This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Is there a limit to the number of attributes you can set on an OAuth token in Apigee ?

Posted on 04-08-2017 09:56 PM
anilsr
Staff
Reply posted on --/--/---- --:-- AM

Is there a limit to the number of attributes you can set on an OAuth token in Apigee ?

~~S:G:TC~~

Solved Solved
0 5 1,454
Topic Labels
Jump to Solution
0 Likes
2 ACCEPTED SOLUTIONS

Posted on --/--/---- --:-- AM
sudheendras
Staff
Reply posted on --/--/---- --:-- AM

@Anil Sagar AFAIK there is no limit on the # of attributes you can include in your token.

View solution in original post

Jump to Solution

Posted on --/--/---- --:-- AM
DChiesa
Staff
Reply posted on --/--/---- --:-- AM

There is a limit to the custom attributes you can attach to an entity - like a Developer or Developer App. For example, see here. But I don't think that same limit applies to the token.

In any case if the limit is reached, it's a simple matter to simply coalesce multiple attributes into a single value - for example coalesce them into a JSON hash or a comma-separated string. And then you can store 5-10 values or more in a single attribute. So in practice you probably aren't going to need it.

Lastly, I'd say it might not be optimal to store everything in the token. Maybe there is a lookup that occurs based on the identity (maybe username) associated to the token, and that set of attributes associated to the username can be stored in Cache. That of course can be quite large - up to 512kb. Then, when a token is presented, you retrieve the username as a custom attribute on the token and then do a cache lookup using the username as the cache key.

Lots of ways to address the problem depending on data volumes, data linkages, and so on.

View solution in original post

Jump to Solution
5 REPLIES 5

Posted on --/--/---- --:-- AM
sudheendras
Staff
Reply posted on --/--/---- --:-- AM

@Anil Sagar AFAIK there is no limit on the # of attributes you can include in your token.

Jump to Solution

Posted on --/--/---- --:-- AM
anilsr
Staff
In response to sudheendras
Reply posted on --/--/---- --:-- AM

Thank you @sudheendra

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
DChiesa
Staff
Reply posted on --/--/---- --:-- AM

There is a limit to the custom attributes you can attach to an entity - like a Developer or Developer App. For example, see here. But I don't think that same limit applies to the token.

In any case if the limit is reached, it's a simple matter to simply coalesce multiple attributes into a single value - for example coalesce them into a JSON hash or a comma-separated string. And then you can store 5-10 values or more in a single attribute. So in practice you probably aren't going to need it.

Lastly, I'd say it might not be optimal to store everything in the token. Maybe there is a lookup that occurs based on the identity (maybe username) associated to the token, and that set of attributes associated to the username can be stored in Cache. That of course can be quite large - up to 512kb. Then, when a token is presented, you retrieve the username as a custom attribute on the token and then do a cache lookup using the username as the cache key.

Lots of ways to address the problem depending on data volumes, data linkages, and so on.

Jump to Solution

Posted on --/--/---- --:-- AM
sudheendras
Staff
In response to DChiesa
Reply posted on --/--/---- --:-- AM

Yes, I agree with you Dino! You need to be conscious before adding every attribute into your token. There are multiple options - cache, encrypted KVM to store custom attributes.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
anilsr
Staff
In response to DChiesa
Reply posted on --/--/---- --:-- AM

Great Answer, Thank you @Dino

Jump to Solution
0 Likes