the device’s designated use-case the user account of the OS isn’t password protected.
now, obviously we would like to revoke the token that the client is authenticating with. is that possible with the web interface? or could anyone hint me at the significant parts of the database table?
has anyone ever formalized how such situation is handled within an institution?