Exchanged SSO Token Cache TTL

Exchanged SSO Token Cache Time to Live

The time in minutes after which entries in the SSO token exchange cache timeout and are purged.

The exchanged JWT is cached against the relevant SSO token. If the same SSO token is presented again, before the cache entry expires, the agent does not need to exchange the token again, but retrieves the one stored in its cache.

Because exchanging SSO tokens for JWTs is an expensive process, previously exchanged SSO tokens are cached. When an entity is unable to permanently store its JWT in a cookie, calls to AM can be avoided.

Property name

org.forgerock.agents.sso.exchange.cache.ttl.minutes

Property aliases

org.forgerock.agents.sso.exchange.cache.ttl.minutes (since 5.6.2.1)

Type

Integer

Default

5

Bootstrap property

Yes

Required property

No

Restart required

Yes - Restart the container after changing the property

Local configuration file

AgentBootstrap.properties

AM console tab

Advanced