am_sso_is_valid_token() looks in the passed sso_token_handle to check for validity. It does not go to Access Manager.