Description
If the STSClient is used as an intermediary with delegation (OnBehalfOf/ActAs) you must set the property "security.cache.issued.token.in.endpoint" to "false". Otherwise it just retrieves the first cached token from the endpoint. However, it would be better to disable caching tokens per-endpoint if we have a delegation token by default, as it is less of a security risk.