Opensearch Dashboards with OpenID auth - frequent session timeouts

  • Opensearch Dashboards Version: 2.4.1
  • OS: Rocky 9 (Linux)
  • Issue replicated in multiple browsers

I am using Opensearch with OIDC/OpenID authentication. This works fine, but after 5 minutes or so when I refresh the page or navigate somewhere else within the application, I find that the session has ended and I need to re-authenticate. This has become quite frustrating as you lose whatever it is that you were working on. I’ve googled this issue and I have found some reference to it, although the suggested fix seems to be to use the following config:

opensearch_security.cookie.ttl: 86400000
opensearch_security.session.ttl: 86400000
opensearch_security.session.keepalive: true

…but this configuration doesn’t seem to have any effect on the application.
Looking at the security cookie in the browser, it is a session cookie, so it should be fine until the browser session is closed.
So I guess this must be an Opensearch issue?

Does anyone have any experience of this or any advice?

Hey @jaboo

What IDP are you using? I’m using Keycloak so I set the session TTL there.