Our CAS installation keeps most it's state in memcached, but the two-factor-auth tokens are stored in mariadb as they are more persistent and we need them redundantly across the active-active IDP setup. The database is called "cas" and there's a "cas" user to access it.
So far we supported U2F devices as a second factor, but Chrome removed the API for it and only supports the newer webauthn API. Support for webauthn in CAS is currently being worked on and we'd like to again store the tokens in mariadb.
We have disabled U2F support in CAS and the old tokens stored in U2F format are no longer needed/relevant, as such the simplest process would be just repurpose it for webauthn tokens. The resource usage would be as minimal as the existing database used for U2F.
If that works for DBAs, could you please empty the existing "cas" database?