Open-AudIT
https://www.open-audit.org/phpBB3/

[help] [solved] Session timeout adjustment?
https://www.open-audit.org/phpBB3/viewtopic.php?f=20&t=3271
Page 1 of 1

Author:  kevinratcliff [ Wed Apr 22, 2009 10:37 pm ]
Post subject:  [help] [solved] Session timeout adjustment?

Greetings,

I would like to adjust the timeout value that automatically logs a user out after a specified amount of time to make the timeout a bit longer. Is there a value I can adjust somewhere in a PHP file to control this? I see some timeout code in include_ldap_login.php, but it's commented out. I'm not a PHP guru so I don't know where else to look in the code.

I'm using OA SVN 1154 with LDAP auth against AD.

Thanks!

Kevin

Author:  sas [ Sat Feb 23, 2013 12:53 am ]
Post subject:  Re: Session timeout adjustment?

I second that. The time is just too short for the way I work.

Author:  jpa [ Sat Feb 23, 2013 3:15 am ]
Post subject:  Re: Session timeout adjustment?

Since the code is commented out I suspect there is no timeout other than the default set in the php.ini file. The default is 0 which means "until the browser is closed." See [url=http://www.php.net/manual/en/session.configuration.php#ini.session.cookie-lifetime]session.cookie_lifetime[/url]. Not a php expert either so this may not be an answer.

Author:  Mark [ Sat Feb 23, 2013 9:09 am ]
Post subject:  Re: Session timeout adjustment?

If you use Open-AudIT v2 and not the original Open-AudIT, you can set the session variables in /config/config.php at around line 240 (as below).

[code]/*
|--------------------------------------------------------------------------
| Session Variables
|--------------------------------------------------------------------------
|
| 'session_cookie_name' = the name you want for the cookie
| 'encrypt_sess_cookie' = TRUE/FALSE (boolean). Whether to encrypt the cookie
| 'session_expiration' = the number of SECONDS you want the session to last.
| by default sessions last 7200 seconds (two hours). Set to zero for no expiration.
| 'time_to_update' = how many seconds between CI refreshing Session Information
|
*/
$config['sess_cookie_name'] = 'ci_session';
$config['sess_expiration'] = 7200;
$config['sess_encrypt_cookie'] = TRUE;
$config['sess_use_database'] = FALSE;
$config['sess_table_name'] = 'oa_user_sessions';
$config['sess_match_ip'] = FALSE;
$config['sess_match_useragent'] = TRUE;
$config['sess_time_to_update'] = 300;[/code]

Page 1 of 1 All times are UTC + 10 hours
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/