# Automatic Logout

Settings for automatically logging out PrivX users are in ​`/opt/privx/etc/oauth-shared-config.toml​​`. You can set PrivX to automatically log out users for one or more of the following reasons:

• Inactivity - Set with `​refresh_token_valid`​​.

• Time since login (optional) - Set with ​`session_valid`​​. If this is not set, `​refresh_token_valid`​​ effectively specifies the maximum session validity.

For example, to automatically log out PrivX users after 30 minutes of inactivity, or after 8 hours from initial login:

``````refresh_token_valid="30m"
session_valid="8h"
``````

To automatically log out PrivX users after a certain duration regardless of activity, uncomment​ ​`session_valid`​ and set the duration in ​`refresh_token_valid`​​:

``````refresh_token_valid="30m"
# session_valid="8h"
``````