SV: Caching checkAccess on session

Jan Sindberg Thu, 07 Jan 2016 03:39:36 -0800

> Fra: Shawn McKinney [mailto:[email protected]]
> Sendt: 6. januar 2016 16:35
>


[snip]

> 
> Calling createSession does one ldap search (user object) and one bind - only.
> 
> Calling sessionPermissions does one search, pulling back all permissions for a
> given user’s session (i.e. pulls back all permissions that are granted to 
> their
> activated roles).
> 
> Calling checkAccess does one permission search (read) pulling back the single
> permission.  If you have openldap audit enabled, it will do a compare after
> the perm read (to push a record into slapo access log).
> 
> Shawn

This is why I love this mailing list (and fortress). Thanks :-)

SV: Caching checkAccess on session

Reply via email to