Rich, Only the normal concerns of exposure of secure application session cookies to interception.
Cf. http://en.wikipedia.org/wiki/Firesheep (If your application is worth logging into, it's probably worth accessing via https: after login.) Kind regards, Andrew On Fri, May 31, 2013 at 2:40 PM, Richard von Rauchhaupt < [email protected]> wrote: > Are there any security concerns for redirecting to an HTTP site after > authenticating? > > Thanks, > Rich > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
