Hi, Thanks for the pointer. I think [2] can be used to expire the TGT immediately so that it can stop the browser at the CAS login page again. It has been mentioned in:
https://wiki.jasig.org/display/CASUM/Ticket+Expiration+Policy -Ken On Wed, Sep 26, 2012 at 5:00 PM, jleleu <[email protected]> wrote: > Hi, > > I don't know about such a mechanism : so far, throttling is mainly used on > login submissions, checking according IP and username [1]. > You can maybe use the ThrottledUseAndTimeoutExpirationPolicy [2], even if I'm > not sure it works properly for you [3]. > Best regards, > Jérôme > > [1] : > https://github.com/Jasig/cas/blob/master/cas-server-core/src/main/java/org/jasig/cas/web/support/InMemoryThrottledSubmissionByIpAddressAndUsernameHandlerInterceptorAdapter.java > [2] : > https://github.com/Jasig/cas/blob/master/cas-server-core/src/main/java/org/jasig/cas/ticket/support/ThrottledUseAndTimeoutExpirationPolicy.java > [3] : http://bb10.com/java-jasig-cas-user/2011-11/msg00030.html > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
