Skip to content

Increase STS Session duration to 12 hours #2434

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 7, 2022
Merged

Increase STS Session duration to 12 hours #2434

merged 1 commit into from
Nov 7, 2022

Conversation

dvaldivia
Copy link
Collaborator

Signed-off-by: Daniel Valdivia 18384552+dvaldivia@users.noreply.github.com

@dvaldivia
Increase STS Session duration to 12 hours
9404925 
Signed-off-by: Daniel Valdivia <18384552+dvaldivia@users.noreply.github.com>
@dvaldivia dvaldivia self-assigned this Nov 7, 2022
@harshavardhana
Copy link
Member

So user will be logged in until 12 hours, note this doesn't change the behavior of the JWT (oauth2) you can't change the duration here beyond the JWT expiration.

@pjuarezd
Copy link
Member

pjuarezd commented Nov 7, 2022

Yes @harshavardhana is to keep the console session live during a longer period, right now it is too short (1 hour) and often we are being kicked off while still using Console

So user will be logged in until 12 hours, note this doesn't change the behavior of the JWT (oauth2) you can't change the duration here beyond the JWT expiration.

If the authorizer (oauth2 or MinIO) have a shorter period than 12h, that is OK, we'll take it.

There is plans to have a timer and end the session over a certain time of inactivity to compliment the longer sts session duration risks.

@dvaldivia dvaldivia merged commit ae2587d into minio:master Nov 7, 2022
@harshavardhana harshavardhana deleted the sts-duration-increase branch November 7, 2022 20:58
adfost pushed a commit to adfost/console that referenced this pull request Nov 18, 2022
@dvaldivia @adfost
Increase STS Session duration to 12 hours (minio#2434)
389b08d 
Signed-off-by: Daniel Valdivia <18384552+dvaldivia@users.noreply.github.com>
@bexsoft bexsoft mentioned this pull request Feb 17, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pjuarezd pjuarezd pjuarezd approved these changes

@bexsoft bexsoft bexsoft approved these changes

@dilverse dilverse dilverse approved these changes

@Alevsk Alevsk Awaiting requested review from Alevsk

@cniackz cniackz Awaiting requested review from cniackz

@reivaj05 reivaj05 Awaiting requested review from reivaj05

@prakashsvmx prakashsvmx Awaiting requested review from prakashsvmx

@kaankabalak kaankabalak Awaiting requested review from kaankabalak

@kannappanr kannappanr Awaiting requested review from kannappanr

Assignees

@dvaldivia dvaldivia

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@dvaldivia @harshavardhana @pjuarezd @bexsoft @dilverse