Hey - Ivan pointed out to me that the Framework is storing the credentials - I can assume that this is in the session store for rails for it- I assume this isn't really the intent, and that in practice deltacloud should either only keep sessions in memory, or not at all, and just challenge each request?