Java Agents 2024.11

TTL for the entire public key cache in seconds

This property is only relevant when the property Enable internal checking of JWT signature is set to true.

The agent caches AM public keys used for JWT signing. When the agent receives a JWT signed using a key not in its cache, it will invoke AM to retrieve the current list of valid keys (and the TTL will be reset).

This property determines the TTL for the whole cache, and all its entries. It can be set to a relatively large value as keys are not often changed within AM.

Property name

org.forgerock.agents.public.key.cache.ttl.seconds

Aliases

org.forgerock.agents.public.key.cache.ttl.seconds
  Introduced in Java Agent 2024.11

Function

Authentication service

Type

Integer

Default

3600

Bootstrap property

No

Required property

No

Restart required

No

Local configuration file

AgentConfig.properties

Copyright © 2010-2024 ForgeRock, all rights reserved.