[
https://issues.apache.org/jira/browse/CASSANDRA-16958?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17416310#comment-17416310
]
Josh McKenzie commented on CASSANDRA-16958:
-------------------------------------------
There's some TODO: BEFORE COMMIT referencing CASSANDRA-12988 in there that'll
need to be tidied up before commit. Otherwise should be ready for review.
||Item|Link|
|JDK8
tests|[Link|https://app.circleci.com/pipelines/github/josh-mckenzie/cassandra/82/workflows/e1977ab3-76e4-4f67-b7f3-0c74e130c231]|
|JDK11
tests|[Link|https://app.circleci.com/pipelines/github/josh-mckenzie/cassandra/82/workflows/9a189e55-1353-4049-abc2-f541b835299d]|
|PR|[Link|https://github.com/apache/cassandra/pull/1205]|
> Prewarm role and credentials caches to avoid timeouts at startup
> ----------------------------------------------------------------
>
> Key: CASSANDRA-16958
> URL: https://issues.apache.org/jira/browse/CASSANDRA-16958
> Project: Cassandra
> Issue Type: Improvement
> Components: Feature/Authorization
> Reporter: Josh McKenzie
> Assignee: Josh McKenzie
> Priority: Normal
> Fix For: 4.x
>
>
> With our current auth querying setup, you can end up with a thundering herd
> on reconnect due to delays on auth resolution.
> We should instead allow the ability to do a 'select' on all roles and
> pre-load the cache before turning on native transport. Notably, this could
> present some unacceptable delays on start with a very large count of users
> (thousands), or someone who uses a third party auth system rather than the
> built-in authorizer so this should be configurable and opt-in.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
