[
https://issues.apache.org/jira/browse/CASSANDRA-15522?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jeremy Hanna updated CASSANDRA-15522:
-------------------------------------
Description:
It's been found that the defaults for \{{roles_validity_in_ms}},
\{{permissions_validity_in_ms}}, and \{{credentials_validity_in_ms}} have been
too low at 2000 ms or 2 seconds each. As [~alexott] put it in the dev list
discussion about defaults:
{quote}I have seen multiple times when authentication was failing under the
heavy load because queries to system tables were timing out - with these
defaults people may still have the possibility to get updates to
roles/credentials faster when specifying _update_interval_ variants of these
configurations.
{quote}
The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).
was:
It's been found that the defaults for \{roles_validity_in_ms},
\{permissions_validity_in_ms}, and \{credentials_validity_in_ms} have been too
low at 2000 ms or 2 seconds each. As [~alexott] put it in the dev list
discussion about defaults:
{quote}
I have seen multiple times when authentication was failing under the heavy load
because queries to system tables were timing out - with these defaults people
may still have the possibility to get updates to roles/credentials faster when
specifying _update_interval_ variants of these configurations.
{quote}
The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).
> Update defaults for the validity timeframe of roles, permissions, and
> credentials
> ---------------------------------------------------------------------------------
>
> Key: CASSANDRA-15522
> URL: https://issues.apache.org/jira/browse/CASSANDRA-15522
> Project: Cassandra
> Issue Type: Improvement
> Components: Feature/Authorization
> Reporter: Jeremy Hanna
> Priority: Normal
>
> It's been found that the defaults for \{{roles_validity_in_ms}},
> \{{permissions_validity_in_ms}}, and \{{credentials_validity_in_ms}} have
> been too low at 2000 ms or 2 seconds each. As [~alexott] put it in the dev
> list discussion about defaults:
> {quote}I have seen multiple times when authentication was failing under the
> heavy load because queries to system tables were timing out - with these
> defaults people may still have the possibility to get updates to
> roles/credentials faster when specifying _update_interval_ variants of these
> configurations.
> {quote}
> The suggestion is to set it to 60000 (1 minute) or 120000 (2 minutes).
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
