Idea #3532
Updated by Tom Clegg over 9 years ago
* Maintain a cache {token → (is_admin, verified_timestamp, expires_at)} with configurable TTL, so a series of N PUT/DELETE requests doesn't result in N token verifications. * The same token cache will also be useful in the future for things like enforcing storage quotas, so please make it easy to add fields to the cache values. * The token cache should be used to check validity of the client token during each PUT request (@expires_at@ must not be in the past) and DELETE request (@expires_at@ must not be in the past, and @is_admin@ must be true). *Work in progress:* * progress on 2769-keep-lookup-admin-tokens branch * Very similar code exists already in keepproxy. Refactor this as a module that can be used by both servers? branch*