[eluser]Stu Green[/eluser]
Hiya,
Having problems with the session cookies. I'm getting logged out when just browsing around my sites when logged in. Sometimes (quite rightly) it times out after inactivity. But other times it just logs me out randomly.
This is for a CMS so it needs to allow page inactivity for 20 mins or so (in case they are writing a long page), but then it automatically updates the page every 30 seconds anyway, so there is always activity, but I want the session to stay logged in for 20 minutes before expiring.
I need the optimum, secure configuration for the session cookies - what do people recommend?
current set up is the following:
Code:
$config['sess_cookie_name'] = 'my_session';
$config['sess_expiration'] = 1800;
$config['sess_encrypt_cookie'] = TRUE;
$config['sess_use_database'] = TRUE;
$config['sess_table_name'] = 'ci_sessions';
$config['sess_match_ip'] = FALSE;
$config['sess_match_useragent'] = TRUE;
$config['sess_time_to_update'] = 600;
Please advise.