Java Policy Agents 2023.3

Exchanged SSO Token Cache TTL

The interval in minutes at which entries in the SSO token exchange cache timeout and are purged.

The exchanged JWT is cached against the relevant SSO token. If the same SSO token is presented again, before the cache entry expires, the agent does not need to exchange the token again, but retrieves the one stored in its cache.

Because exchanging SSO tokens for JWTs is an expensive process, previously exchanged SSO tokens are cached. When an entity is unable to permanently store its JWT in a cookie, calls to AM can be avoided.

Property name

  Introduced in Java Agent
  Recognized from AM 7





Bootstrap property


Required property


Restart required

Yes - Restart the container after changing the property

Local configuration file

AM console

Tab: Advanced (from AM 7)

Title: Exchanged SSO Token Cache TTL

Legacy title: Exchanged SSO Token Cache Time to Live

Copyright © 2010-2023 ForgeRock, all rights reserved.