-
Type:
Improvement
-
Status: Resolved
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 10.6.5, arender-2.0.0
-
Component/s: Nuxeo Connector
-
Team:PLATFORM
-
Sprint:nxplatform #44
-
Story Points:2
We've first decided to put a 1hour TTL on authorized clients entries but finally decided to remove and change the behavior in NEV-437.
We now observe that in user concurrent sessions the authorized client could be removed while a session still needs it. This has been observed during load testing which was using the same Nuxeo user but different Previewer session. This is because the authorized client in persisted with the principal name and not the session id, thus the conflict.
The idea is to put back a TTL, but this time without any maxIddle, and without a fix duration. We will set the TTL to the access token expiration time + 24 hours.
As it the session will expire and be evicted before the authorized client, the authorized client won't be evicted if the access token needs to be refreshed after the session expiration (30min).
- is caused by
-
NEV-437 Fix hazelcast authorized client expiration time
-
- Resolved
-
- Is referenced in
