Menu
▾
▴
Re: [webmin-devel] Session timeout with miniserv.pl
|
From: Jamie C. <jca...@we...> - 2005-04-20 23:07:53
|
On Thu, 2005-04-21 at 00:43, Colm Dougan wrote: > > > > The session timeout is already enforced by Webmin for all modules, and > > > > can be configured in the Webmin Configuration module under > > > > Authentication. So there isn't really any need to implement your own > > > > timeout, unless you want to do something special like adjust it on a > > > > per-module basis .. > > > > > > Great - this is really useful. Is this documented anywhere? > > > > Only in my book unfortunately :-) > > Although the default works well for most people, so it isn't often > > changed.. > > I got it working by adding "logouttime=3" to miniserv.conf. A gotcha > with this is that if you have any CGI scripts that reload themselves > periodically with JavaScript then you can find that you never hit the > timeout because the JavaScriipt reload (quite understandably) is > activity. Not that I'd expect webmin to deal with that - I'm just > mentioning it. I'll most probably have to patch webmin to have a list > of URLs that will not count as a request for the purposes of > calculating the timeout. That could certainly be done - if you do create a patch for this, please send it to me and I'll incorporate it into the next Webmin release. I'd advise making the list of URLs not to update the timeout be configurable, from something in miniserv.conf (which goes into the %config hash). - Jamie |
