X-Git-Url: http://git.shadowcat.co.uk/gitweb/gitweb.cgi?a=blobdiff_plain;f=README;h=ca4dbf30dea96632fa79e4fa1725452c709738b4;hb=aa44391ef3a7c8733af638f12421df48c6c759bd;hp=d72cb63b46f5f65bee9117ef236b9656e0172169;hpb=58b695ab0ca923a943591ac2bdbb71c94bbd732f;p=catagits%2FCatalyst-Authentication-Store-LDAP.git

diff --git a/README b/README
index d72cb63..ca4dbf3 100644
--- a/README
+++ b/README
@@ -43,6 +43,7 @@ SYNOPSIS
                      attrs => [qw( distinguishedname name mail )],
                    },
                    user_results_filter => sub { return shift->pop_entry },
+                   persist_in_session  => 'all',
                  },
                },
              },
@@ -273,6 +274,21 @@ CONFIGURATION OPTIONS
     *bindpw* fields. If this is set to false, then the role search will
     instead be performed when bound as the user you authenticated as.
 
+  persist_in_session
+    Can take one of the following values, defaults to undefined:
+
+   undefined
+    Only store the username in the session and lookup the user and its roles
+    on every request. That was how the module worked until version 1.015 and
+    is also the default for backwards compatibility.
+
+   all
+    Store the user object and its roles in the session and never look it up
+    in the store after login.
+
+    NOTE: It's recommended to limit the user attributes fetched from LDAP
+    using user_search_options / attrs to not exhaust the session store..
+
   entry_class
     The name of the class of LDAP entries returned. This class should exist
     and is expected to be a subclass of Net::LDAP::Entry