How do I set the session timeout with Pac4j / Shiro?

32 Views Asked by vished2000 At 04 March 2024 at 18:10

I have a simple question: How do I set the session timeout? Currently it seems my session is expired after max. 60 minutes, but I thout I have defined it for 10 hours...

in my shiro.ini I have this:

sessionManager =org.apache.shiro.web.session.mgt.DefaultWebSessionManager
sessionManager.sessionIdCookie =$sessionIdCookie
sessionManager.sessionIdCookieEnabled =true
securityManager.sessionManager= $sessionManager

# 3,600,000 milliseconds = 1 hour -> set to 10 hours
sessionManager.globalSessionTimeout= 36000000

In Keycloak I have this:

And is there anything to defined also in the web.xml, like:

<!-- sets the default session timeout to 480 minutes. -->
<session-config>
    <session-timeout>480</session-timeout>
</session-config>

Original Q&A

There are 1 best solutions below

jleleu On 05 March 2024 at 06:55

The pac4j ShiroSessionStore relies on the Shiro session: SecurityUtils.getSubject().getSession(createSession) so it should expire as defined. Turn on DEBUG logs on org.pac4j to see what's going on.

How do I set the session timeout with Pac4j / Shiro?

There are 1 best solutions below

Related Questions in SHIRO

Related Questions in PAC4J

Trending Questions

Popular # Hahtags

Popular Questions