REFRESH LDAP
Descriptionβ
This statement is used to refresh the cache information of LDAP in Doris. When modifying user information in the LDAP service or modifying the role permissions corresponding to LDAP user groups in Doris, the changes may not take effect immediately due to caching, and the cache can be refreshed through this statement.
Syntaxβ
REFRESH LDAP [ALL | FOR <user_name>];
Optional Parametersβ
1. [ALL]
Whether to refresh the LDAP cache information of all users.
2. <user_name>
The user whose LDAP cache information needs to be refreshed
Access Control Requirementsβ
Users executing this SQL command must have at least the following privileges:
| Privilege | Object | Notes |
|---|---|---|
| ADMIN_PRIV | User or Role | Only users or roles with the ADMIN_PRIV permission can refresh the LDAP cache information of all users. Otherwise, they can only refresh the LDAP cache information of the current user |
Usage Notesβ
- The default timeout for LDAP information cache in Doris is 12 hours, which can be viewed by
SHOW FRONTEND CONFIG LIKE 'ldap_user_cache_timeout_s';. REFRESH LDAP ALLrefreshes the LDAP cache information of all users, but requires theADMIN_PRIVpermission.- If
user_nameis specified, the LDAP cache information of the specified user will be refreshed. - If
user_nameis not specified, the LDAP cache information of the current user will be refreshed.
Examplesβ
-
Refresh the cache information of all LDAP users.
REFRESH LDAP ALL; -
Refresh the cache information of the current LDAP user.
REFRESH LDAP; -
Refresh the cache information of the specified LDAP user jack.
REFRESH LDAP FOR jack;
