[jira] [Created] (OAK-3508) External login module should reduce LDAP lookups for pre-authenticated users

Tobias Bocanegra (JIRA) Mon, 12 Oct 2015 17:20:32 -0700

Tobias Bocanegra created OAK-3508:
-------------------------------------

             Summary: External login module should reduce LDAP lookups for 
pre-authenticated users
                 Key: OAK-3508
                 URL: https://issues.apache.org/jira/browse/OAK-3508
             Project: Jackrabbit Oak
          Issue Type: Improvement
            Reporter: Tobias Bocanegra



consider the following JAAS setup:
- *sufficient* SSO Login Module
- *optional* Default Login Module
- *sufficient* External Login Module

This causes each login() to reach the external login module (which is desired) 
but causes an IDP lookup for each login, even if the user is already synced 
with the repository.

ideally the login module could pass the {{ExternalIdentityRef}} to the sync 
handler and to a tentative sync. the {{lastSyncTime}} should be respected in 
this case.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Created] (OAK-3508) External login module should reduce LDAP lookups for pre-authenticated users

Reply via email to