FC-307 - Performance problem with roles many members

apache · Jan 3, 2022 · 3e104980833b43fca33c02878b62e5ca3b7017c0 · 3e10498
1 parent 4e2bceb
commit 3e104980833b43fca33c02878b62e5ca3b7017c0
Showing 1 changed file with 12 additions and 9 deletions.
diff --git a/src/docker/openldap-for-apache-fortress-tests/slapd.conf b/src/docker/openldap-for-apache-fortress-tests/slapd.conf
@@ -32,7 +32,6 @@ sizelimit 5000
 timelimit 60
 loglevel    stats
 threads     4
-sortvals  roleOccupant
 
 pidfile		/var/run/openldap/slapd.pid
 argsfile	/var/run/openldap/slapd.args
@@ -63,7 +62,7 @@ maxsize     1000000000
 suffix		"cn=log"
 rootdn      "cn=Manager,cn=log"
 rootpw      "{SSHA}pSOV2TpCxj2NMACijkcMko4fGrFopctU"
-index objectClass,reqDN,reqAuthzID,reqStart,reqAttr eq
+index       objectClass,reqDN,reqAuthzID,reqStart,reqAttr eq
 directory	"/var/symas/openldap-data/cn=log"
 # Accesslog is readable by replicator and fortress:
 access to dn.subtree="cn=log"
@@ -83,19 +82,23 @@ access to dn.subtree="cn=log"
 # Default DB Settings
 #######################################################################
 database	mdb
-maxsize 1000000000
+maxsize     1000000000
 suffix		"dc=example,dc=com"
 rootdn      "cn=Manager,dc=example,dc=com"
 rootpw      "{SSHA}pSOV2TpCxj2NMACijkcMko4fGrFopctU"
 
-index uidNumber,gidNumber,objectclass eq
-index cn,sn,ftObjNm,ftOpNm,ftRoleName,uid,ou eq,sub
-index ftId,ftPermName,ftRoles,ftUsers,ftRA,ftARA eq
-index roleOccupant eq
+index       uidNumber,gidNumber,objectclass eq
+index       cn,sn,ftObjNm,ftOpNm,ftRoleName,uid,ou eq,sub
+index       ftId,ftPermName,ftRoles,ftUsers,ftRA,ftARA eq
+index       roleOccupant eq
+
+# Helps with large group memberships:
+sortvals    roleOccupant
+multival    roleOccupant 500,3
 
 directory	"/var/symas/openldap-data/dc=example,dc=com"
-overlay accesslog
-logdb   "cn=log"
+overlay     accesslog
+logdb       "cn=log"
 dbnosync
 checkpoint	0 5