开发者

Windows Identity Foundation Security Token Service setting cookie timeouts

I want to configure the timeout duration that is applied to the cookies that are created on relying party after a user logs in through the passive Security Token Service (STS). I believe I read somewhere this is defaulted to 14 minutes however I can't find where I read this any longer.

I would like to up this to a more reasonable 35 minutes or so.

Is the correct values to alter

  <microsoft.identityModel>
    <service>      
      <federatedAuthentication>
        <cookieHandler requireSsl="true" persistentSessionLifetime="#VALUE#"  />
      </federatedAuthentication>
    </service>
   </microsoft开发者_JAVA技巧.identityModel>

If this is the correct location, is the value in minutes? I can't seem to find any documentation on this anywhere.


The description about persistentSessionLifetime in MSDN is not true. For example, if you set it to 1.6:13:45.0, the cookie will expire after 30 hours (1 day + 6 hours) 13 minutes and 45 seconds +/- the maximumClockSkew from <identityConfiguration>. So the description from MSDN should be like the one from TimeSpan: [-]d.hh:mm:ss.ff. I hope Microsoft changes the wrong description.

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜