Could anyone please tell me of the ideal session timeout setting implemented for the community discourse application? We have observed that the application browser session remains open without logging out, even after 12 hours or more.
Thank you.
Could anyone please tell me of the ideal session timeout setting implemented for the community discourse application? We have observed that the application browser session remains open without logging out, even after 12 hours or more.
Thank you.
In general, perhaps a year would be fine or enough. It is quite common practice to leave a tab of a browser open.
But if there are some privacy or security concerns, then perhaps a 30-minute timeout on inactivity would be good.
Can you tell how I can change it on discourse .like if i want to set this to 30 minutes
Agreed. I don’t want to keep logging in.
If you want to change the settings @Jaskaran you can check out these site settings
No I can’t but AI claims this:
Jagster:
Can I change the time when system forces an user logout?
gpt-4o:
Found 0 results for 'session expiration'
Searching for: time when system forces a user logout
Reading context for: maximum_session_age
Yes, you can change the time when the system forces a user to log out by adjusting the maximum_session_age
setting. This setting determines the maximum number of hours a user remains logged in since their last visit.
maximum_session_age
SettingAccess the Admin Settings:
Search for the Setting:
maximum_session_age
.Adjust the Setting:
maximum_session_age
is 1440 hours (60 days).Save Changes:
If you want to set the maximum session age to 30 hours, just change the value to 30.
You can find further details in the topic on How to automatically log out of the account when the user is not online.
For more technical details, you can refer to the maximum_session_age
site setting context.
If you need any more assistance or have further questions, feel free to ask!