Hi,
An inactive OSD user is logouted after about a while.
How to change this time?
@sandyabcde What type of authentication do you use? What is your IdP?
Hi @sandyabcde - I couldn’t find any direct documentation on this, so I scoured some source code for you. I found this setting in the opensearch.yml defaults that might help:
# Authentication cache timeout in minutes (A value of 0 disables caching, default is 60)
#plugins.security.cache.ttl_minutes: 60
If you’re using the default OpenSearch authentication, this might work. But, as @pablo correctly asked, if there’s other kinds of authentication at play there might be more appropriate settings to change.
Hi @nateynate - I’m using the default OpenSearch authentication.
I added “plugins.security.cache.ttl_minutes: 1440” to config/opensearch.yml on all cluster nodes and restarted them.
Unfortunately, the OSD session auto logout timeout remained about one hour.
@nateynate that setting would be useful with JSON web tokens.
Since this is basic authentication JSON web tokens are not used.
@sandyabcde Can you try the below in your opensearch-dashboards.yml?
opensearch_security.cookie.ttl: 86400000
opensearch_security.session.ttl: 86400000
opensearch_security.session.keepalive: true
Values are in milliseconds.
@pablo I’ll change the settings late tonight.
Does it matter “opensearch_security.cookie.secure” true or false ?
@sandyabcde It depends on how is your access to OpenSearch Dashboards configured.
Thanks. Happened.
Now an inactive session does not logout after an hour.
For reference: version 1.3.2.