, September 28, 2015 4:41 PM
To: cas-dev@lists.jasig.org
Subject: Re: [cas-dev] CAS REST API TGT Lifeteime
Also does this line remove TGT’s created via the REST API as well or just
the one that is created via normal login?
https://github.com/Jasig/cas/blob/master/cas-server-webapp-support/src/main
: "cas-dev@lists.jasig.org<mailto:cas-dev@lists.jasig.org>"
Date: Monday, September 28, 2015 at 17:24
To: "cas-dev@lists.jasig.org<mailto:cas-dev@lists.jasig.org>"
Subject: [cas-dev] CAS REST API TGT Lifeteime
What’s the lifetime of a TGT created via the CAS REST A
What’s the lifetime of a TGT created via the CAS REST API (POST
/cas/v1/tickets) ?
Of course it is killed once there is a DELETE performed on the resource, but
barring that, how long will the TGT be valid?
-- Alex
--
You are currently subscribed to cas-dev@lists.jasig.org as:
arch...@mail-arc
E.g. I thought that in an organization where it would be service to service,
the username and password could be a "service account" user. We have that
here for Microsoft's Active Directory LDAP. I use a service account to open
the secure communications first, for LDAP, and then use the LDAP to
au
CAS doesn't know. As per the CAS protocol, its your responsibility to
protected your TGT, whether its used via RESTful API or web browser (its why
TGTs are only sent to the web browsers over SSL). The TGT is your mechanism
for communicating with CAS without having to re-enter your
username/passwo
Scott:
When you ask for the TGT ID, how does CAS know that "you" are the one that
is now returning this TGT ID for a service ticket? Or, does CAS accept the
TGT from whoever sends it?
I'm doing a GWT rich client and using RESTful JSON data services. I want to
require CAS REST use prior to retur
