bbeer Posted October 20, 2015 Posted October 20, 2015 Hi all we have a page with user Login to a special client section. Session Login Throttle prevents multiple logins with the same User Data. Is it possible to log out a user after a give period of time. Or is it possible to allow Multiple Logins with the same User Data, without risking to much security. Your help is much appreciated!
LostKobrakai Posted October 20, 2015 Posted October 20, 2015 Is it possible to log out a user after a give period of time. A given time of inactiveness or from the login? Also does this need to be different depending on the user?
bbeer Posted October 20, 2015 Author Posted October 20, 2015 a given time of inactivity, not depending on user should do!
LostKobrakai Posted October 20, 2015 Posted October 20, 2015 Then take a look at $config->sessionExpireSeconds.
Soma Posted October 21, 2015 Posted October 21, 2015 Hi all we have a page with user Login to a special client section. Session Login Throttle prevents multiple logins with the same User Data. Is it possible to log out a user after a give period of time. Or is it possible to allow Multiple Logins with the same User Data, without risking to much security. Your help is much appreciated! Session Login Throttle doesn't prevent multiple logins with the same user. It's to prevent dictionary attacks, so when someone trying to login 3 times with same username but wrong password. 3
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now