Closed GoogleCodeExporter closed 9 years ago
1. The pre-expiration interval check is indeed better placed in the private
associate
() method. In a clustered-consumer scenario they could still be used to
validate the
signature of potential other incoming AuthResponses; only new AuthRequests
should be
prevented from using associations that are about to expire.
In order to keep the functionality of FAILED_ASSOC_HANDLE, the check should be
however:
+ if ( a != null &&
+ (Association.FAILED_ASSOC_HANDLE.equals(a.getHandle()) ||
+ a.getExpiry().getTime() - System.currentTimeMillis() >
_preExpiryAssocLockInterval * 1000) )
Association intervals on the other hand are not meant to be set really short;
what
makes you want to do so?
Thanks for the patch!
Johnny
Original comment by Johnny.B...@gmail.com
on 3 Jul 2008 at 9:16
4. Thanks for taking care of a TODO item. I've added to the patch a cleanup
interval, to cut back from the number of delete operations.
Original comment by Johnny.B...@gmail.com
on 3 Jul 2008 at 9:28
Checked in all patches, thanks!
Original comment by Johnny.B...@gmail.com
on 9 Jul 2008 at 7:22
Original issue reported on code.google.com by
proofsr...@gmail.com
on 27 Jun 2008 at 4:19Attachments: