How to invalidate a TGT in CAS 3.1.2?
Scott Battaglia
scott.battaglia at gmail.com
Wed Mar 19 17:32:04 EDT 2008
If you have a reference to the CentralAuthentiationServiceImpl, calling
destroyTicketGrantingTicket would work. Essentially, expiring a ticket is
the same as invalidating it. The CAS server won't use a ticket that has
been expired.
-Scott
On Wed, Mar 19, 2008 at 4:01 PM, Adam Rybicki <arybicki at unicon.net> wrote:
> I have a filter that sits "in front of" CAS. The purpose of this filter
> isn't important, but in certain conditions it needs to invalidate a TGT.
> The filter does not have access to the CASTGC cookie,but it does have the
> TGT ID.
>
> I can use (and have proven that it works) TicketRegistry to get me a
> TicketGrantingTicket, but that has no obvious invalidate() method. I don't
> think that expire() and deleteTicket() is the way to go.
>
> Should I instead get CentralAuthenticationService and call its
> destroyTicketGrantingTicket() method? I think that this would probably
> work, but is it the "right way" to do it?
>
> Thanks,
> Adam
>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
>
--
-Scott Battaglia
PGP Public Key Id: 0x383733AA
LinkedIn: http://www.linkedin.com/in/scottbattaglia
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20080319/1b7fcfe2/attachment.html
More information about the cas
mailing list