lemonldap-ng issueshttps://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues2019-05-12T13:38:43Zhttps://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/issues/1509InactivityTimeout for applications don't work2019-05-12T13:38:43ZMame Dieynaba SENEInactivityTimeout for applications don't work### Concerned version
Version: %1.9.13
Platform: Apache
### Summary
In my case (timeoutActivityInterval=10mins) :
when an authenticated user opens an application and then stays 15 minutes without doing anything, his session does not...### Concerned version
Version: %1.9.13
Platform: Apache
### Summary
In my case (timeoutActivityInterval=10mins) :
when an authenticated user opens an application and then stays 15 minutes without doing anything, his session does not expire.
In 1.9.13 Handler/Main.pm, in function retrieveSession, I think I identify the source of the problem.
Part of code:
if ( $tsv->{timeoutActivity}
and
( $now - $datas->{_lastSeen} > $tsv->{timeoutActivityInterval} ) )
{
$session->update( { '_lastSeen' => $now } );
The probleme here is if $now - $datas->{_lastSeen} > $tsv->{timeoutActivityInterval} the session must expire. So I do the following patch to resolve the probleme.
I propose to modify it by this code:
if ( $tsv->{timeoutActivity}
and
( $now - $datas->{_lastSeen} < $tsv->{timeoutActivityInterval} ) )
{
$session->update( { '_lastSeen' => $now } );
And it works.
PS: I'm sorry for my English level an I hope you undestand the problem1.9.19Christophe Maudouxchrmdx@gmail.comChristophe Maudouxchrmdx@gmail.com