Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ApiKey caching is not using the cache expiry mechanism #92

Open
eschult2001 opened this issue Jan 4, 2019 · 2 comments
Open

ApiKey caching is not using the cache expiry mechanism #92

eschult2001 opened this issue Jan 4, 2019 · 2 comments

Comments

@eschult2001
Copy link

[feature request]

In apikeys (and same code in oauth and oauthv2)

microgateway-plugins/apikeys/index.js

Line 201 in 94751da

cache.store(apiKey, decodedToken);

A distinct expiration time is known but not passed to the cache. This could benefit

  • less IPC transfer for objects that are expired
  • simpler cache retrieval logic (memored already checks the TTL on retrieval)
  • proactively evicting stale JWTs from cache making room for more active apiKeys
@srinandan
Copy link
Contributor

When an apikey is presented to MG, it invokes /edgemicro-auth/verifyApikey. The response from verifyApiKey is a JWT. At the moment, the JWT expiry is set to 1 minute (but easily customizable). The current logic stores the api key in cache for as long as the JWT expiry is set to.

I'm happy to add a TTL for the cache itself, but remember there are two dials to operate - a JWT expiry and the cache TTL.

@srinandan
Copy link
Contributor

Here is the PR: #93

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@eschult2001 @srinandan