From 5d91487eae5ac19ca5ad46abbe2d349af2bd569d Mon Sep 17 00:00:00 2001 From: HelloDarkness <111370255+hellodarkness@users.noreply.github.com> Date: Sat, 6 Jan 2024 15:20:05 +0000 Subject: [PATCH 1/2] Update config.sample.php Comments to clarify the purpose of session_keepalive. Fixes issue in Nextcloud Documentation (https://github.com/nextcloud/documentation/issues/7244) Signed-off-by: HelloDarkness <111370255+hellodarkness@users.noreply.github.com> --- config/config.sample.php | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/config/config.sample.php b/config/config.sample.php index ae37c3aec9218..22e3bb1f44e44 100644 --- a/config/config.sample.php +++ b/config/config.sample.php @@ -339,8 +339,10 @@ /** * Enable or disable the automatic logout after session_lifetime, even if session - * keepalive is enabled. This will make sure that an inactive browser will be logged out - * even if requests to the server might extend the session lifetime. + * keepalive is enabled. This will make sure that an inactive browser will log itself out + * even if requests to the server might extend the session lifetime. Note: the logout is + * handled on the client side. This is not a way to limit the duration of potentially + * compromized sessions. * * Defaults to ``false`` */ From 261fa636faeea83aa6ce90e44b25d5d38f4511e0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?John=20Molakvo=C3=A6?= Date: Tue, 29 Oct 2024 15:26:49 +0100 Subject: [PATCH 2/2] fix: adjust `compromized` British wording MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Kate <26026535+provokateurin@users.noreply.github.com> Signed-off-by: John Molakvoæ --- config/config.sample.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/config/config.sample.php b/config/config.sample.php index 22e3bb1f44e44..eb60dce073ce1 100644 --- a/config/config.sample.php +++ b/config/config.sample.php @@ -342,7 +342,7 @@ * keepalive is enabled. This will make sure that an inactive browser will log itself out * even if requests to the server might extend the session lifetime. Note: the logout is * handled on the client side. This is not a way to limit the duration of potentially - * compromized sessions. + * compromised sessions. * * Defaults to ``false`` */