Using Discourse as SSO - control logout?


(Vaping Community) #1

I’m using Discourse as SSO for my subdomain site but I get logged out every hour??

How can I take control of this, is it a session, cookie, timer?

Searched a lot but couldn’t find any mention of how this works

Thanks in advance.

Edit: I am using the PHP script.


(Vinoth Kannan) #2

What is your maximum session age site setting value? By default it’s 1440 hours.


(Vaping Community) #3

Mine is set to 1440, when I get “logged out” I just see a white screen, I’ll do some checks today but I’m not setting my own cookies only sessions to verify loggged_in in my app and those shouldn’t expire until browser closed.

How it works currently (using the PHP script).

User clicks login button - PHP script does its thing - you login at discourse - if that is successful - set the sessions.

Maybe there is a better way to do it, I’m not sure.


(Vinoth Kannan) #4

So you are using Discourse as SSO provider and you having issue in your php application. In that case there is nothing you can do from Discourse side. You have to check your PHP session configuration. Discourse part of the SSO is verifying the user login and sending the response only. Your application should handle the rest.


(Vaping Community) #5

Ok, which it is, I’ll need to check what I’m doing wrong, thanks for your quick response and help

On a side note:

[avatar_url]

Is still returning an extra /uploads/default/ in the Avatar URL

/uploads/default//uploads/default/original/2X/9/


(Vinoth Kannan) #6

It is fixed as per commit


(Vaping Community) #7

Incredible, thanks for your help


(Vinoth Kannan) #8