H*i,* Below is from a tech website. Hope should be clear enough to understand the importance of TGT and the cookie as well.
*Ticket-granting ticket (TGT): * Ticket granting ticket will be generated when the /login url is passed to CAS server and the credentials provided are successfully authenticated. A TGT is the main access into the CAS service layer. Without a TGT, a user of CAS cannot do anything. TGT is a random string with a prefix “TGT-“. TGT will be added to an HTTP cookie upon the establishment of single sign-on and whenever user access different applications, this cookie will be referred for auto-logging in the user. *Ticket Granting Cookie: *Ticket-granting cookie is an HTTP cookie set by CAS upon the establishment of a single sign-on session. This cookie maintains login state for the client and when client navigates to different applications, this cookie will be checked to auto-login the user. Ticket-granting cookies will be destroyed when the client closes the browser. They also can be destroyed when the clients clicks on Logout link. The value of ticket-granting cookies SHOULD begin with the characters, "TGC-". On Fri, Nov 21, 2014 at 10:24 PM, Swapnil Admulwar < [email protected]> wrote: > When CAS server authenticating users, it creates a Single signon (SSO) > seesion. > After creating a SSO seesion, CAS server creates a cookie that contains > Ticket Granting Ticket(TGT). > TGT is seesion key for the users SSO seesion. > > Can anyone explain me, what is the exact use of this cookie? > > Where it is use ? and How we CAS use it ? > > Meaning imporatance of this TGC (Ticket Granting Cookie). > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
