Questions about API tickets

Questions about API tickets

  1. When I request a ticket the response includes the following line:

    PASS_EXPIRY=-1

    This line isn't mentioned in the documentation.  What does it mean?  Is this information useful to me?






  2. Will the ticket expire exactly one week after the date/time in the response?


  3. Does each ticket request result in a new, 7-day ticket?  If so, is there any harm in getting a new ticket every night?


  4. Can someone explain the logic behind these tickets?  They represent one more process that has to be monitored, and a possible failure point each week.  I don't know what they add since each request already has to include a user name, API key, module name, and request type, in addition to the actual request.  The ticket doesn't improve security since a new ticket request has to include the user ID and password for the account, and this has to be included in the code.


  5. I have noticed that the ticket isn't actually required, at least in some function calls.  I was trying to simulate an error to test my ability to recognize and handle problems.  But when I first modified a ticket and then removed it entirely, the API call still returned valid data and no error.  When are tickets really required?