[keycloak-user] (no subject)

Stian Thorgersen sthorger at redhat.com
Thu Oct 27 06:15:07 EDT 2016


No, there is no notification in this case. Only if user or admin actively
logs out the session.

As access tokens have short expiration the applications would notice the
session idle in either case when trying to refresh the token, so I don't
think it's needed.

On 27 October 2016 at 11:29, Rickard Östergård <rickard.ostergard at gmail.com>
wrote:

> Hi,
>
> I have a question about user session expiration.
>
> When the SSO Session Idle or SSO Session Max times are reached the auth
> server will invalidate the user session. Will the clients that have
> initiated these session be notified? Hence, are the clients logged out (via
> the admin url) when the auth server expires a user session?
>
> If not, is this a feature that will be implemented in coming releases ?
>
> Best regards,
> Rickard
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>


More information about the keycloak-user mailing list