[jboss-jira] [JBoss JIRA] (WFCORE-2502) Legacy ldap realm, entry for non existing user are cached

Tue Jun 6 07:02:00 EDT 2017

    [ https://issues.jboss.org/browse/WFCORE-2502?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13416817#comment-13416817 ] 

RH Bugzilla Integration commented on WFCORE-2502:
-------------------------------------------------

Jiri Ondrusek <jondruse at redhat.com> changed the Status of [bug 1458837|https://bugzilla.redhat.com/show_bug.cgi?id=1458837] from ASSIGNED to POST

> Legacy ldap realm, entry for non existing user are cached
> ---------------------------------------------------------
>
>                 Key: WFCORE-2502
>                 URL: https://issues.jboss.org/browse/WFCORE-2502
>             Project: WildFly Core
>          Issue Type: Bug
>          Components: Security
>            Reporter: Martin Choma
>            Assignee: Jiri Ondrusek
>
> In case when cache is used for legacy LDAP security realm and any access to secured resource occures, then entry is added into cache even if user has not been authenticated correctly. This can cause that valid entries are evicted due to max-cache-size. This reduce benefit of LDAP cache and impacts performance.
> Same behavior can be seen in 7.0.0.GA.


--
This message was sent by Atlassian JIRA
(v7.2.3#72005)