cache-size

cache-size = <number_decisions>

Description

Maximum number of OAuth 2.0 bearer token authorization decisions to cache. This EAS has a built-in cache for storing authorization decisions so that WebSEAL can repeatedly use the same OAuth 2.0 bearer token without sending repeated requests to the Federation Runtime.

WebSEAL can cache bearer token decisions because they do not require signing of the request, unlike OAuth 1.0 requests. The lifetime of the cache entry depends on the Expires attribute the Federation Runtime returns. If the Federation Runtime does not return this attribute, WebSEAL does not cache the decision.

This EAS implements a Least Recently Used cache. The decision associated with the least recently used bearer token is forgotten when a new bearer token decision is cached. A cache-size of 0 disables caching of authorization decisions.

Options

<number_decisions>

The maximum number of OAuth 2.0 bearer token authorization decisions that WebSEAL caches.

Usage:

This stanza entry is optional.

Default:

The default value is 0, which disables caching of authorization decisions.

Example:

cache-size = 0

Parent topic: [oauth-eas] stanza