• Browse
  • Pages
  • News
  • Labels
  • Attachments
  • Mail
  • Advanced

  • People Directory
• Log In

1. Dashboard
2. > CAS User Manual
3. > Home
4. > TicketRegistry
5. > MemcacheTicketRegistry

• Log In

MemcacheTicketRegistry

Added by Scott Battaglia, last edited by Andrew Ralph Feller on Jun 19, 2009  (view change) show comment hide comment

Comment: Adding note describing memcached mechanism for recycling expired slabs

Table of Contents Home Overall Architecture Building and Deploying Development Introduction Java Versions Spring Configuration Technical Overview Upgrading Authentication Active Directory Generic JAAS JDBC LDAP Legacy RADIUS SPNEGO Trusted X.509 Certificates Authentication Managers Default AuthenticationManager Direct Mapping AuthenticationManager TicketRegistry BerkleyDB Default JBOSS TreeCache JDBCTicketRegistry JpaTicketRegistry MemcacheTicketRegistry Testing Apache JMeter Protocols Add Your Custom Protocol Applications that Require POST Responses CAS OpenID RESTful API SAML 1.1 SAML 2.0 (Google Accounts Integration) Single Sign Out Advanced Features Adding "Public Workstation" vs. "Private Workstation" Timeouts Auditing and Statistics Via Inspektr LDAP Password Policy Enforcement Remember Me Second-Level CAS Server Terracotta Use Javascript Redirection Tutorials CAS Quickly (LDAP, Windows, Apache Directory Server) Clustering CAS Demo Troubleshooting Configuring the Single Sign On Session Timeout Deploying CAS 3.0.x in RHEL 5 with Sun Java How to FC6 + CAS 3.1 + OpenLDAP + GSSAPI + Kerberos 5 How to FC6 + CAS 3.1 + OpenLDAP + OpenSSL How to Fedora 10 + CAS 3.3.1 + OpenLDAP 2.4.12 + DIGEST-MD5 jBoss HTTPS for CAS Logging Running the Web Tests Switching to a Sun JVM in RHEL Services Management Adding Attributes Configuring Deleting Editing

MemCacheTicketRegistry As of CAS 3.3, a MemCacheTicketRegistry is provided. Including the Cache in your build... Add the following to your pom.xml: <dependency> <groupId>org.jasig.cas</groupId> <artifactId>cas-server-integration-memcached</artifactId> <version>${project.version}</version> <type>jar</type> </dependency> Configuration You'll need to override the ticketRegistry.xml in the spring-configuration directory with something like this: <?xml version="1.0" encoding="UTF-8"?> <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:p="http://www.springframework.org/schema/p" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:jee="http://www.springframework.org/schema/jee" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-2.0.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee-2.5.xsd"> <!-- Ticket Registry --> <bean id="ticketRegistry" class="org.jasig.cas.ticket.registry.MemCacheTicketRegistry"> <constructor-arg index="0"> <list> <value>machine1:11211</value> <value>machine2:11211</value> </list> </constructor-arg> <constructor-arg index="1" type="int" value="21600" /> <constructor-arg index="2" type="int" value="300" /> </bean> </beans> The "0" constructor parameter is the list of hosts and ports. The "1" constructor parameter is the timeout value for TicketGrantingTickets in seconds. The "2" constructor parameter is the timeout value for Service Tickets in seconds. Security As always, you should discuss with your Network team on the best way to secure the data being sent to the memcache servers. Memcache does not encrypt information so you need to protect it on your own. Additional Notes: Memcached is literally a cache and does not failover/replication/etc. by default. At Rutgers, we've tested a patch called repcache that adds this functionality. There are some limitations to repcache (i.e. the number of servers you can replicate to), but it appears to work well in our testing. We'll update this with any information. Memcached clean: UPDATE: The following information about reclaiming space from memcached during the course of operation is not necessary as memcached will reclaim used space as described in the following article: http://amix.dk/blog/viewEntry/19356. Memcached not empty its cache (tickets CAS) if he needs space. So even expired tickets are still present in the cache. The CAS does not provide for cleaner cache memcache. That is why we made a small perl script to do so. Principle: recover the full script of a ticket and get over if it is expired memcache removes it from its cache. Perl Script We think a implement a ticketRegistryCleaner in CAS, but it will take 1.2.jar-memcached uses to access the stats (String) Links Memcache Repcached

Labels parameters

Labels

Enter labels to add to this page:

 

Looking for a label? Just start typing.

Powered by a free Atlassian Confluence Open Source Project License granted to Java Architectures Special Interest Group. Evaluate Confluence today.

• Powered by Atlassian Confluence 2.9, the Enterprise Wiki.
• Printed by Atlassian Confluence 2.9, the Enterprise Wiki.
• Bug/feature request –
• Atlassian news –
• Contact administrators