Currently authentication token in Shindig is being parsed as part of AuthenticationServletFilter. The filter stuff the token in the AuthInfo class, so it can be used later. So at this point the token is being parsed weather it is being used or not.
We suggest to improve that by deferring the parsing to the time it actually being used the first time. Basically AuthInfo instead of holding the token will store a proxy for the token that will do the parsing as needed. Currently the servlet filter support a special case of redirecting request as a result oof token parsing. I don't think this feature is being used by Shindig at this point. Token parsing deferral will stop supporting token redirection. Does anyone know if this feature is used anywhere? Is it really needed or can we obsolete it? Any opinion will be appricated. Thanks Ziv
