Has anyone else had problems with the KeepUserLoggedIn setting in v9? The docs show it as below but it doesn't seem to take effect. Does it need some other setting to be applied?
Hey Friend!
I have had issue with this same thing, wrote up a big ol forum post and had the idea before posting to check why my Cloud projects weren't having the same behaviour.
When i copied over the corresponding settings from Cloud, i got it working and went on with my life not realizing until now that the documentation link you have provided is the source of confusion - it's the wrong key! I drew blood and lost many hours over this maddening issue and only now see the easily overlooked:
umbracoSecurity != Security
The (trimmed to be relevant only) section from my functioning appsettings:
So the source suggests it uses this key which is same as in the docs.
Umbraco:CMS:Security
Also if you look at /umbraco/ServerVariables request when logged into back office it now shows false. It was true before when set according to the docs - it just didn't seem to take effect and people keep getting logged out if they leave the browser open for a while when logged in.
Has anybody solved this? In all of my Umbraco projects (v11.2.0, hosted on IIS), I have this issue that "keepUserLoggedIn": true has no effect, the backoffice session expires nevertheless.
The global TimeOut key, however, works as expected.
{
"Umbraco": {
"CMS": {
"Global": {
"TimeOut": "14.00:00:00" <-- works as expected
},
"Security": {
"KeepUserLoggedIn": true <- has no effect
}
}
}
}
Same issue here with 10.4.1. I see that 10.5 is now available but I haven't tested it (although I don't see anything in the change log about this issue).
Has anyone logged a bug? The only mention of KeepUserLoggedIn I can find is this one and it's a bit too complex for me!
Umbraco has been unable to replicate the issue and my bug report has been closed.
In my sites I'm using Active Directory authentication. For anyone else with this issue, are you using AD as well, or regular Umbraco users? There must be something special about our environments but I'm not sure what it is.
Thanks. It's good to see that it's not just me! There's been no progress on the bug report (I'm not sure why it's been closed as "completed" when it hasn't been).
KeepUserLoggedIn v9
Has anyone else had problems with the KeepUserLoggedIn setting in v9? The docs show it as below but it doesn't seem to take effect. Does it need some other setting to be applied?
https://our.umbraco.com/Documentation/Reference/V9-Config/SecuritySettings/
Hey Friend! I have had issue with this same thing, wrote up a big ol forum post and had the idea before posting to check why my Cloud projects weren't having the same behaviour. When i copied over the corresponding settings from Cloud, i got it working and went on with my life not realizing until now that the documentation link you have provided is the source of confusion - it's the wrong key! I drew blood and lost many hours over this maddening issue and only now see the easily overlooked:
umbracoSecurity
!=Security
The (trimmed to be relevant only) section from my functioning appsettings:
Hope this helps!
^update: I've submitted a PR for the above documentation revision.
Hi Damian
Many thanks for the input. Unfortunately I've tried your configuration but it still doesn't seem to work.
The configuration section in the source uses Constants.Configuration.ConfigSecurity
https://github.com/umbraco/Umbraco-CMS/blob/c0c9c50e2110a88afab800abbf0e4a6b6a08c62d/src/Umbraco.Core/Configuration/Models/SecuritySettings.cs
https://github.com/umbraco/Umbraco-CMS/blob/c0c9c50e2110a88afab800abbf0e4a6b6a08c62d/src/Umbraco.Core/Constants-Configuration.cs
So the source suggests it uses this key which is same as in the docs. Umbraco:CMS:Security
Also if you look at /umbraco/ServerVariables request when logged into back office it now shows false. It was true before when set according to the docs - it just didn't seem to take effect and people keep getting logged out if they leave the browser open for a while when logged in.
So still a bit baffled with this one.
Has anybody solved this? In all of my Umbraco projects (v11.2.0, hosted on IIS), I have this issue that
"keepUserLoggedIn": true
has no effect, the backoffice session expires nevertheless.The global
TimeOut
key, however, works as expected.Same issue here with 10.4.1. I see that 10.5 is now available but I haven't tested it (although I don't see anything in the change log about this issue).
Has anyone logged a bug? The only mention of KeepUserLoggedIn I can find is this one and it's a bit too complex for me!
Edit: I logged it.
Umbraco has been unable to replicate the issue and my bug report has been closed.
In my sites I'm using Active Directory authentication. For anyone else with this issue, are you using AD as well, or regular Umbraco users? There must be something special about our environments but I'm not sure what it is.
Are people still running into this issue? It's still occurring for me under 13.3.1 and there's been no progress on my bug report.
Yes, even in 13.4.1, this issue is still occurring.
Thanks. It's good to see that it's not just me! There's been no progress on the bug report (I'm not sure why it's been closed as "completed" when it hasn't been).
is working on a reply...