000011928 - What is Schema.Mitigator.pruneAttributes in SilverTail v4.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011928
Applies ToIn SilverTail version 4.0, the merge of schema attributes in a single location added dictionaries from the user-mapping for Mitigator to maintain.
IssueWhat is Schema.Mitigator.pruneAttributes in SilverTail v4.x
ResolutionSome of these attributes can changes often (like rotating sessionIDs). 
This caused Mitigator memory usage to appear unbounded and can easily exceeded available physical memory.

To mitigate this, a new feature pruneAttributes was introduced. 

The decision to determine which attributes to add to this setting can be based on the following set of guidelines.

In general:

a) You cannot prune attributes that are used in schema.keys or used in mitigator rules (in the rule itself or in the incident details).

b) You cannot prune attributes if other required attributes depend on it.

c) Default attributes like guid-out, next-guid, prev-guid-out and user attributes used in login page definitions (like: user-from-login) can be prune

Legacy Article IDa61772