Skip to content

Add short TTL cache to token authentication#14916

Merged
openshift-merge-robot merged 5 commits intoopenshift:masterfrom
liggitt:token-cache
Sep 8, 2017
Merged

Add short TTL cache to token authentication#14916
openshift-merge-robot merged 5 commits intoopenshift:masterfrom
liggitt:token-cache

Conversation

@liggitt
Copy link
Contributor

@liggitt liggitt commented Jun 27, 2017
edited
Loading

Addresses frequent etcd lookups due to high-volume controllers

Fixes authenticator aspect of https://bugzilla.redhat.com/show_bug.cgi?id=1464579

@liggitt liggitt changed the title Add short TTL cache to token authentication WIP - Add short TTL cache to token authentication Jun 27, 2017
@openshift-bot openshift-bot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jun 27, 2017
@deads2k deads2k self-assigned this Jun 28, 2017
@deads2k deads2k added this to the 3.6.0 milestone Jun 28, 2017
@liggitt
Copy link
Contributor Author

liggitt commented Jun 29, 2017

[test]

@openshift-bot openshift-bot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jun 29, 2017
@smarterclayton
Copy link
Contributor

smarterclayton commented Jul 12, 2017

[test]

@openshift-bot
Copy link
Contributor

openshift-bot commented Jul 12, 2017

Evaluated for origin test up to 61eb559

@openshift-bot
Copy link
Contributor

openshift-bot commented Jul 12, 2017

continuous-integration/openshift-jenkins/test SUCCESS (https://ci.openshift.redhat.com/jenkins/job/test_pull_request_origin/3063/) (Base Commit: 3c5875f) (PR Branch Commit: 61eb559)

@openshift-merge-robot openshift-merge-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. approved Indicates a PR has been approved by an approver from all required OWNERS files. and removed approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Jul 24, 2017
@liggitt liggitt changed the title WIP - Add short TTL cache to token authentication Add short TTL cache to token authentication Aug 7, 2017
@openshift-merge-robot openshift-merge-robot added size/XL Denotes a PR that changes 500-999 lines, ignoring generated files. and removed size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Aug 7, 2017
@liggitt liggitt modified the milestones: 3.6.x, 3.6.0 Aug 7, 2017
@liggitt liggitt mentioned this pull request Aug 7, 2017
Merged
@liggitt liggitt modified the milestones: 3.7.0, 3.6.x Aug 7, 2017
@liggitt
Copy link
Contributor Author

liggitt commented Aug 12, 2017

/retest

1 similar comment
@liggitt
Copy link
Contributor Author

liggitt commented Aug 18, 2017

/retest

@enj
Copy link
Contributor

enj commented Aug 24, 2017

@openshift/sig-security

@openshift-merge-robot openshift-merge-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Aug 29, 2017
@smarterclayton
Copy link
Contributor

smarterclayton commented Aug 29, 2017

Generally LGTM - a 10s window on either side is not a large deal for a huge reduction in peak load during request storms.

@openshift-merge-robot openshift-merge-robot added approved Indicates a PR has been approved by an approver from all required OWNERS files. and removed approved Indicates a PR has been approved by an approver from all required OWNERS files. needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. labels Aug 30, 2017
@liggitt
Copy link
Contributor Author

liggitt commented Aug 31, 2017

upstream commits are merged, any last comments from @openshift/sig-security?

do we still want this for 3.6.1? #15662 is ready and green as well

@deads2k
Copy link
Contributor

deads2k commented Sep 8, 2017

/lgtm

@openshift-ci-robot openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Sep 8, 2017
@openshift-merge-robot
Copy link
Contributor

openshift-merge-robot commented Sep 8, 2017

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: deads2k, liggitt

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these OWNERS Files:

You can indicate your approval by writing /approve in a comment
You can cancel your approval by writing /approve cancel in a comment

@openshift-merge-robot
Copy link
Contributor

openshift-merge-robot commented Sep 8, 2017

Automatic merge from submit-queue

@openshift-merge-robot openshift-merge-robot merged commit 8a47952 into openshift:master Sep 8, 2017
openshift-merge-robot added a commit that referenced this pull request Sep 9, 2017
@openshift-merge-robot
Merge pull request #15662 from liggitt/token-cache-3.6.1
4aaca6a 
Automatic merge from submit-queue

3.6.x: Add short TTL cache to token authentication

pick of #14916
@liggitt liggitt deleted the token-cache branch September 12, 2017 01:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@enj enj

@deads2k deads2k

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. area/security lgtm Indicates that a PR is ready to be merged. size/XL Denotes a PR that changes 500-999 lines, ignoring generated files.

Projects

None yet

Milestone

v3.7

Development

Successfully merging this pull request may close these issues.

7 participants

@liggitt @smarterclayton @openshift-bot @enj @deads2k @openshift-merge-robot @openshift-ci-robot