Finding ID: SEC-026
Location: lib/EventSubscriber/SingleLoginSubscriber.php
JWT operations clear multiple cache items and Doctrine caches on every event, which may be excessive and harm performance under load.
Impact: Performance degradation; unnecessary cache churn.
Remediation (short): Limit cache clearing to only the specific user's session cache and avoid broad cache invalidation.
Reference: SECURITY_REVIEW.md
Finding ID: SEC-026
Location: lib/EventSubscriber/SingleLoginSubscriber.php
JWT operations clear multiple cache items and Doctrine caches on every event, which may be excessive and harm performance under load.
Impact: Performance degradation; unnecessary cache churn.
Remediation (short): Limit cache clearing to only the specific user's session cache and avoid broad cache invalidation.
Reference: SECURITY_REVIEW.md