TDBF Posted February 16, 2018 Posted February 16, 2018 Will you please introduce a method which prevents session destruction while actively working within the ACP, or give the member notice that the session is about to expire so they can save their work before getting the dreaded login screen on save. Better still, give the admins the choice to Close the session when closing the browser logging out, Or a period of (real) inactivity I have lost count at the amount of times I have lost work in the ACP because of the session timeouts. Elshara Silverheart and adminHideki 2
bfarber Posted February 19, 2018 Posted February 19, 2018 The AdminCP session timeout is based upon your PHP configuration - you can update it to extend the session timeout if you wish (using the regular session configuration options). TDBF and kmk 1 1
unfairest Posted February 20, 2018 Posted February 20, 2018 On 2/19/2018 at 8:09 AM, bfarber said: The AdminCP session timeout is based upon your PHP configuration - you can update it to extend the session timeout if you wish (using the regular session configuration options). How can I do this?
bfarber Posted February 21, 2018 Posted February 21, 2018 10 hours ago, unfairest said: How can I do this? http://php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime
unfairest Posted February 21, 2018 Posted February 21, 2018 2 hours ago, bfarber said: http://php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime Is this possible if my forum is hosted in the cloud?
bfarber Posted February 22, 2018 Posted February 22, 2018 21 hours ago, unfairest said: Is this possible if my forum is hosted in the cloud? I'm afraid you do not have the ability to change PHP configuration options when using cloud services.
TDBF Posted June 3, 2018 Author Posted June 3, 2018 On 2/19/2018 at 2:09 PM, bfarber said: The AdminCP session timeout is based upon your PHP configuration - you can update it to extend the session timeout if you wish (using the regular session configuration options). Would it be possible to add a last activity to the session time out at some point? This way the session doesn't expire while the ACP is in use. Also, I don't know if this is on purpose or this is a bug. If I have a session open within my browser and I open ACP in another tab, I am presented with the login page and the other sessions are killed.
bfarber Posted June 4, 2018 Posted June 4, 2018 Your ACP session should not time out while you are using it, nor should opening a new tab cause you to be logged out.
TDBF Posted June 15, 2018 Author Posted June 15, 2018 On 6/4/2018 at 5:09 PM, bfarber said: Your ACP session should not time out while you are using it I am getting 30 mins in ACP and getting logged out. Quote nor should opening a new tab cause you to be logged out. You are misunderstanding me. If I open another tab in my browser and browse to the ACP, I am prompted to sign in and I am logged out of the the session.
bfarber Posted June 18, 2018 Posted June 18, 2018 Ah, then yes. Logging in to the second tab causes the session from the first tab to be invalidated.
TDBF Posted June 18, 2018 Author Posted June 18, 2018 18 minutes ago, bfarber said: Ah, then yes. Logging in to the second tab causes the session from the first tab to be invalidated. Is there any chance that you guys could give consideration to not invaliding the session when doing this? This is a right PITA when working with many opened tabs, and you browse to the ACP in another tab and lose sessions on all the other tabs.
bfarber Posted June 18, 2018 Posted June 18, 2018 If you open a new ACP tab from an existing ACP session you can use multiple tabs no problem. If you login in a separate tab, however, any existing sessions are invalidated. This is a security precaution. We will be moving towards cookie-based authentication at some point I expect, which would resolve your concern. Stuart Silvester, The Old Man and TDBF 2 1
ZLTRGO Posted February 5, 2022 Posted February 5, 2022 On 6/18/2018 at 4:47 PM, bfarber said: If you open a new ACP tab from an existing ACP session you can use multiple tabs no problem. If you login in a separate tab, however, any existing sessions are invalidated. This is a security precaution. We will be moving towards cookie-based authentication at some point I expect, which would resolve your concern. Still planing on that? xD I hate the fact that I get logged out every 30 mins or so on ACP. I increased the timeout time in my php.ini, but it does not help for some reason. I want to increase it to 24h. Yes I know it's 42h in seconds right now but that's just for testing. I still get logged out way too often.
Martin A. Posted February 5, 2022 Posted February 5, 2022 4 minutes ago, ZLTRGO said: Still planing on that? xD I hate the fact that I get logged out every 30 mins or so on ACP. I increased the timeout time in my php.ini, but it does not help for some reason. I want to increase it to 24h. Yes I know it's 42h in seconds right now but that's just for testing. I still get logged out way too often. If you need this for development purposes you can use this constant define( 'DEV_DISABLE_ACP_SESSION_TIMEOUT', TRUE ); That'll disable the timeout when IN_DEV. Daniel F 1
ZLTRGO Posted February 6, 2022 Posted February 6, 2022 20 hours ago, Martin A. said: If you need this for development purposes you can use this constant define( 'DEV_DISABLE_ACP_SESSION_TIMEOUT', TRUE ); That'll disable the timeout when IN_DEV. Yes buts that the problem, I want to have it also in the normal mode :P not just when its "IN_DEV" mode :o
Recommended Posts