Session Options
Session Options
Ollio offers flexible session management options to help fine-tune user visits, including session lifetime, multi-session handling, and session token customization.
Ollio offers flexible session management options to help fine-tune user visits, including session lifetime, multi-session handling, and session token customization.
Session Lifetime
Session Lifetime
The ideal session lifetime balances security and user experience. Longer sessions improve user convenience but may compromise security, while shorter sessions enhance security but can frustrate users.
Ollio allows full control over session lifetime using two configurable settings in the Ollio Dashboard: Inactivity Timeout and Maximum Lifetime.
The ideal session lifetime balances security and user experience. Longer sessions improve user convenience but may compromise security, while shorter sessions enhance security but can frustrate users.
Ollio allows full control over session lifetime using two configurable settings in the Ollio Dashboard: Inactivity Timeout and Maximum Lifetime.
Note
At least one of these settings must always be enabled for security reasons.
Note
At least one of these settings must always be enabled for security reasons.
Inactivity Timeout
Inactivity Timeout
This setting determines how long a session remains active when a user is idle. A session expires when the application is closed or stops refreshing tokens.
Default: 7 days.
To customize:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Inactivity Timeout.
Set the desired duration.
This setting determines how long a session remains active when a user is idle. A session expires when the application is closed or stops refreshing tokens.
Default: 7 days.
To customize:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Inactivity Timeout.
Set the desired duration.
Note
Browser limitations might cause users to be signed out earlier than the configured timeout.
Note
Browser limitations might cause users to be signed out earlier than the configured timeout.
Maximum Lifetime
Maximum Lifetime
This setting limits the total duration a session remains active, regardless of user activity.
Default: Enabled with a value of 7 days.
To customize:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Maximum Lifetime.
Set the desired duration.
This setting limits the total duration a session remains active, regardless of user activity.
Default: Enabled with a value of 7 days.
To customize:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Maximum Lifetime.
Set the desired duration.
Note
Browser limitations might cause users to be signed out before reaching the maximum lifetime.
Note
Browser limitations might cause users to be signed out before reaching the maximum lifetime.
Browser limitations on cookies
Browser limitations on cookies
Certain browser behaviors can clear Ollio's session cookies, resulting in premature sign-outs. Examples include:
Users manually clearing cookies.
Closing all incognito windows after signing in using an incognito session.
In addition, Google Chrome enforces a Max-Age upper limit of 400 days for cookies, regardless of the session lifetime configuration. Other browsers may adopt similar restrictions.
Certain browser behaviors can clear Ollio's session cookies, resulting in premature sign-outs. Examples include:
Users manually clearing cookies.
Closing all incognito windows after signing in using an incognito session.
In addition, Google Chrome enforces a Max-Age upper limit of 400 days for cookies, regardless of the session lifetime configuration. Other browsers may adopt similar restrictions.
Multi-Session Applications
Multi-Session Applications
Multi-session applications enable users to sign in with multiple accounts simultaneously and seamlessly switch between them.
Steps to Enable Multi-Session Handling:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Multi-Session Handling.
Save your changes.
Integration Options:
Use the
<UserButton />component for a prebuilt UI.Build a custom flow using the Ollio API for full control.
Multi-session applications enable users to sign in with multiple accounts simultaneously and seamlessly switch between them.
Steps to Enable Multi-Session Handling:
Navigate to the Sessions page in the Ollio Dashboard.
Toggle on Multi-Session Handling.
Save your changes.
Integration Options:
Use the
<UserButton />component for a prebuilt UI.Build a custom flow using the Ollio API for full control.
Customize Session Token
Customize Session Token
Ollio's session tokens are JWTs that include default claims. You can extend these tokens by adding custom claims to meet specific application requirements.
For more information on customizing session tokens, refer to the dedicated guide.
Ollio's session tokens are JWTs that include default claims. You can extend these tokens by adding custom claims to meet specific application requirements.
For more information on customizing session tokens, refer to the dedicated guide.
What did you think of this content?
It was helpful
It was not helpful
I have feedback
What did you think of this content?
Helpful
Not helpful
Feedback
Last updated on
Dec
4,
2024
Last updated on
Dec
4,
2024