You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2022/12/13 14:08:00 UTC

[jira] [Commented] (ARTEMIS-4101) SecurityStore caches failed authentication result from LDAP connection failures

    [ https://issues.apache.org/jira/browse/ARTEMIS-4101?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17646648#comment-17646648 ] 

ASF subversion and git services commented on ARTEMIS-4101:
----------------------------------------------------------

Commit 499e3c119f008a662ddbec2eaf1e00c8c6f94185 in activemq-artemis's branch refs/heads/main from Justin Bertram
[ https://gitbox.apache.org/repos/asf?p=activemq-artemis.git;h=499e3c119f ]

ARTEMIS-4101 caching failed authn result on LDAP cxn failures


> SecurityStore caches failed authentication result from LDAP connection failures
> -------------------------------------------------------------------------------
>
>                 Key: ARTEMIS-4101
>                 URL: https://issues.apache.org/jira/browse/ARTEMIS-4101
>             Project: ActiveMQ Artemis
>          Issue Type: Bug
>            Reporter: Justin Bertram
>            Assignee: Justin Bertram
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> If the LDAP infrastructure temporarily becomes unavailable, the broker caches the failure and no longer attempts to authenticate/authorize the user. This is a problem in use-cases with the {{security-invalidation-interval}} configured to a longer time period.
> Desired behavior - if the LDAP infrastructure has a connectivity problem, the broker should attempt to authenticate on subsequent logins rather than caching the result of the failure.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)