Shib Session Management Information
- Shib sessions implicitly establish CAS sessions, but not vice versa.
- Implications:
- If you first log into Shib (say for Gmail), you can later seamlessly SSO to CAS sessions.
- First logging into CAS will not seamlessly SSO to a Shib session.
- Successful authentication to Shib grants user a Ticket Granting Ticket (TGT) to be used for SSO.
- TGT idle timeout: 2 hour sliding window.
- TGT hard timeout: 8 hours from date of TGT creation.
- Each application maintains its own session state.
CAS Session Management Information
- Successful authentication to CAS grants user a Ticket Granting Ticket (TGT) to be used for SSO.
- TGT idle timeout: 2 hour sliding window.
- TGT hard timeout: 8 hours from date of TGT creation.
- Each application maintains its own session state.
{"serverDuration": 158, "requestCorrelationId": "8483c6e477874bc684fed32cdba7d50c"}