2

我们在我们的一个应用程序上使用 OpenID Connect,并使用 Apache 的 mod_auth_openidc 实现。有没有办法设置会话的到期时间?我们当前的配置如下所示:

    OIDCProviderMetadataURL https://accounts.google.com/.well-known/openid-configuration
    OIDCClientID XXXXXXXXXXXXXXXXX
    OIDCClientSecret ZZZZZZZZZZZZZZZ
    OIDCRedirectURI https://jZZZZZZZZ.com
    OIDCCryptoPassphrase <password>
    OIDCScope "openid email"
    <Location />
            AuthType openid-connect
            require valid-user
            Require claim hd:xxxxxx
   </Location>
4

1 回答 1

3

您可以OIDCSessionMaxDuration按照模板.conf文件https://github.com/zmartzone/mod_auth_openidc/blob/master/auth_openidc.conf#L529中的说明进行设置:

# Maximum duration of the application session
# When not defined the default is 8 hours (3600 * 8 seconds).
# When set to 0, the session duration will be set equal to the expiry time of the ID token.
# NB: this can be overridden on a per-OP basis in the .conf file using the key:
# "session_max_duration"
#OIDCSessionMaxDuration <seconds>
于 2015-08-13T10:53:24.897 回答