Are you attempting to access a service or just going to /login ? We don't "test" TGT validity until you attempt to use it (access a service). This cuts down on arbitrary requests to the backend (though causes some confusion when testing :-))
On Fri, Aug 9, 2013 at 6:22 PM, Tom Poage <[email protected]> wrote: > On 08/09/2013 03:04 PM, Tom Poage wrote: > >> You'd want to use the HardTimeoutExpirationPolicy instead: > >> https://wiki.jasig.org/display/CASUM/Ticket+Expiration+Policy > > > > Giving that one a test shot. > > Tried both TicketGrantingTicketExpirationPolicy and > HardTimeoutExpirationPolicy with a timeout of 5 minutes (the former 300 > seconds, the latter 300000 ms). Can't seem to get it to re-prompt for a > login. > > Didn't think so, but do I also need to set the TGC max age? Cf. > ticketGrantingTicketCookieGenerator.xml > > > <bean id="ticketGrantingTicketCookieGenerator" > class="org.jasig.cas.web.support.CookieRetrievingCookieGenerator" > > p:cookieSecure="true" > > p:cookieMaxAge="-1" > > p:cookieName="CASTGC" > > p:cookiePath="/cas" /> > > Thanks. > Tom. > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
