I have added before filter to check if request is json and then invalidate session manually. Regular user activity is handled by activerecord session store timeout option. This patch may need another revision to set the session timeout time in configuration file, but right now I am not sure where it should be. There is another option to make sure all sesions ale expired is to create delayed_job job for periodicaly checking SessionEntity table.
- RM#3508 rev 1 Tomáš Hrčka
- [PATCH] RM#3508 - Ensure that all sessions expire Tomáš Hrčka
- Re: [PATCH] RM#3508 - Ensure that all sessions exp... Matt Wagner
- [PATCH] RM#3508 - Ensure that all sessions exp... Tomáš Hrčka
- Re: [PATCH] RM#3508 - Ensure that all sess... Matt Wagner
- RM#3508 final rev Tomáš Hrčka
- [PATCH] RM#3508 - Ensure that all... Tomáš Hrčka
- Re: RM#3508 rev 1 Scott Seago
- Re: RM#3508 rev 1 Tomas Hrcka
- Re: RM#3508 rev 1 Scott Seago
- Re: RM#3508 rev 1 Matt Wagner
