From AM 6.0.0 onwards, the endpoint realms/root/sessions?_action=validate can be called with the "refresh=false" flag if we don't want to reset the SSO token idle time - see
This will work for sessions v2.1 and v3.1 onwards.
The main usecase for this is, if we need to validate multiple sessions in one go, and we want to minimize the impact of this action in the CTS. If we are using stateful sessions, and we do not set this flag, every time we validate, we will be doing a write in the database (that is an expensive operation). If we are validating several sessions in a batch, it can have an impact on performance.
Using the refresh=false will avoid doing any writes in CTS, making this batch validations more efficient.