Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to set session timeout / expiry time in ASP.NET Core MVC?

Tags:

asp.net-core

asp.net-core-mvc

session-cookies

session-timeout

aspnetboilerplate

I am using ASP.NET Zero version 7 of ASP.NET Core, MVC and jQuery project.

I am trying to set session timeout / expiry time to automatically log out from the application when the application is idle for some time. Can anybody please let me know how to do this?

In ASP.NET Zero version 8, they are providing this configuration at User Management settings.

like image 890
srinivas challa Avatar asked Dec 18 '19 09:12

srinivas challa

People also ask

How can set session timeout in ASP.NET MVC?

Open the web. config file, then increase the value in minutes by using the time out attribute of SessionState element. By default, the session timeout value is 20 minutes.

How do I set session timeout?

Click Container Settings > Session management > Set Timeout. Enter the desired timeout value in minutes.

How to set session custom timeout in ASP NET MVC?

By default, the session timeout is 20 minutes after that session will expire. So if you want to increase or extend the session custom timeout for an application. You can set it in different ways such as using Web.config, Global.asax file, or using IIS. Here are some examples to set sessions custom timeout in ASP.NET or ASP.NET MVC.

What is session state in ASP NET MVC?

ASP.NET MVC Session state is used to temporarily store and retrieve the values for a user when the user navigates to another view in an ASP.NET MVC application. Usually, the session timeout configuration setting will be stored in the web.config file in the MVC application.

How to increase the session timeout of a web application?

If you want to increase the session timeout then open your application web.config file which is placed under your application root folder. Add <sessionState timeout="300"></sessionState> code under <system.web> </system.web> the section as shown below, In this example, I have updated the timeout to 30 min

What is the timeout property in IIS?

-1 The Timeout property specifies the time-out period assigned to the Session object for the application, in minutes. If the user does not refresh or request a page within the time-out period, the session ends. IIS 6.0: The minimum allowed value is 1 minute and the maximum is 1440 minutes.

1 Answers

ASP.NET Core MVC

Session expiry for MVC is provided via cookie by ASP.NET Core, independent of ASP.NET Zero.

Call ConfigureApplicationCookie after IdentityRegistrar.Register in Startup.cs:

public IServiceProvider ConfigureServices(IServiceCollection services)
{
    // ...

    IdentityRegistrar.Register(services);                  // No change
    AuthConfigurer.Configure(services, _appConfiguration); // No change

    services.ConfigureApplicationCookie(o =>
    {
        o.ExpireTimeSpan = TimeSpan.FromHours(1);
        o.SlidingExpiration = true;
    });

    // ...
}

The defaults from ASP.NET Core v2.2.8 CookieAuthenticationOptions.cs#L30-L36:

public CookieAuthenticationOptions()
{
    ExpireTimeSpan = TimeSpan.FromDays(14);
    ReturnUrlParameter = CookieAuthenticationDefaults.ReturnUrlParameter;
    SlidingExpiration = true;
    Events = new CookieAuthenticationEvents();
}

ASP.NET Zero (for ASP.NET Core)

ASP.NET Zero v7.2.0+ provides:

  • for MVC: frontend configuration and countdown modal.
    Docs: aspnet-core-mvc/v7.2.0/Features-Mvc-Core-Tenant-Settings#user-management
  • for Angular: implementation of session timeout via token, frontend configuration and countdown modal.
    Docs: aspnet-core-angular/v7.2.0/Features-Angular-Tenant-Settings#user-management
like image 132
aaron Avatar answered Nov 01 '22 15:11

aaron
Sign in to Comment

Related questions

How to dynamically load pages from plugins in Razor Pages application?
Accessing IISExpress for an asp.net core API via IP
Directory.GetCurrentDirectory() doesn't return the correct directory [duplicate]
Use of ConfigurationDbContext in IndetityServer4 from different API's
ASP.NET Core - What challenges or issues may arise from using [FromServices] attribute? [closed]
GraphQL for .Net Error: Unmapped selection Field
Seed test data for every test in ASP.NET Core / EF Core / xUnit.NET integration tests
ASP.NET Core Razor: Conditional attribute without value
Sending a message to whatsapp groups through twilio with asp.net core
SignalR Core - StatusCode: 404, ReasonPhrase: 'Not Found', Version: 1.1
Is there something like RouteConfig.cs in .Net Core MVC?
Get access token in middleware .net core 2.0
Blazor Adding HttpClientHandler to add Jwt to HTTP Header on requests
Putting Views and Controllers in a different project than the ASP.NET Core Web app
.Net Core 3 Custom Authorization Policy - Access to Action Verb
Entity Framework 6.3 with ASP.NET Core 3
Hosting multiple ASP NET Core sites on unbuntu and nginx as reverse proxy
Change identity login URL in ASP.net core 3.0
How to deserialize ProblemDetails in ASP.NET Core 2.2
Validation doesn't work on Blazor Server Side

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!