Project

General

Profile

Bug #2084

Session Timeout

Added by Sasi Bhushan about 1 year ago. Updated about 1 year ago.

Status:
Fixed
Priority:
High
Assignee:
Sasi Bhushan
Start date:
10/08/2024
Due date:
% Done:

100%

Estimated time:
1.00 h
Spent time:
1.00 h

Description

Implement session timeout. We can logout after a 30 minute inactive session. After a session expires, make sure to invalidate the session token to prevent further use. Currently it is observed that even the second day of login previous session is active.

History

#1

Updated by Kamal Gadepalli about 1 year ago

  • Status changed from Created to Fixed
  • % Done changed from 0 to 100
  • Estimated time set to 1.00 h

Current implementation is =>
We are dealing with 2 tokens, once is token and refresh token
token will expire in 30 mins, in that case will try to regenerate both tokens again with the help of Refresh token. (Currently refresh token is valid for 1 hr), if refresh token also expires then user will logout automatically when trying for new API cal.

#2

Updated by Kamal Gadepalli about 1 year ago

  • Assignee changed from Nalin Y to Sasi Bhushan

Also available in: Atom PDF