Hello, Yes it's possible : the situation you've described is exactly our TGT expiration policy : - TGT must be reused under 6 hours or be deleted - TGT life cannot exceed 12 hours
I had to write a java class to achive that behaviour (we use cas 3.3.5 at this time), and wire it to CAS through xml configuration files. I can send you more details if you're interested in. Rgds. Pour sauver la planète ce mail ne peux être imprimé ----- Mail Original ----- De: "Andrew Morgan" <[email protected]> À: [email protected] Envoyé: Lundi 6 Juin 2011 20:04:35 Objet: [cas-user] combined ticket expiration Is it possible to have both the TimeoutExpirationPolicy and the HardTimeoutExpirationPolicy applied at the same time? I was thinking it would be useful to force re-authentication every X hours (12 hours, for example) using the HardTimeoutExpirationPolicy and also apply a 2 hour inactivity timeout. Thanks, Andy -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
