Greetings I have been asked to implement a timeout across all our apps. We have several apps that are all using CAS to authenticate (thanks to everyone here), and it is working GREAT. What I have been asked to do is add or implement functionality so that after 15 minutes of inactivity (with ANY of our apps), we log the user out of all our apps.
My thought was to set the CAS session TGT to expire after 15 minutes, then put a filter on each app that "pings" the cas server to keep that session TGT alive. This way after 15 minutes of no activity on any app hence no pings to CAS the main CAS session for a user will expire so the TGT (I think this is what it is called) goes away, and it looks like when that happens CAS invokes the Single Sign Off accomplishing what I wanted. Is there a better way to do this? Am I heading in completely the wrong direction? Thanks Troy _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
