> Well I was thinking more in terms of requesting a new service ticket from > the CAS server and validating that rather than holding on to a long lived > service ticket.
This is exactly what useSession=false does. You would only have to reauthenticate to CAS on every request if the renew filter attribute is set to true, which obviously you wouldn't want to do. M -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user