Project

General

Profile

Feature #7097

Authentication cache for LDAP and RADIUS

Added by Joash Lewis 4 months ago. Updated 3 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
User manager
Target version:
Start date:
01/06/2017
Due date:
% Done:

0%


Description

Currently PFSense does not remember LDAP or RADIUS authentication to the admin portal between requests. This results in a lookup for user information on every HTTP resource requested, which can get quite extensive on pages with many resources or auto-updating content like widgets.

This feature suggestion would have PFSense amended to cache the results of a lookup in $_SESSION, with a user-controlled expiry period for the cache time.

The suggested feature has been submitted in PR 3346
https://github.com/pfsense/pfsense/pull/3346

History

#1 Updated by Jim Pingle 4 months ago

  • Status changed from New to Feedback

PR merged

#2 Updated by Jim Pingle 3 months ago

  • Status changed from Feedback to Resolved

Works well for LDAP. RADIUS already caches the groups in $_SESSION so don't be surprised if you don't see re-auth requests on RADIUS.

Also available in: Atom PDF