Details

    • Type: Bug
    • Status: Plan (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 10.0.1
    • Fix Version/s: Backlog
    • Component/s: LDAP
    • Labels:
      None

      Description

      The UI to configure the LDAP Connection Pool is implemented wrong. The LDAP Connection Pooling Configuration is a server wide global configuration, not per individual LDAP provider. Currently, the settings are duplicated and applied with every single LDAP provider, which causes race conditions. Further more, changing any of the settings require a server restart to become effective.

      The impact of this issue are race conditions when there is more than one LDAP provider configured. This will cause severe performance issues because the connection pool is not configured as expected, which are hard to debug and analyse.

      See also the discussion on keycloak-dev.

      Suggested solution is to remove the LDAP Connection Pool Preferences from the UI and replace them with wildfly subsystem configuration or system properties.

      Another possibility would be to introduce a global settings menu in the admin-ui.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                cachescrubberx Lars Uffmann
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: