Automatic Logout
Settings for automatically logging out PrivX users are in /opt/privx/etc/oauth-shared-config.toml
. You can set PrivX to automatically log out users for one or more of the following reasons:
Inactivity - Set with
refresh_token_valid
.Time since login (optional) - Set with
session_valid
. If this is not set,refresh_token_valid
effectively specifies the maximum session validity.
For example, to automatically log out PrivX users after 30 minutes of inactivity, or after 8 hours from initial login:
refresh_token_valid="30m"
session_valid="8h"
To automatically log out PrivX users after a certain duration regardless of activity, comment out session_valid
and set the duration in refresh_token_valid
:
refresh_token_valid="30m"
# session_valid="8h"