On Sep 5, 2012, at 9:03 AM, jleleu wrote: > 1) I see the use case (switching from desktop to laptop). What's the real > objective ? To enforce security : to avoid using the same account from two > different locations, the last IP (location) used to authenticate prevents the > re-use of a previous one (location). This way, no one can use my desktop to > re-use my previous authentication when I'm using my laptop, right ?
Exactly. > > 2) In fact, REST API is not working in this case : we don't have > login/password, nor TGT. My code swims upstream from the service ticket. That appears to work, with the somewhat unfortunate side effect of churning a lot of "null" service tickets. If we could expose a "touch()" method on the TGT interface intended to set the "last used" timestamp to now, then that would be excellent. > > Feel free to contribute… What would be the best way to do so (other than the descriptions I've already mailed, which are now in the archives ready for Google to find :) )? -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
