12.12.2013 07:08, Amos Jeffries пишет:
>
> Try setting grace period to a value larger than 0. The grace period is a
> short time before the credentials TTL expires when they can be looked up
> at the helper for validity without needing to block the client request
> or send an immediate pass/fail result to the access control.
> ** there was a bug in this for some 3.2-3.3 releases.
>
>
> If you are using the auth check in a fast-type access control the TTL
> expiry will cause a fail result after the credentials have expired even
> if the helper lookup will some time later produce a valid/success
> result. Grace allows that lookup to be started before the TTL is over
> and hopefully the credentials next TTL can be assigned before the old
> one expires.
>
> Amos
Hello!
Thank you!
Looks like problem is solved :-)
Received on Mon Dec 16 2013 - 06:22:46 MST
This archive was generated by hypermail 2.2.0 : Mon Dec 16 2013 - 12:00:06 MST