Open LaurenceJJones opened 4 months ago
@LaurenceJJones: Thanks for opening an issue, it is currently awaiting triage.
In the meantime, you can:
@LaurenceJJones: There are no 'kind' label on this issue. You need a 'kind' label to start the triage process.
/kind feature
/kind enhancement
/kind refactoring
/kind bug
/kind packaging
What would you like to be added?
Right now if an appsec component gets a valid response from the LAPI and then ultimately the LAPI goes down we have a auth cache which is fine if you configure it for the "expected" downtime, however, most of the time you dont know how long the downtime will be.
/kind enhancement
Why is this needed?
A potential improvement could be to check if the api key was ever in the cache and presume it is safe until we get a response from LAPI and then ultimately we can invalidate the cache if the key is now invalid to allow better HA