ldap: Disable django-auth-ldap caching of users.

This shouldn't have a material performance impact, since we don't
query these except during login, and meanwhile this fixes an issue
where users needed to restart memcached (which usually manifested as
"needing to reboot the whole server" after updating their LDAP
configuration before a user who was migrated from one OU to another
could login).

Fixes #9057.
This commit is contained in:
Tim Abbott 2018-04-24 09:57:55 -07:00
parent 697fd3c69b
commit e4ca6e947b
1 changed files with 2 additions and 0 deletions

View File

@ -135,6 +135,8 @@ DEFAULT_SETTINGS = {
# LDAP auth
'AUTH_LDAP_SERVER_URI': "",
'LDAP_EMAIL_ATTR': None,
# Disable django-auth-ldap caching, to prevent problems with OU changes.
'AUTH_LDAP_GROUP_CACHE_TIMEOUT': 0,
# Social auth; we support providing values for some of these
# settings in zulip-secrets.conf instead of settings.py in development.