[Koha-bugs] [Bug 17110] Lower CSRF expiry in Koha::Token

[bugzilla-daemon at bugs.koha-community.org]

https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=17110

Marcel de Rooy <m.de.rooy at rijksmuseum.nl> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           See Also|                            |https://bugs.koha-community
                   |                            |.org/bugzilla3/show_bug.cgi
                   |                            |?id=17187

--- Comment #13 from Marcel de Rooy <m.de.rooy at rijksmuseum.nl> ---
(In reply to Jonathan Druart from comment #12)
> I do not make up my mind on what it's best. So let it go and see later if we
> need to adapt it.
> Another idea was to use max(pref(timeout), 8h or 24h) for the value of
> CSRF_EXPIRY_HOURS

I will open up a new report for lowering the default timeout value.
If that meets approval, we could change this accordingly.
Thx for QA.

PS
Note that we also still have bug 15428..
And now bug 17187.

-- 
You are receiving this mail because:
You are watching all bug changes.