Hey Carl, Users can definitely access the system with their accounts, this is intended to happen from behind-the-scenes, meaning that it's something the user should never see (imagine an async call like something from $.ajax(...) or what have you). Again, this is so that the service can contact the API without a user ever seeing it happen or being redirected through hoops.
Best, Eric -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
