Hi, On 3/13/07, Luke McLean <[EMAIL PROTECTED]> wrote:
Hello, I have a Flex2 Webapp launching from a CAS protected jsp page. The Flex2 Webapp uses WebServices which will also be CAS protected (via Mule). To be able to proxy the user credentials from the Webapp to the WebServices I am creating some ProxyTickets on the initial access to the Flex2 Webapp jsp page and passing these to Flex2 via flashvars. Flex does not work with Httpsession (unless I pay 20K USD for Flex Data Services) so this creates a few issues. I can then use these ProxyTickets to get the user credentials securely at the WebServices. My questions. 1) If a ProxyTicket is not used immediately to query a backend WebService, how long before it expires? i.e. the proxy ticket is stored on the client until used, which could be for some time.
The default timeout I believe is 90 seconds (its the same as the timeout for Service Tickets). Its adjustable. Why don't you just ask for a proxy ticket right before its needed though? 2) Is it intended that a new ProxyTicket be created prior to each request to
a backend service?
Depending on the backend service, they may support sessions (or they may not). If they are stateless then you would need a proxy ticket per request. Otherwise, you could use whatever session mechanism the backend has. Each Proxy Ticket is only designed to be used once though. -Scott Thanks for the help,
Luke. -- View this message in context: http://www.nabble.com/ProxyTicket-Timeout-period-tf3398852.html#a9464218 Sent from the CAS Users mailing list archive at Nabble.com. _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
-- -Scott Battaglia LinkedIn: http://www.linkedin.com/in/scottbattaglia
_______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
