Hi,
is there a specific reason why CAS by default includes sequence numbers in the generated
ticket granting ticket ids? (e.g. TGT-1-xxxxx, TGT-2-xxxxx, ...)
With the help of the sequence numbers, one could perform traffic analyses (e.g. determining
how many logins there are in a given timespan), which might be undesired.
The default service tickets look similar, but in this case one can switch to SAML authentication,
where the ids are generated differently.
Could there be any potential problems in switching to SAML compliant ids for TGTs as well?
(I understand this might be possible by changing the configuration in uniqueIdGenerators.xml)
Best regards,
Guido
--
You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com
To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
