Return-Path: X-Original-To: apmail-httpd-dev-archive@www.apache.org Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 22E6018344 for ; Wed, 17 Jun 2015 22:51:03 +0000 (UTC) Received: (qmail 67550 invoked by uid 500); 17 Jun 2015 22:51:02 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 67486 invoked by uid 500); 17 Jun 2015 22:51:02 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 67476 invoked by uid 99); 17 Jun 2015 22:51:02 -0000 Received: from Unknown (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 17 Jun 2015 22:51:02 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id 4BD63CE971 for ; Wed, 17 Jun 2015 22:51:02 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.581 X-Spam-Level: X-Spam-Status: No, score=-0.581 tagged_above=-999 required=6.31 tests=[RP_MATCHES_RCVD=-0.58, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=disabled Received: from mx1-us-west.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id jsfaXEXRud_u for ; Wed, 17 Jun 2015 22:50:54 +0000 (UTC) Received: from atvie01s.evermeet.cx (evermeet.cx [77.244.245.66]) by mx1-us-west.apache.org (ASF Mail Server at mx1-us-west.apache.org) with ESMTPS id 410F024A27 for ; Wed, 17 Jun 2015 22:50:54 +0000 (UTC) Received: from [192.168.9.141] (mail.quickplay.com [66.207.196.66]) (authenticated bits=0) by atvie01s.evermeet.cx (8.14.8/8.14.8) with ESMTP id t5HMoiZ7026027 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO) for ; Thu, 18 Jun 2015 00:50:45 +0200 To: dev@httpd.apache.org From: "Helmut K. C. Tessarek" Subject: ap_authn_cache_store call for groups Openpgp: id=28A316664FE8D72CCFD58B23F7832007C11F128D X-Enigmail-Draft-Status: N1110 Message-ID: <5581F9C4.4050109@evermeet.cx> Date: Wed, 17 Jun 2015 18:50:44 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:38.0) Gecko/20100101 Thunderbird/38.0.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit I was looking into caching of user credentials, but I think I might be missing something. The call ap_authn_cache_store seems to store user credentials which will help, if you have a directive like 'Require valid-user', but it won't help for directives like 'Require group admin'. Am I right? So in case of an authentication module that uses database queries, all subsequent requests will still generate SQL statements for the user/group matching. Which means that only half of the database requests are actually cached. Can someone please elaborate. Cheers, K. C. -- regards Helmut K. C. Tessarek lookup http://sks.pkqs.net for KeyID 0xC11F128D /* Thou shalt not follow the NULL pointer for chaos and madness await thee at its end. */