LDAPLoginAdapter - Caches: View Available Groups and Cached Users

Description

This view shows the cache of currently authenticated users and the groups exposed by your LDAP server for authentication purposes.

Elements

Available Groups

These are the groups found underneath the DN specified as group search base in the basic LDAPLoginAdapter settings. If you see no groups make sure that the group search base setting is correct and that your LDAP tree contains valid group records underneath the group search base DN.

Cached users

These are the users in the cache of currently authenticated users. Anonymous users will not show up in this view.

Every time an authenticated user makes a request to Zope, the username and password are verified. Depending on site traffic and number of users that log in through the LDAPLoginAdapter this process can happen several times a second. Since a lookup on the LDAP Server can be quite slow, the product will cache the user information for 15 minutes. This is the duration of a typical session.

If a user's group membership is changed in the LDAP directory, then it may take up to 15 minutes before the LDAPLoginAdapter notices. Purging the cache (see the "Advanced" tab) will force any changes immediately.