what is the session timeout setting auth_saml2 plugin

what is the session timeout setting auth_saml2 plugin

by William Chan -
Number of replies: 1

Dear ,


We use moodle 3.4.3 and install auth_saml2 plugin for ADFS user authentication.


However, I find there is some issue on session timeout


In Moodle testing server, I have set the timeout to 5 mins in sessions handling .

In ADFS setting, it is set to 8 hrs by default.


When we login the system as with ADFS SSO.

I can still in connection after 10 mins.

It seems session timeout isn't worked after change to use auth_saml2 .


Please advise what we should be.

What does we set to configure proper session timeout?

                      William


Average of ratings: -
In reply to William Chan

Re: what is the session timeout setting auth_saml2 plugin

by Matteo Scaramuccia -
Picture of Core developers Picture of Peer reviewers Picture of Plugin developers

Hi William,
I'm not familiar with that plug-in but w/ Moodle auth plug-ins in general (https://docs.moodle.org/dev/Authentication_plugins).

AFAIK you should directly ask to https://github.com/catalyst/moodle-auth_saml2/issues : looking at the code, it looks like there are still some points to be covered about "timeout" e.g. https://github.com/catalyst/moodle-auth_saml2/blob/828dc0bae947fb77342e24a21574276c03c11065/auth.php#L534 .

BTW, in a SSO scenario what do you expect?
If Moodle Session has timed out, it will automagically restore the Moodle Session based on the 3rd party IdP "session" if still alive, isn't it?

I'd check the opposite, what happens if the Moodle Session timeout is greater than the IdP one?

HTH,
Matteo

Average of ratings: -