Adobe Experience Manager Sites & More

ravijais04 · 12/30/21

Hi Friends,

please help understand how we can detect the user session expiration programmatically and show alert box whether to continue or end the login user session?

do we have any AEM OOTB feature to do this?

Any thoughts would be appreciated.

Ravi

DEBAL_DAS · 1/9/22

1. Here you could see I have created 3 users in LDAP apache directory studio -

2. I have synchronized these apache DS users and imported to AEM -

3. I have captured all these information in ldap.log file (configured in AEM) , even authentication part also -

4. You could see I have logged in as "debalarchitect" -

5. Finally getting logged out and requested to login again if the session remains inactive for 30 mins -

Hope this will help. I have integrated AEM 6.5.9 with Apache Directory Studio 2.0.0-M14

View solution in original post

DEBAL_DAS · 1/2/22

In AEM , we do have following OOTB configuration - Apache jackrabbit oak TokenConfiguration and it has Token Refresh option as shown below -

Intentionally I have reduced the token expiration time to 30 min (1800000 ms) here.

Note: The default token expiration time for AEM is 43200000 ms (12 hours). Please restart your AEM instance if you make any changes to Apache jackrabbit oak TokenConfiguration.

After setting the token refresh option if you notice login refresh isn't working then please refer following link : https://helpx.adobe.com/experience-manager/kb/login-session-refresh-not-working.html.

Though I didn't get alert box to continue but I am able to continue after 30 min also.

Hope this will help.

Thank

ravijais04 · 1/2/22

Thanks for your inputs.

I have the same settings for my AEM instance as well.

The problem here is that I am not navigated to login screen post session remains inactive for 30 mins and if I do any operation on the screen. it just errors out, which is for sure because of that session has expired.

Hence, I wanted to create a customized coral UI that increases the expiration time based on the user's wish(either continue or end the session).

By the way,

Are you logged out and requested to login again if the session remains inactive for 30 mins? Have you tried this?

please note : I have SSO enabled with LDAP.

DEBAL_DAS · 1/3/22

I am getting below popup on my local AEM instance if I remain inactive for 30 mins -

Then click on 'OK' , getting logout and redirected to login screen.

ravijais04 · 1/3/22

I think that there is sso enabled with my aem application. Hence I don't get the same pop up.

Any thoughts if sso enabled, how we can enforce the user to login again or refresh the page to sync with Identity provider(SSO enabled) just as we reach session expiration.

DEBAL_DAS · 1/9/22

1. Here you could see I have created 3 users in LDAP apache directory studio -

2. I have synchronized these apache DS users and imported to AEM -

3. I have captured all these information in ldap.log file (configured in AEM) , even authentication part also -

4. You could see I have logged in as "debalarchitect" -

5. Finally getting logged out and requested to login again if the session remains inactive for 30 mins -

Hope this will help. I have integrated AEM 6.5.9 with Apache Directory Studio 2.0.0-M14

ravijais04 · 1/19/22

Thanks So Much Debal. Elaborated Well.

prasanna965000 · 3/23/23

Hi @DEBAL_DAS

This seems to be working but it is logging me out for active session also after the time which I have configured is passed.

Do I have to do any setting specifically for "inactive" case.

Thanks in advance !!

DEBAL_DAS · 3/23/23

I didn't do any configuration specifically for inactive case when I did this exercise.

Please refer this blog post: https://medium.com/@debal.india2014/how-to-deal-with-oak-login-token-session-expiration-and-token-re...

Adobe Experience Manager Sites & More

AEM Session Timeout Extension

Learn

Documentation

Community

Support

Resources

Adobe account

Adobe