• Type: Suggestion
• Resolution: Low Engagement
• Fix Version/s: None
• Component/s: Authentication / Security, Caching, SSO
• Labels:

  • cleanup-seos-fy25

[CWD-5250] Cache cookie.tokenkey pulled from Crowd's /rest/config/cookie

Aakrity Tibrewal (Inactive) made changes - 27/Apr/2025 12:43 PM

Resolution		New: Low Engagement [ 10300 ]
Status	Original: Future Consideration [ 11775 ]	New: Closed [ 6 ]

Aakrity Tibrewal (Inactive) made changes - 27/Apr/2025 12:37 PM

Labels

New: cleanup-seos-fy25

SET Analytics Bot made changes - 18/Apr/2025 4:27 AM

Support reference count

New: 5

Justin W. made changes - 13/Dec/2019 1:14 AM

Remote Link

New: This issue links to "Page (Confluence)" [ 463432 ]

Katherine Yabut made changes - 19/Sep/2019 5:51 AM

Workflow

Original: JAC Suggestion Workflow [ 3387890 ]

New: JAC Suggestion Workflow 3 [ 3631047 ]

Mareusz (Inactive) made changes - 18/Sep/2019 11:23 AM

Status

Original: Under Consideration [ 11774 ]

New: Future Consideration [ 11775 ]

Mareusz (Inactive) made changes - 18/Sep/2019 11:21 AM

Component/s

New: Authentication / Security [ 12726 ]

Andrew S (Inactive) made changes - 06/Sep/2019 10:19 AM

Description

Original: h3. Summary When {{cookie.tokenkey}} is missing in product's {{crowd.properties}} the value will be pulled from Crowd's {{/rest/config/cookie}} endpoint every time authentication check happens. {{cookie.tokenkey}} is an optional configuration and it should be safe to not define it, but at the same time it adds a lot of unnecessery communication load. Making it cached on server side for few minutes could address this problem. h3. Workaround Set the {{cookie.tokenkey}} to the value configured in the Crowd server. This is detailed in [The crowd.properties file|https://confluence.atlassian.com/display/CROWD/The+crowd.properties+file]. Specifically: An example of this configuration: {code:XML} ... cookie.tokenkey crowd.token_key {code}

New: h3. Summary When {{cookie.tokenkey}} is missing in product's {{crowd.properties}} the value will be pulled from Crowd's {{/rest/config/cookie}} endpoint every time authentication check happens. {{cookie.tokenkey}} is an optional configuration and it should be safe to not define it, but at the same time it adds a lot of unnecessery communication load. Making it cached on server side for few minutes could address this problem. h3. Workaround Set the {{cookie.tokenkey}} to the value configured in the Crowd server. This is detailed in [The crowd.properties file|https://confluence.atlassian.com/display/CROWD/The+crowd.properties+file]. Specifically: An example of this configuration: {code:XML} ... cookie.tokenkey=crowd.token_key {code}

Monique Khairuliana (Inactive) made changes - 19/Aug/2019 11:45 PM

Workflow	Original: Simplified Crowd Development Workflow v2 [ 2812479 ]	New: JAC Suggestion Workflow [ 3387890 ]
Issue Type	Original: Improvement [ 4 ]	New: Suggestion [ 10000 ]
Status	Original: Verified [ 10005 ]	New: Under Consideration [ 11774 ]

Andriy Yakovlev [Atlassian] made changes - 19/Sep/2018 1:33 PM

Status

Original: Open [ 1 ]

New: Verified [ 10005 ]

Load more older history items