1379805 – Consolidate SSO session validation requests

Bug 1379805 - Consolidate SSO session validation requests

Summary: Consolidate SSO session validation requests

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	ovirt-engine
Classification:	oVirt
Component:	AAA
Sub Component:
Version:	4.1.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	medium
Target Milestone:	ovirt-4.0.5
Target Release:	4.0.5.1
Assignee:	Ravi Nori
QA Contact:	Gonza
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1388462
TreeView+	depends on / blocked

Reported:	2016-09-27 17:23 UTC by Ravi Nori
Modified:	2017-01-18 07:40 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2017-01-18 07:40:42 UTC
oVirt Team:	Infra
Embargoed:
Dependent Products:
Flags:	mperina: ovirt-4.0.z? rule-engine: planning_ack? mperina: devel_ack+ rule-engine: testing_ack+

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
oVirt gerrit	64937	master	MERGED	aaa: Consolidate SSO session validation requests	2016-10-04 07:28:15 UTC
oVirt gerrit	65095	ovirt-engine-4.0	MERGED	aaa: Consolidate SSO session validation requests	2016-10-05 08:22:50 UTC
oVirt gerrit	65099	master	MERGED	aaa: Checkstyles fixes for SessionDataContainerTest	2016-10-04 18:56:53 UTC
oVirt gerrit	65189	ovirt-engine-4.0.5	MERGED	aaa: Consolidate SSO session validation requests	2016-10-07 07:50:25 UTC

Description Ravi Nori 2016-09-27 17:23:26 UTC

Description of problem: Engine validates each session with SSO as a separate request to check if the session is still valid. This causes issues when there are thousands of sessions.


Version-Release number of selected component (if applicable): 4.0


How reproducible:


Steps to Reproduce:
1. Create 1000 sessions
2. Check the logs to see session validation requests from engine to SSO

Actual results: There are a 1000 requests going from engine to SSO


Expected results: There should be only 1 request which retrieves status of all sessions

Comment 1 Oved Ourfali 2016-09-28 06:52:07 UTC

Ravi - is it something we can also push to 4.0.z?

Comment 2 Martin Perina 2016-09-30 12:55:20 UTC

We definitely want this to get to 4.0.z as this improvement has significant impact on performance for high number of open sessions (> 1000) as we saw on RHV.TLV

Comment 3 Gonza 2016-10-19 15:04:54 UTC

Verified with:
rhevm-4.0.5.1-0.1.el7ev.noarch

2016-10-19 17:00:47,318 DEBUG [org.ovirt.engine.core.sso.servlets.OAuthTokenInfoServlet] (default task-23) [] Entered OAuthTokenInfo QueryString: null, Parameters : scope = ovirt-ext=token-info:public-authz-search, query_type = session-statuses, params = {
"tokens" : [ "java.util.HashSet", [ "ltplyPKQzEpDXmsWkK0GRUe9Y-5wbmv8jyeU4qgnyJGDdhNaCdVRfc67s2Dz7JHNbWsNglBcxgdSAu0l6z51Xg", "EuWE-Cw0d-v4v40VLuAQT-Qcopp4slL0yx7uxkkR9-5LXi0WbZOYqJP3dT-o0scl9k_2zSIEEzaSCRrFOG4y_g", "GFlHqusQYPAMfRZS3OpBUDXAijhp8McvBjYW3NjrS9HQNk004gDB1-ZSqSiAwYx97poyvHoNuddKJECEmjxc_w", 
...

Note You need to log in before you can comment on or make changes to this bug.