persistence of user consent

Cantor, Scott cantor.2 at
Thu Feb 19 10:47:16 EST 2015

On 2/19/15, 3:34 PM, "Ian Young" <ian at> wrote:

>I'm seeing the user consent dialog rather more often on my upgraded V3 
>IdP than I had expected. Is this likely to turn out to be related to the 
>frequency of secret key rollover (I'm doing that daily)?

Probably. The defaults probably need tweaking, because keeping only three 
keys but changing them daily obviously won't work too well, but that said, 
the whole blob of data gets re-sealed with the latest key every time it 
has to change a record, so it would take 3-4 days with no activity for 
that to be the cause.

-- Scott

More information about the users mailing list