Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Permission expiry #246

Open
jdabtieu opened this issue Jan 14, 2024 · 0 comments
Open

Permission expiry #246

jdabtieu opened this issue Jan 14, 2024 · 0 comments
Labels
discussion New feature or request priority normal Important, but not urgent
Milestone
v4.4.0

Comments

@jdabtieu
Copy link
Owner

Currently, permissions are cached indefinitely in a logged in user's session. This means that if permissions are added or removed, they don't actually take effect unless the user logs out and then back in. At best, it's inconvenient, and at worst, it's dangerous.

The cache should be repopulated every 5? 10? minutes (striking a good balance with performance). Should it also be repopulated for important actions? e.g. changing other permissions, or all POST actions, or...? Maybe, but we have to consider the performance implications.
@jdabtieu jdabtieu added discussion New feature or request priority normal Important, but not urgent labels Jan 14, 2024
@jdabtieu jdabtieu added this to the v4.4.0 milestone Jan 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
discussion New feature or request priority normal Important, but not urgent
Projects
None yet
Milestone
v4.4.0
Development

No branches or pull requests
1 participant
@jdabtieu