Java Agents 2024.9

Exchanged SSO Token Cache TTL

The interval in minutes at which entries in the SSO token exchange cache timeout and are purged.

The exchanged JWT is cached against the relevant SSO token. If the same SSO token is presented again, before the cache entry expires, the agent does not need to exchange the token again, but retrieves the one stored in its cache.

Because exchanging SSO tokens for JWTs is an expensive process, previously exchanged SSO tokens are cached. When an entity is unable to permanently store its JWT in a cookie, calls to AM can be avoided.

Property name

org.forgerock.agents.sso.exchange.cache.ttl.minutes

Aliases

org.forgerock.agents.sso.exchange.cache.ttl.minutes
  Introduced in Java Agent 5.6.2.1
  Recognized from AM 7

Function

Profile

Type

Integer

Default

5

Bootstrap property

Yes

Required property

No

Restart required

Yes - Restart the container after changing the property

Local configuration file

AgentBootstrap.properties

AM console

Tab: Advanced (from AM 7)

Title: Exchanged SSO Token Cache TTL

Legacy title: Exchanged SSO Token Cache Time to Live