Windows Identity Foundation Security Token Service setting cookie timeouts
Question
I want to configure the timeout duration that is applied to the cookies that are created on relying party after a user logs in through the passive Security Token Service (STS). I believe I read somewhere this is defaulted to 14 minutes however I can't find where I read this any longer.
I would like to up this to a more reasonable 35 minutes or so.
Is the correct values to alter
<microsoft.identityModel>
<service>
<federatedAuthentication>
<cookieHandler requireSsl="true" persistentSessionLifetime="#VALUE#" />
</federatedAuthentication>
</service>
</microsoft.identityModel>
If this is the correct location, is the value in minutes? I can't seem to find any documentation on this anywhere.
1 answers
solution1
0 2013-06-24 15:27:04
The description about persistentSessionLifetime in MSDN is not true. For example, if you set it to 1.6:13:45.0, the cookie will expire after 30 hours (1 day + 6 hours) 13 minutes and 45 seconds +/- the maximumClockSkew from <identityConfiguration>. So the description from MSDN should be like the one from TimeSpan: [-]d.hh:mm:ss.ff. I hope Microsoft changes the wrong description.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.