Addition of caching for security realms backed by ldap. ------------------------------------------------------- Key: WFLY-1523 URL: https://issues.jboss.org/browse/WFLY-1523 Project: WildFly Issue Type: Sub-task Security Level: Public(Everyone can see) Components: Domain Management, Security Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: 8.0.0.Final For JAAS this is achieved by caching keyed on the combination of the username and the password, once we switch to the CallbackHandler approach this is no longer applicable as there is often not a single username/credential combination - instead a protocol specific exchange is used to establish the identity of the remote user. Any cache would also potentially require: - - Predicable eviction. - Management Operations e.g. clear entire cache, remove single entries etc... - Separation of caches for authenticiation data and additional data loaded for authorization purposes.