{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 放我归山 的问题《Expire time express and redis session》','https://www.manongdao.com/q-722926.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm using express and redis to keep the session live on my system. I having some problems to set the maxAge on the sessionCookie. By the default I read that is 24hrs, but that's a long time to keep it live. I would like to set like 30 min and then logout the user, I changed for 1min to see if it works but nothing happens, the user still logged.
This is my session function:
module.exports.initSession = function(app, db) {
app.use(session({
saveUninitialized: true,
resave: false,
secret: config.sessionSecret,
cookie: {
maxAge: 30*10000,
httpOnly: true,
secure: Boolean(process.env.ssl) || true
},
key: config.sessionKey,
store: new RedisStore({
host: config.redis.host || 'localhost',
port: config.redis.port || 6379,
db: config.redis.database || 0,
pass: config.redis.password || ''
})
}));
};
I also tried using ttl instead of maxAge but I get the same result. What could it be?
EDITED:
I using SEAN.JS and the files that content the session are this two: express.js and default environment.
This is my configuration for sessions and it works.
I set the expiration time to 5 seconds for testing purposes.
I set
maxAgeand it didn't work and when i setttlit worked.Note: I tested and found out that
ttlis in second but maxAge is in milli seconds! (kinda weird)you can log session data using a middleware like below to see if a passport object exists or not, if there is no passport object in sesssion data, user is logged out.