This page tells you how to set the timeout period for a session token and how to enable/disable in-memory token storage.
When a successful authentication occurs, for either an application or a user, a unique token is assigned. Tokens are valid for the period of time specified as the 'Session Timeout' attribute.
To specify the session timeout,
|
Authentication tokens are used to validate application and user sessions. A token is stored for each active session. By default, they're kept in the Crowd database. Storing these tokens in memory can benefit performance, but with some significant drawbacks:
Atlassian does not officially support clustering Crowd, but a number of our customers are successfully using it in this manner. See this knowledge-base article.Switching from database to in-memory token management does not require a restart of Crowd; nor will sessions be lost or validations failed. However, if you have lots of active sessions, and therefore lots of tokens, it can take some time to copy the token information. During this time, validation requests will be queued and Crowd will appear unresponsive to client applications.
As a guide, below are some benchmarks of time taken to switch from one form of token storage to the other. The measurements were taken on a quad-core Mac Pro, using a lightly-loaded PostgreSQL database:
Number of Tokens: |
100 |
500 |
1000 |
5000 |
10000 |
|---|---|---|---|---|---|
Database -> Memory |
0.1s |
0.7s |
1.2s |
4.2s |
8.2s |
Memory -> Database |
1.2s |
4.8s |
9.2s |
45s |
90s |
To switch the token storage location,
|
Screenshot: 'Session Config'
