[33045] in Kerberos
Re: Idle Timeout
daemon@ATHENA.MIT.EDU (Brian Candler)
Tue Jan 4 12:35:25 2011
Date: Tue, 4 Jan 2011 17:35:14 +0000
From: Brian Candler <B.Candler@pobox.com>
To: Shaun Quartier <shaun.quartier@gmail.com>
Message-ID: <20110104173514.GB10095@talktalkplc.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <AANLkTik257Ec4Gxm8Z-jAL1AgxV0kSYk7rbiCNbmumYY@mail.gmail.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="utf-8"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit
On Tue, Jan 04, 2011 at 10:34:00AM -0500, Shaun Quartier wrote:> I’m currently using Kerberos for our employee intranet through htaccess and> I was interested in finding a way to implement an idle logout for users> after 15 minutes of using the site.
I presume you mean after 15 minutes of *not* using the site.
From a user interface point of view, what do you want the user to see ifthey haven't accessed the site for 15 minutes, and then come back to it?
And what do you want the user to see when they visit the site for the firsttime?
Kerberos is a single sign-on system. You get your TGT at the start of theday, and then it logs you in automatically and transparently to each serviceyou visit.
If you want the site to prompt for username/password, either initially orafter an idle timeout, then I think it will need to do its own HTTP Basicauthentication.
Regards,
Brian.
________________________________________________Kerberos mailing list Kerberos@mit.eduhttps://mailman.mit.edu/mailman/listinfo/kerberos
