HI There,what is this cache validation result here?.Basically this we will use to validate access_token.We store access_token in DB.
My understanding was that, this received assertion checks initially from the cache which stored for 800 sec later which checks against the DB.
Hi Popleys,
Your understanding is correct. The validation result (ie: token is or is not valid) is cached for X number of seconds.
This can potentially cause issues with expired tokens being accepted so plan carefully, ref:
CA API Management: Revoked OAuth Token is still va - CA Knowledge
Regards,
Joe