incubator-zeta-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jérôme Renard (JIRA) <j...@apache.org>
Subject [jira] [Commented] (ZETACOMP-81) Session timeout
Date Tue, 17 May 2011 18:01:48 GMT

    [ https://issues.apache.org/jira/browse/ZETACOMP-81?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13034921#comment-13034921
] 

Jérôme Renard commented on ZETACOMP-81:
---------------------------------------

I see your point, but the example in ezcAuthenticationSession::isValid() [1] shows that you
must call isValid() first.

I am afraid that updating the activity timestamp would break BC if not called by isValid().
Unless I am overlooking something.

What do you think ?

1. http://incubator.apache.org/zetacomponents/documentation/trunk/Authentication/phpdoc/ezcAuthenticationSession.html#isValid

> Session timeout
> ---------------
>
>                 Key: ZETACOMP-81
>                 URL: https://issues.apache.org/jira/browse/ZETACOMP-81
>             Project: Zeta Components
>          Issue Type: Bug
>          Components: Authentication
>            Reporter: Philipp Kamps
>         Attachments: patch.txt
>
>
> Not sure, but looks like the session timeout is strange. I have following code:
> 		$options = new ezcAuthenticationSessionOptions();
> 		$options->validity = 10;
> 		$session = new ezcAuthenticationSession( $options );
> I would expect a session timeout after 10 seconds __OF INACTIVITY__. But it looks like
it's a total lifetime of 10 seconds, even when I'm active ( constantly requesting more pages
that start the session ).

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message