47477 – [mod_auth_form] Add session auto-renew flag

Bug 47477 - [mod_auth_form] Add session auto-renew flag

Summary: [mod_auth_form] Add session auto-renew flag

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Apache httpd-2
Classification:	Unclassified
Component:	Other Modules (show other bugs)
Version:	2.5-HEAD
Hardware:	All All

Importance:	P3 enhancement (vote)
Target Milestone:	---
Assignee:	Apache HTTPD Bugs Mailing List

URL:
Keywords:	PatchAvailable

Depends on:	47476
Blocks:
	Show dependency tree

Reported:	2009-07-06 01:24 UTC by Alexey Varlamov
Modified:	2013-10-13 13:37 UTC (History)
CC List:	0 users

Attachments
Suggested fix. (3.05 KB, patch) 2009-07-09 04:41 UTC, Alexey Varlamov	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexey Varlamov 2009-07-06 01:24:26 UTC

Keeping session alive while user continues interaction with server is an usual and convenient feature, however it is missing currently in stock modules (auth_form + session).
Suggested enhancement is to add "AuthFormSessionRenew" flag, which would refresh session (i.e. reset expiry) each time the user issues a request and passes authentication. Please see the patch attached.

Comment 1 Alexey Varlamov 2009-07-09 04:41:18 UTC

Created attachment 23949 [details]
Suggested fix.

Argh, seems the patch did not attach initially.

Comment 2 Graham Leggett 2013-04-30 16:31:25 UTC

mod_session should renew on each hit by default, there should be no need for an additional switch for this.

Can you confirm if the latest v2.4 or trunk still shows a problem?

Comment 3 Graham Leggett 2013-10-13 13:37:25 UTC

Alternative fix applied from PR47476.