Tuesday

Issues: Forms Based Authentication - Timing out

Now on completing my recent configuration of Forms Based Authentication, I noticed that it times out as a certain period of inactivity.
The client wouldnt really like this if it times out after 30mins, so i decided to modify the login script attached in the web.config of the Web Application that is hosting the Internet site.

I added as follows;


loginUrl="_layouts\login.aspx" protection="All|None|Encryption|Validation"
timeout="30"
path="/"
requireSSL="true|false"
slidingExpiration="true|false">




Thanks to Victor Batuza


And I got the following from Microsoft;


<
forms Attributes:
name="[cookie name]" - Sets the name of the cookie used for Forms Authentication.
loginUrl="[url]" - Sets the URL to redirect client to for authentication.
protection="[All|None|Encryption|Validation]" - Sets the protection mode for data in cookie.
timeout="[minutes]" - Sets the duration of time for cookie to be valid (reset on each request).
path="/" - Sets the path for the cookie.
requireSSL="[true|false]" - Should the forms authentication cookie be sent only over SSL?
slidingExpiration="[true|false]" - Should the forms authentication cookie and ticket be reissued if they are about to expire?
>


From Microsoft Help and Support

No comments: