Token introspection is slow #15

New Issue

Closed

opened 2026-02-20 09:19:19 +01:00 by ansv7779 · 0 comments

ansv7779 commented 2026-02-20 09:19:19 +01:00

Owner

Copy Link

Token introspection suffers from the same issues that the login/userinfo flow did in #12. The offending query is trying to lookup a token by any value which is called by OAuth2TokenIntrospectionAuthenticationProvider from Spring Security Authorization Server.

Token introspection suffers from the same issues that the login/userinfo flow did in #12. The offending query is [trying to lookup a token by any value](https://gitea.dsv.su.se/DMC/oauth2-authorization-server/src/commit/a74f3548305020fe527f10c49743489598e0ba6d/src/main/java/se/su/dsv/oauth2/SerializingJDBCOAuth2AuthorizationService.java#L133) which is called by [OAuth2TokenIntrospectionAuthenticationProvider](https://github.com/spring-projects/spring-authorization-server/blob/9bb6da8aa735c28759b0f0d020a3db139b2924bd/oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/authentication/OAuth2TokenIntrospectionAuthenticationProvider.java#L89) from Spring Security Authorization Server.

ansv7779 referenced this issue from a commit 2026-02-23 14:04:50 +01:00

Database index for looking up authorizations by any attribute

ansv7779 closed this issue 2026-02-23 14:04:50 +01:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

spring-boot-4-2

spring-boot-4

read-signing-key-from-file

v2

v1

Labels

No items

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

andan ansv7779 bbohm caah1256 erth9960 gwett jare2473 ndimi niat8586 rydi5898 sega9727 stne3960 tozh4728 vipe0885

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: DMC/oauth2-authorization-server#15