Skip to content

ldap: allow using a cache for authentication and authorization #125100

New issue
New issue
Open
Open
ldap: allow using a cache for authentication and authorization#125100
Assignees
souravcrl
Labels
A-authenticationPertains to authn subsystemsA-securityC-enhancementSolution expected to add code/behavior + preserve backward-compat (pg compat issues are exception)P-3Issues/test failures with no fix SLAT-product-security
@dikshant

Description

@dikshant
dikshant
opened on Jun 4, 2024

We currently have a cache that is used for authentication. We should extend this to also work with LDAP authentication.

We currently have a cache that is used for authentication. We should extend this to also work with LDAP authentication. Since the current cache only caches role options, we should investigate extending this cache or adding another cache for authorization. We should also have settings to control the cache TTL eg:

SET CLUSTER SETTING server.authentication_cache.time_to_live= '10m'
SET CLUSTER SETTING server.authorization_cache.time_to_live = '10m';

Jira issue: CRDB-39236

Epic CRDB-33829

Metadata

Metadata

Assignees

Labels

A-authenticationPertains to authn subsystemsA-securityC-enhancementSolution expected to add code/behavior + preserve backward-compat (pg compat issues are exception)P-3Issues/test failures with no fix SLAT-product-security

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions