Authentication, ForceAuth and Step Up scenarios incur at least 8 MODIFY operations, each replacing the large CoreTokenObject attribute. This occurs each and every time these flows are executed and is amplified if PAPs are used which create/modify/delete session properties. The end result of this is customers are running out of disk space on the RS nodes due to the huge size of the resulting changelogDB containing many replacements of the CoreTokenObject attribute.
The request is to look to optimise this to make a single MODIFY at the end of all the above processes.
Attached is a sample access and audit look illustrating these modifies. This code snippet is also useful: