OTRS Academy » Documentation » Configuration Options Reference » CoreSession

CoreSession

April 12, 2024

AgentSessionLimit

Sets the maximum number of active agents within the timespan defined in SessionMaxIdleTime.

Default value:

100

AgentSessionLimitPriorWarning

Sets the maximum number of active agents within the timespan defined in SessionMaxIdleTime before a prior warning will be visible to the logged in agents.

This setting is not active by default.

Default value:

90

AgentSessionPerUserLimit

Sets the maximum number of active sessions per agent within the timespan defined in SessionMaxIdleTime.

Default value:

20

CustomerSessionLimit

Sets the maximum number of active customers within the timespan defined in SessionMaxIdleTime.

Default value:

100

CustomerSessionPerUserLimit

Sets the maximum number of active sessions per customers within the timespan defined in SessionMaxIdleTime.

Default value:

20

SessionCSRFProtection

Protection against CSRF (Cross Site Request Forgery) exploits (for more info see https://en.wikipedia.org/wiki/Cross-site_request_forgery).

This setting can not be deactivated.

Default value:

1

SessionCheckRemoteIP

Turns on the remote ip address check. It should not be enabled if the application is used, for example, via a proxy farm or a dialup connection, because the remote ip address is mostly different for the requests.

This setting can not be deactivated.

Default value:

1

SessionDeleteIfNotRemoteID

Deletes a session if the session id is used with an invalid remote IP address.

This setting can not be deactivated.

Default value:

1

SessionDeleteIfTimeToOld

Deletes requested sessions if they have timed out.

This setting can not be deactivated.

Default value:

1

SessionDir

If “FS” was selected for SessionModule, a directory where the session data will be stored must be specified.

This setting can not be deactivated.

Default value:

<OTRS_CONFIG_Home>/var/sessions

SessionMaxIdleTime

Sets the inactivity time (in seconds) to pass before a session is killed and a user is logged out.

This setting can not be deactivated.

Default value:

7200

SessionMaxTime

Defines the maximal valid time (in seconds) for a session id.

This setting can not be deactivated.

Default value:

57600

SessionModule

Defines the module used to store the session data. With “DB” the frontend server can be splitted from the db server. “FS” is faster.

This setting can not be deactivated.

Default value:

Kernel::System::AuthSession::DB

SessionName

Defines the name of the session key. E.g. Session, SessionID or OTRS. Semicolon, comma, equals, asterisk and white space usage is not allowed.

This setting can not be deactivated.

Default value:

OTRSAgentInterface

SessionTable

If “DB” was selected for SessionModule, a table in database where session data will be stored must be specified.

This setting can not be deactivated.

Default value:

sessions

SessionUseCookieAfterBrowserClose

Stores cookies after the browser has been closed.

This setting can not be deactivated.

Default value:

0
FacebookXEmailLinkedIn
Scroll to Top