On Feb 22, 2012, at 12:44 PM, Stephen More wrote: > Is anyone currently using CAS to protect AJAX pages written in primefaces ? > For session timeouts when using non-ajax pages everything redirects > back to login page as designed. > > When a session timeout occurs on an ajax page, a partial page update > is requested, but the user is never redirected back to the login page. > Is there any config that is required to get CAS to play well with an AJAX > page ?
I am not a guru on the subject, but CAS doesn't care about Ajax. If your ajax functions properly respond to status codes and headers then you need to do the redirect yourself with you get a access denied. CAS, of course doesn't know your client, and doesn't care what call it is so it cannot do much then deny access and send proper headers. > > > -Thanks > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
