[Tickets #13448] Re: horde_secret_key cookie does not use configured session timeout
noreply at bugs.horde.org
noreply at bugs.horde.org
Mon Aug 18 20:46:55 UTC 2014
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/13448
------------------------------------------------------------------------------
Ticket | 13448
Updated By | Michael Slusarz <slusarz at horde.org>
Summary | horde_secret_key cookie does not use configured
| session timeout
Queue | Horde Framework Packages
Version | FRAMEWORK_5_1
Type | Enhancement
State | Rejected
Priority | 1. Low
Milestone |
Patch | 1
Owners |
------------------------------------------------------------------------------
Michael Slusarz <slusarz at horde.org> (2014-08-18 14:46) wrote:
FWIW: the Horde application handles session timeouts via the actual
session data (which is both more secure and stable). So we want the
cookie to be non-expiring within the browser session.
More information about the bugs
mailing list