2 Replies Latest reply on Mar 2, 2004 10:00 AM by starksm64

Fundamental performance problem with JaasSecurityManager

craigday Feb 22, 2004 10:08 PM

It appears to us that the synchronization in JaasSecurityManager is capable of causing significant performance problems in JBoss 3.2.1. The isValid() method, which is called from everywhere to do authentication and check authorization, is synchronized, presumably to protect the security cache. Ultimately the isValid() call may result in a call to our login module, which typically does database work. While our login module is doing the database work (username/password lookup, roles etc) no other part of the system can make a call to isValid(). Scott? Anyone? does this make sense, or are we missing something more fundamental :)

cheers
craig

1. Re: Fundamental performance problem with JaasSecurityManager

craigday Feb 23, 2004 9:25 AM (in response to craigday)

We have replaced JaasSecurityManager with our own version that synchronizes on principal-keyed locks. It looks safe enough, and performance is greatly improved. Its trivial code, but I can submit it if anyone wants it.

c
Actions
2. Re: Fundamental performance problem with JaasSecurityManager

starksm64 Mar 2, 2004 10:00 AM (in response to craigday)

My previous post seems to have been lost. Improving the concurrency of the JaasSecurityManager.isValid in on my todo list. Post your version of the JaasSecurityManager to Patches section on the JBoss/Sourceforge project site here:
http://sourceforge.net/tracker/?group_id=22866&atid=376687
and I'll look at incorporating the changes if they look ok.
Actions

Go to original post