12.12.2013 07:08, Amos Jeffries пишет:
Try setting grace period to a value larger than 0. The grace period is a short time before the credentials TTL expires when they can be looked up at the helper for validity without needing to block the client request or send an immediate pass/fail result to the access control. ** there was a bug in this for some 3.2-3.3 releases. If you are using the auth check in a fast-type access control the TTL expiry will cause a fail result after the credentials have expired even if the helper lookup will some time later produce a valid/success result. Grace allows that lookup to be started before the TTL is over and hopefully the credentials next TTL can be assigned before the old one expires. Amos
Hello! Thank you! Looks like problem is solved :-)
