diff --git a/pkg/session/session.go b/pkg/session/session.go
index 6c2fee6..bba9a12 100644
--- a/pkg/session/session.go
+++ b/pkg/session/session.go
@@ -22,8 +22,6 @@ var (
 type Reader interface {
 	// Get returns the session for a given http.Request, or an error if the session is invalid or not found.
 	Get(r *http.Request) (*Session, error)
-	// GetForTicket returns the session for a given Ticket, or an error if the session is invalid or not found.
-	GetForTicket(ctx context.Context, ticket *Ticket) (*Session, error)
 }
 
 // Writer knows how to create, update and delete a session.
diff --git a/pkg/session/session_manager.go b/pkg/session/session_manager.go
index f021f74..45b6913 100644
--- a/pkg/session/session_manager.go
+++ b/pkg/session/session_manager.go
@@ -172,7 +172,7 @@ func (in *manager) Refresh(r *http.Request, sess *Session) (*Session, error) {
 	}(lock, ctx)
 
 	// Get the latest session state again in case it was changed while acquiring the lock
-	sess, err = in.GetForTicket(ctx, sess.ticket)
+	sess, err = in.getForTicket(ctx, sess.ticket)
 	if err != nil {
 		return nil, err
 	}
diff --git a/pkg/session/session_reader.go b/pkg/session/session_reader.go
index d7bad2f..701a831 100644
--- a/pkg/session/session_reader.go
+++ b/pkg/session/session_reader.go
@@ -40,10 +40,10 @@ func (in *reader) Get(r *http.Request) (*Session, error) {
 		return nil, err
 	}
 
-	return in.GetForTicket(r.Context(), ticket)
+	return in.getForTicket(r.Context(), ticket)
 }
 
-func (in *reader) GetForTicket(ctx context.Context, ticket *Ticket) (*Session, error) {
+func (in *reader) getForTicket(ctx context.Context, ticket *Ticket) (*Session, error) {
 	var encrypted *EncryptedData
 	var err error