IBM Security Verify Access for Web WebSEAL always-send-tokens stanza entry

always-send-tokens

Use the always-send-tokens stanza entry to control whether WebSEAL sends a security token for every HTTP request.

always-send-tokens = {yes|true|no|false}

Description

Whether WebSEAL sends a security token for every HTTP request or Whether WebSEAL waits for a 401 response before it adds the security token.
We can use this configuration item to avoid generating and adding a security token to every request if the back-end web server can maintain user sessions. This configuration item is only useful if the request for authentication involves a 401 response, which currently applies to the Federation Runtime single sign-on only.
Options

yes WebSEAL sends a security token for every HTTP request.
no WebSEAL waits for a 401 response before it sends a security token for an HTTP request.

Usage: The always-send-token stanza entry is required when Federation SSO authentication is used over junctions.
Default: None
Example: always-send-tokens = false
Parent topic: [tfimsso:<jct-id>] stanza

yes	WebSEAL sends a security token for every HTTP request.
no	WebSEAL waits for a 401 response before it sends a security token for an HTTP request.