How to change auto logout timeout?

Hi,
An inactive OSD user is logouted after about a while.
How to change this time?

@sandyabcde What type of authentication do you use? What is your IdP?

Hi @sandyabcde - I couldn’t find any direct documentation on this, so I scoured some source code for you. I found this setting in the opensearch.yml defaults that might help:

# Authentication cache timeout in minutes (A value of 0 disables caching, default is 60)
#plugins.security.cache.ttl_minutes: 60

If you’re using the default OpenSearch authentication, this might work. But, as @pablo correctly asked, if there’s other kinds of authentication at play there might be more appropriate settings to change.

Hi @nateynate - I’m using the default OpenSearch authentication.
I added “plugins.security.cache.ttl_minutes: 1440” to config/opensearch.yml on all cluster nodes and restarted them.
Unfortunately, the OSD session auto logout timeout remained about one hour.

@nateynate that setting would be useful with JSON web tokens.

Since this is basic authentication JSON web tokens are not used.

@sandyabcde Can you try the below in your opensearch-dashboards.yml?

opensearch_security.cookie.ttl: 86400000
opensearch_security.session.ttl: 86400000
opensearch_security.session.keepalive: true

Values are in milliseconds.

@pablo I’ll change the settings late tonight.
Does it matter “opensearch_security.cookie.secure” true or false ?

@sandyabcde It depends on how is your access to OpenSearch Dashboards configured.

Thanks. Happened.
Now an inactive session does not logout after an hour.
For reference: version 1.3.2.