[Amdatu-developers] [JIRA] (AMDATUAUTH-126) TokenProviderImpl is not suited for a clustered setup

Arthur Meijer (JIRA) Thu, 09 Feb 2012 10:10:07 -0800

    [ 
http://jira.amdatu.org/jira/browse/AMDATUAUTH-126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12602#comment-12602
 ]


Arthur Meijer commented on AMDATUAUTH-126:
------------------------------------------

The Ciphers should probably become instance variables
private static Cipher ENCRYPT_CHIPHER;
private static Cipher DECRYPT_CIPHER;

                
> TokenProviderImpl is not suited for a clustered setup
> -----------------------------------------------------
>
>                 Key: AMDATUAUTH-126
>                 URL: http://jira.amdatu.org/jira/browse/AMDATUAUTH-126
>             Project: Amdatu Auth
>          Issue Type: Bug
>          Components: OAuth server
>    Affects Versions: 0.2.1
>            Reporter: Arthur Meijer
>            Assignee: Ivo Ladage - van Doorn
>             Fix For: 0.2.2
>
>
> The TokenProvider servers generates a secret in memory for signing and 
> validating tokens. The secret should be the same for all instances in a 
> cluster for a specific tenant.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
http://jira.amdatu.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        
_______________________________________________
Amdatu-developers mailing list
[email protected]
http://lists.amdatu.org/mailman/listinfo/amdatu-developers

[Amdatu-developers] [JIRA] (AMDATUAUTH-126) TokenProviderImpl is not suited for a clustered setup

Reply via email to