New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
BE Session timeout #1500
Comments
See #1428 |
I don't quite understand. I have a new 5.1 installation and was logged out of the backend after 30 minutes during a phone call. Since I cannot change php-ini settings does that mean I have to hit a cursor key or play with the mouse in the BE while being on the phone, so I can resume my work? While 30 minute sessions may be desireable for BE editors, it seems somewhat counter-productive for admins. |
No, you need to make actual requests.
Then you will need to implement a keep-alive request for your back end. |
Why can’t you change PHP ini settings? |
I can only change a few settings, not session.gc_maxlifetime e.g.. So I'll use the autologin of my password manager. |
What would your suggestion be that we as developers should do in this case?
What is the reasoning behind this? Can you please ask your hosting provider for an explanation? |
I wouldn't know, that's why I'm counting on developers with smart ideas ;-) - according to the motto, where there's a will or big enough need, there's a way. Seriously: As a user all I know I had a session duration setting in Contao 3, now I have a really neat modern Contao version without it.
It's Ionos shared hosting. I'll ask. |
The behaviour would be the same in Contao 3. This PHP setting applies to all PHP applications. |
I was wrong about that - Contao 2/3 did in fact implement its own database based session storage (while still using the PHP session ID). In Contao 4+ your only option is to increase |
I read through the documentation of Symfony session and it seems that it is possible to overwrite @Anke can you please try if it works for you if you add the following to your config/config.yaml framework:
session:
gc_maxlifetime: 7200 |
Okay, I'll try and report here. Probably tomorrow, though. Would be great! EDIT: Seems to be working! Thank you! |
I usually increase the Session timeout:
System>Settings>Timeout values>Session timeout
from default 3600 to 36000But for some reason that doesn't work for me. After ~1h absence i have to login again.
No IP-change is happening in this time and my phpinfo() tells me:
session.cookie_lifetime = 0
session.gc_maxlifetime = 1440
The PHPSESSID Cookie is valid until the end of the session
Can anyone else confirm this?
The text was updated successfully, but these errors were encountered: