Hi,
Http state management mechanism states that, cookies not be passed/set for 3xx
redirects to different domains.
http://labs.apache.org/webarch/http/draft-fielding-http/p8-cookies.html#rfc.section.3.3.6
For CDSSO using CAS, redirects happen to different domains and it relies on the
fact that cookies are sent when redirecting to different domains.I have never
seen any issue with this, am I mis-interpreting state management rfc?
Thanks,Unmesh
_________________________________________________________________
New Windows 7: Find the right PC for you. Learn more.
http://windows.microsoft.com/shop
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
