PHP :: Request #49221 :: Inactivity logout feature request

Request #49221	Inactivity logout feature request
Submitted:	2009-08-11 09:53 UTC	Modified:	2009-08-11 13:34 UTC
From:	ryan14 at mail dot com	Assigned:
Status:	Not a bug	Package:	Feature/Change Request
PHP Version:	5.3.0	OS:	Windows/Linux
Private report:	No	CVE-ID:	None

View Developer Edit

[2009-08-11 09:53 UTC] ryan14 at mail dot com

Description:
------------
PHP should have a feature that automatically logs out a user after a certain period of inactivity. For example, a user on a public computer may log into a website and then go away and leave the browser open and forget to logout, so the next person who uses the public computer will be able to access the previous person's account.

So if there was a php feature called "inactivity timeout" where a programmer could set a period of for example 10 minutes of inactivity, it means if a person is inactive for more than 10 minutes since the last time they clicked on a part of the website,  they will be automatically logged out when they click again and redirected to the current page they were on or whatever page the programmer chooses(like the login page or index page).

This should work with sessions and cookies and http authentication.

Cookies(secure and non-secure(httponly) ) and sessions will be closed/deleted/ended so users will have to login again.

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2009-08-11 13:34 UTC] rasmus@php.net

Sorry, this is well beyond the scope of PHP.  All the tools for doing this directly in PHP are there including the session_cache_expire() function and associated configuration setting.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Sun Jun 01 01:01:27 2025 UTC