I would like to know why someone would prefer to use OAuth instead of Basic Auth for connecting to JIRA and Confluence?
We all assume that the server is using HTTPS, so that's not about security.
I am interested especially about scalability on big instances that are using Crowd (with LDAP) and lots of users, over 10.000.
Hi Sorin,
I know that Oauth is better in terms of security than Trusted application and Basic auth, however in terms of performance I'm not so sure.
Personally I've never noticed big differences between both. In fact there might be some differences in giant instances with hundred of thousand users and lots of spaces and contents might impose some seconds of difference. I couldn't find any doc for information though.
I'll leave this question open so maybe others might know any performance related information to share.
Cheers,
Rodrigo
Thank Rodrigo, I am trying to debug some slowness with Confluence (maybe JIRA too), which seems to be related to authentication. With the help of NewRelic I discovered the /rest/auth calls do take ~4000ms to run, and in some cases even 7000ms, which is far more than what I was hoping for (<0.5s).
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.