Hello!
Friends, I need your advice. I’ve encountered an issue where the system does not log out automatically after the specified time. Is it possible to configure such settings?
seahub_settings.py
LOGIN_REMEMBER_DAYS = 0
Version 11.
I am not sure what it is you expect that to do, but as far as I can tell it does work. When you log in a cookie is set called “sessionid”. This cookie is set as a “session” cookie which used to mean that the browser would delete the cookie when the browser is closed, but it seems that a lot of browsers have decided not to do that anymore, and they just keep it forever. On the server side, this token seems to be good for 24 hours only, and after that you need to authenticate again.
On login if you click the “Remember me” check box, an “auth_session” cookie is also created. This cookie is set to expire in the number of days you set in “LOGIN_REMEMBER_DAYS”. This cookie can automatically log you back in (get a new sessionid cookie). If LOGIN_REMEMBER_DAYS is set to 0 I don’t get an “auth_session” cookie at all. Or maybe I got one and it instantly expired? Either way it is the same, I will need to log in again when this current session expires.