You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@activemq.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2022/12/13 14:08:00 UTC
[jira] [Commented] (ARTEMIS-4101) SecurityStore caches failed authentication result from LDAP connection failures
[ https://issues.apache.org/jira/browse/ARTEMIS-4101?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17646648#comment-17646648 ]
ASF subversion and git services commented on ARTEMIS-4101:
----------------------------------------------------------
Commit 499e3c119f008a662ddbec2eaf1e00c8c6f94185 in activemq-artemis's branch refs/heads/main from Justin Bertram
[ https://gitbox.apache.org/repos/asf?p=activemq-artemis.git;h=499e3c119f ]
ARTEMIS-4101 caching failed authn result on LDAP cxn failures
> SecurityStore caches failed authentication result from LDAP connection failures
> -------------------------------------------------------------------------------
>
> Key: ARTEMIS-4101
> URL: https://issues.apache.org/jira/browse/ARTEMIS-4101
> Project: ActiveMQ Artemis
> Issue Type: Bug
> Reporter: Justin Bertram
> Assignee: Justin Bertram
> Priority: Major
> Time Spent: 10m
> Remaining Estimate: 0h
>
> If the LDAP infrastructure temporarily becomes unavailable, the broker caches the failure and no longer attempts to authenticate/authorize the user. This is a problem in use-cases with the {{security-invalidation-interval}} configured to a longer time period.
> Desired behavior - if the LDAP infrastructure has a connectivity problem, the broker should attempt to authenticate on subsequent logins rather than caching the result of the failure.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)