Modify Session Timeout

Question

Modify Session Timeout

Closed this issue a year ago · 9 comments

Hello,

Is there a way of modifying the default session logout timeout, so I could set it to 30 days or something without having to log in again?

Thanks
Josh

Answer 1 · 2023-05-09T20:45:13.000Z

Based on the middleware, this is currently set in the setcookie function. When set to 0 it times out at the end of the session (when the browser closes). Doesn't look like this is linked to a config variable, but I can submit a PR that would do so if you'd like!

Answer 2 · 2023-05-10T07:29:38.000Z

Hi,
I kinda missed the notification about this issue. Sorry. I've changed the value from '0' to at last a year. I did not use a config value, to keep this as simple as possible.

If that's alright @joshhawkes, I'll give it a tag and release a new version for composer.

Answer 3 · 2023-05-10T13:23:46.000Z

Personally I think it would be more useful if it were configurable. Not everyone wants it to be 0, not everyone wants it to be a year.

Answer 4 · 2023-05-25T09:04:17.000Z

Thanks both, I agree it would be more useful to have it configurable, especially for other users.

Answer 5 · 2023-05-27T08:24:20.000Z

Ok, I agree with everyone.

I'll add a config option for cookie lifetime next week (on vacation) and will release a new version as well.

Thanks for the input.

Answer 6 · 2023-07-12T07:18:02.000Z

Hi. sorry for the delay. I added a config value and env param to change the cookie lifetime to a custom value. if this looks alright. I will release this as a new version as soon as possible. thanks for the feedback.

Answer 7 · 2023-07-12T12:22:39.000Z

Yeah! This is great :)

Answer 8 · 2023-07-14T09:13:01.000Z

Cookie lifetime setting has been released as a new version 1.2.0. Thanks everyone for the feedback.

Answer 9 · 2023-07-21T12:43:10.000Z

Thanks so much for this :)