You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@karaf.apache.org by "Matt Pavlovich (Jira)" <ji...@apache.org> on 2022/04/29 16:11:00 UTC

[jira] [Commented] (KARAF-7429) Add configuration option to expire LDAP cache entries

    [ https://issues.apache.org/jira/browse/KARAF-7429?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17530082#comment-17530082 ] 

Matt Pavlovich commented on KARAF-7429:
---------------------------------------

Current LDAPCache implements event listener, as such-- this feature should not be needed. Any change to user or role dn's triggers a cache clear.

> Add configuration option to expire LDAP cache entries
> -----------------------------------------------------
>
>                 Key: KARAF-7429
>                 URL: https://issues.apache.org/jira/browse/KARAF-7429
>             Project: Karaf
>          Issue Type: Improvement
>            Reporter: Matt Pavlovich
>            Priority: Major
>
> Currently, LDAP group and role data is cached indefinitely.
> This change aims to:
> 1. Set a default expiry time for cache entries
> 2. Add configuration flag to modify expiry time
> 3. Remove cached data when a user authentication fails
> Optionally, 
> a. Expose a shell command or JMX option to fully reset the cache



--
This message was sent by Atlassian Jira
(v8.20.7#820007)