You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Jeremy Hanna (Jira)" <ji...@apache.org> on 2020/01/24 04:03:00 UTC

[jira] [Updated] (CASSANDRA-15522) Update defaults for the validity timeframe of roles, permissions, and credentials

     [ https://issues.apache.org/jira/browse/CASSANDRA-15522?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jeremy Hanna updated CASSANDRA-15522:
-------------------------------------
    Description: 
It's been found that the defaults for \{{roles_validity_in_ms}}, \{{permissions_validity_in_ms}}, and \{{credentials_validity_in_ms}} have been too low at 2000 ms or 2 seconds each.  As [~alexott] put it in the dev list discussion about defaults:
{quote}I have seen multiple times when authentication was failing under the heavy load because queries to system tables were timing out - with these defaults people may still have the possibility to get updates to roles/credentials faster when specifying _update_interval_ variants of these configurations.
{quote}
The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).

  was:
It's been found that the defaults for \{roles_validity_in_ms}, \{permissions_validity_in_ms}, and \{credentials_validity_in_ms} have been too low at 2000 ms or 2 seconds each.  As [~alexott] put it in the dev list discussion about defaults:

{quote}

I have seen multiple times when authentication was failing under the heavy load because queries to system tables were timing out - with these defaults people may still have the possibility to get updates to roles/credentials faster when specifying _update_interval_ variants of these configurations.

{quote}

The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).


> Update defaults for the validity timeframe of roles, permissions, and credentials
> ---------------------------------------------------------------------------------
>
>                 Key: CASSANDRA-15522
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-15522
>             Project: Cassandra
>          Issue Type: Improvement
>          Components: Feature/Authorization
>            Reporter: Jeremy Hanna
>            Priority: Normal
>
> It's been found that the defaults for \{{roles_validity_in_ms}}, \{{permissions_validity_in_ms}}, and \{{credentials_validity_in_ms}} have been too low at 2000 ms or 2 seconds each.  As [~alexott] put it in the dev list discussion about defaults:
> {quote}I have seen multiple times when authentication was failing under the heavy load because queries to system tables were timing out - with these defaults people may still have the possibility to get updates to roles/credentials faster when specifying _update_interval_ variants of these configurations.
> {quote}
> The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org