Hi Jonathan,
I'm using OpenACS 3.x You wrote:
you are fine as long as SessionInfoCacheInterval...
is much smaller than SessionCookieReissue
I just checked my installation and found both values
to be 600.
Here are the relevent values:
* SessionCookieReissue 600
* SessionInfoCacheInterval 600
SessionTimeout 86400
SessionLifetime 176800
LastVisitUpdateInterval 600
AllowPersistentLoginP 1
PersistentLoginDefaultP 1
LastVisitCookiesEnabledP 1
LastVisitExpiration 86400
LastVisitCacheUpdateInterval 600
What are your recommendations for the two "*" values and
the others?
It appears me to be working as is with IE5.5, 6.0 and NS4.x. I do get a regular but small trickle of support email about logon and some difficulties users have with the log on and log off process. A long time ago, I removed the "remember me" checkbox and advised people to click logoff if they are at the cybercafe or at work. Most of our
users are on their own home computers.
I've noticed that if you have multiple browsers open, you
can have one logged in and another logged out and that the
browsers can get confused... and one might not be logged out
depending on the order in which browsers are closed. But I'm
probably not typical!
TIA
-Bob
