What is Cached

Each cache entry consists of a username and action, and the authorization result response from the Permissions Module.

Properties of cache entries:

  • The username is specific; the cached permission applies only to this user.
  • The action is also specific. Only one action is included in each cache entry. Actions that require authorization are the same as those listed in the acl.conf file.
  • The destination can include wildcards. That is, a single cache entry can determine the user’s authorization to perform the action on multiple destinations.

If the response from the Permissions Module authorized the action, the permission is cached in the allow cache. If the action was denied, it is cached in the deny cache.