Skip to main content

Session

Description

Specifies the configuration for client sessions.

Properties

The following table(s) describe the configuration properties for this component:

Name Type Constraints Description
permit_user_switching boolean Values: true,false
Default:false
During an obligated re-authentication, depending on the policy and identity provider a different user credential may be returned to the application gateway.
By default, the application gateway will not accept a credential if the user name does not match the user which the session was originally established for.
Use this entry to change the behaviour and allow the application gateway to accept a credential containing a different user name during re-authentication.
max_sessions number Minimum:1
Maximum:unlimited
Default:4096
The maximum number of concurrent sessions.
cookie_name string The name of the session cookie presented to clients.
timeout number Minimum:0
Maximum:unlimited
Default:3600
The maximum lifetime (in seconds) for a session. If set to 0 the sessions will not have a maximum lifetime, however once max_sessions is reached sessions will be reaped using a least recently used algorithm.
inactive_timeout number Minimum:0
Maximum:unlimited
Default:600
The maximum lifetime (in seconds) a session can remain inactive before it is expired. If set to 0 the sessions will not have a maximum inactive lifetime.

Example

 server:
         session:
             cookie_name: sess_cookie
             max_sessions: 20
             timeout: 600
             inactive_timeout: 100