Bug 780049 (SOA-2414) - UsersRolesLoginModule reads property files on every query
Summary: UsersRolesLoginModule reads property files on every query
Keywords:
Status: CLOSED WONTFIX
Alias: SOA-2414
Product: JBoss Enterprise SOA Platform 5
Classification: JBoss
Component: Security
Version: 5.1.0.ER2
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ---
: FUTURE
Assignee: Kevin Conner
QA Contact:
URL: http://jira.jboss.org/jira/browse/SOA...
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2010-10-13 08:58 UTC by Martin Vecera
Modified: 2011-12-06 22:01 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2011-12-06 22:01:28 UTC
Type: Bug

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker SOA-2414 0 None None None Never

Description Martin Vecera 2010-10-13 08:58:36 UTC 
project_key: SOA

Every time a login module that uses property files to configure users and roles is used, i.e. every time a user is authorized/authenticated, the property files are reread. This can introduce a performance issue. On the other hand, changes in these files to not require server restart to take effect. It would be better to monitor the files for changes and reread them only in case they were changed.
Comment 1 Len DiMaggio 2010-10-20 01:35:40 UTC 
Link: Added: This issue depends JBPAPP-5275
Comment 2 Martin Vecera 2010-10-20 12:21:39 UTC 
This was first observed in 5.1. We believe that this was not the case with 5.0. Pavel Macík is writing a new performance test for this issue.
Comment 3 Pavel Macik 2010-10-21 13:24:48 UTC 
Link: Added: This issue is a dependency of JBQA-3900
Comment 4 Anne-Louise Tangring 2010-10-27 17:27:32 UTC 
We decided Oct 19 that Len would take a look at this to evaluate if this was a valid use case. Was that done?
Comment 5 Anne-Louise Tangring 2010-10-27 17:28:00 UTC 
Investigate for 5.1.(see previous comment)
Comment 6 Kevin Conner 2010-11-04 10:14:24 UTC 
The access of the files appears to happen within the initialize method of the login module, invoked on first use of the LoginContext (usually login())

As we create a new LoginContext for each authentication this will result in the file being read on each request.

This is something that we may be able to mitigate.
Comment 7 Kevin Conner 2010-11-30 11:36:19 UTC 
I have checked SOA-5.0.2 and SOA-4.3.0 CP02, both exhibit the same behaviour as 5.1.  I can see these files being opened up for each authentication request.
Comment 8 Anne-Louise Tangring 2010-12-06 18:42:21 UTC 
This will not be fixed in SOA 5.1.0
Note You need to log in before you can comment on or make changes to this bug.