Skip to content

Increase STS Session duration to 12 hours #2434

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 7, 2022
Merged

Increase STS Session duration to 12 hours #2434

merged 1 commit into from
Nov 7, 2022

Conversation

@dvaldivia
Copy link
Collaborator

@dvaldivia dvaldivia commented Nov 7, 2022

Signed-off-by: Daniel Valdivia [email protected]

@dvaldivia dvaldivia self-assigned this Nov 7, 2022
@harshavardhana
Copy link
Member

harshavardhana commented Nov 7, 2022

So user will be logged in until 12 hours, note this doesn't change the behavior of the JWT (oauth2) you can't change the duration here beyond the JWT expiration.

@pjuarezd
Copy link
Member

pjuarezd commented Nov 7, 2022

Yes @harshavardhana is to keep the console session live during a longer period, right now it is too short (1 hour) and often we are being kicked off while still using Console

So user will be logged in until 12 hours, note this doesn't change the behavior of the JWT (oauth2) you can't change the duration here beyond the JWT expiration.

If the authorizer (oauth2 or MinIO) have a shorter period than 12h, that is OK, we'll take it.

There is plans to have a timer and end the session over a certain time of inactivity to compliment the longer sts session duration risks.

@dvaldivia dvaldivia merged commit ae2587d into minio:master Nov 7, 2022
@harshavardhana harshavardhana deleted the sts-duration-increase branch November 7, 2022 20:58
adfost pushed a commit to adfost/console that referenced this pull request Nov 18, 2022
@dvaldivia @adfost
Increase STS Session duration to 12 hours (minio#2434)
389b08d 
Signed-off-by: Daniel Valdivia <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pjuarezd pjuarezd pjuarezd approved these changes

@bexsoft bexsoft bexsoft approved these changes

@dilverse dilverse dilverse approved these changes

@Alevsk Alevsk Awaiting requested review from Alevsk

@cniackz cniackz Awaiting requested review from cniackz

@reivaj05 reivaj05 Awaiting requested review from reivaj05

@prakashsvmx prakashsvmx Awaiting requested review from prakashsvmx

@kaankabalak kaankabalak Awaiting requested review from kaankabalak

@kannappanr kannappanr Awaiting requested review from kannappanr

Assignees

@dvaldivia dvaldivia

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@dvaldivia @harshavardhana @pjuarezd @bexsoft @dilverse