Idea #3532
Updated by Tom Clegg over 9 years ago
* Maintain a cache {token → (is_admin, verified_timestamp, expires_at)} with configurable TTL, so a series of N PUT/DELETE requests doesn't result in N token verifications.
* The same token cache will also be useful in the future for things like enforcing storage quotas, so please make it easy to add fields to the cache values.
* The token cache should be used to check validity of the client token during each PUT request (@expires_at@ must not be in the past) and DELETE request (@expires_at@ must not be in the past, and @is_admin@ must be true).
*Work in progress:*
* progress on 2769-keep-lookup-admin-tokens branch
* Very similar code exists already in keepproxy. Refactor this as a module that can be used by both servers? branch*