Windows Identity Foundation安全令牌服务设置cookie超时
[英]Windows Identity Foundation Security Token Service setting cookie timeouts
问题描述
I want to configure the timeout duration that is applied to the cookies that are created on relying party after a user logs in through the passive Security Token Service (STS). 
我想配置在用户通过被动安全令牌服务(STS)登录后应用于依赖方创建的cookie的超时时间。 I believe I read somewhere this is defaulted to 14 minutes however I can't find where I read this any longer. 我相信我在某处阅读的内容默认为14分钟,但是我再也找不到该内容了。
I would like to up this to a more reasonable 35 minutes or so. 我想将其延长到更合理的35分钟左右。
Is the correct values to alter 是要更改的正确值
<microsoft.identityModel>
<service>
<federatedAuthentication>
<cookieHandler requireSsl="true" persistentSessionLifetime="#VALUE#" />
</federatedAuthentication>
</service>
</microsoft.identityModel>
If this is the correct location, is the value in minutes? 如果位置正确,以分钟为单位的值吗? I can't seem to find any documentation on this anywhere. 我似乎在任何地方都找不到任何文档。
1 个解决方案
解决方案1
0 2013-06-24 15:27:04
The description about persistentSessionLifetime in MSDN is not true. MSDN中有关persistentSessionLifetime的描述不正确。 For example, if you set it to 1.6:13:45.0, the cookie will expire after 30 hours (1 day + 6 hours) 13 minutes and 45 seconds +/- the maximumClockSkew from <identityConfiguration>. 例如,如果将其设置为1.6:13:45.0,则cookie将在30小时(1天+ 6小时),13分45秒+/- <identityConfiguration>中的maximumClockSkew之后过期。 So the description from MSDN should be like the one from TimeSpan: [-]d.hh:mm:ss.ff. 因此,来自MSDN的描述应该类似于来自TimeSpan的描述:[-] d.hh:mm:ss.ff。 I hope Microsoft changes the wrong description. 我希望微软更改错误的描述。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.