I think a more compatible model would be to rely on something like cookies, have a particular service that does not require authentication, and then check the response to that to see if the user is authenticated. Then you can put access control on all your other services to ensure authenticated access.--
You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group.
To view this discussion on the web visit https://groups.google.com/d/msg/google-web-toolkit/-/HrYT7hSLoX0J.
To post to this group, send email to email@example.com.
To unsubscribe from this group, send email to firstname.lastname@example.org.
For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.