Details
-
Bug
-
Status: Closed
-
Resolution: Fixed
-
6.1.1 CE GA2, 6.1.20 EE GA2, 6.1.30 EE GA3, 6.2.0 CE M6
-
6.1.x
-
Committed
-
3
-
Regression Bug
Description
Short description of the client's issue:
The client has disabled the timeout warning by setting session.timeout.warning=0, disabled the session-timeout option in /webapps/ROOT/WEB-INF/web.xml, established session.timeout=1 (indicating 1 minutes for each session before expiring), as well as session.timeout.redirect.on.expire=true. However, if session.timeout.warning=0 is set, the session does not expire at all. This seems to reflect LPS-3034 which seems to have been completed.
Steps to reproduce / testing done:
1. Go into $LIFERAY_HOME/webapps/ROOT/WEB-INF/web.xml and comment out the section that reads
<session-config>
<session-timeout>30</session-timeout>
</session-config>
Essentially it'll become
<!-- session-config>
<session-timeout>30</session-timeout>
</session-config -->
2. Add the following properties to portal-ext.properties:
session.timeout=1
session.timeout.redirect.on.expire=true
session.timeout.warning=0
The above properties indicate that the session should timeout in 1 minute, and that once the session expires, it should redirect. Also, there should be no warning of timeout. It should just happen.
3. Wait for 1 minute
Results of steps / testing:
No warning appears which is expected, but if you click around, you will remain signed in
Errors/logs:
No exceptions thrown or stack traces relevant.
Testing in 6.1.X:
Issue reproduced.
Testing in Trunk SHA ID 0daa363c483f9266464bb00a3a208a6af379531b:
Issue reproduced.
End Goal:
Have the ability to expire the session based on the customized time, redirect the user upon expire, and not show the warning indicating that the user's session is expiring.
Attachments
Issue Links
- is related to
-
- Closed