Hi, is there a way to have a per request validation of the user? It looks like the default settings doing a validation once per session.
I'm using a cas-server whose authenticationhandler connects to database. If the user is deleted in the database, the user stays logged in until he does a sso logout/timeout. Is there a standard way to test for permissions on every click/request the user is doing? I've tried the property "useSession=false" in "CAS Validation Filter" , but that does not work for post/put requests. Any other idea's? Regards, Thorsten _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
