Description

As discussed on #39197 a potential change to ldap context management would to just make them be session (effectively transaction) scoped: https://github.com/keycloak/keycloak/compare/main...shawkins:iss38660?expand=1

There is a cost to re-establishing ssl connections. Using the SSL LDAP setup from UserFederationLdapConnectionTest - after an actual connection is made, subsequent reuse of that connection after a small warm-up seemed to take in microseconds. From a small sample I saw LongSummaryStatistics{count=989, sum=2033902, min=1119, average=2056.523761, max=18889} - so about 1.5+ milliseconds to reuse an SSL connection from the pool to a local ldap server.