Closeing inactive Sessions

Firstspirit should automatically close inactive session within 1 hour (Time should be configurable).

Clients with a lot of Editors often complain about the session load on the project. Firstspirit should implement a session timeout for the java client by default or better configureable.

In our case, anyway, a webseal kills the session by default after 1 hour of inactivity what causes the client to loose connection to the Server. This results in a huge amount of ZombieSessions on the Server.

I'm new here

I assume, the specification you asked for is to close a session automatically after the SiteArchitect lost its network connection or in case of the ContentCreator, that the user just closed the browser window instead of using the "logout" button. Let's call that "idle session timeout".

Or do you mean closing a client automatically, if no user input is recognized over a specific time duration by the client? Let's call that "idle user timeout".

For the "idle session timeout" on sessions created by the SiteArchitect or ServerManager, add the following line to firstspirit5/conf/fs-server.conf:

# SiteArchitect Session Timeout in seconds, default 1200


For the "idle session timeout" on sessions created by the ContentCreator, add the following lines to the project specific web.xml via the FirstSpirit ServerManager for the ContentCreator WebApp if you are using the embedded Jetty on FirstSpirit, or to a central default web.xml for all applications if you are using Tomcat or other WebApp server. Using firstspirit5/server/jetty/webdefault.xml for the Jetty is not recommended as it will be overwritten automatically by FirstSpirit on Updates or even restarts.


     <!-- in minutes -->



About the Webseal timeout, if "idle user session" is meant:

I'm wondering how the Webseal as WAF is detecting inactivity of the FirstSpirit SiteArchitect. The SiteArchitect sends a "ping" over the FirstSpirit protocol, which is encapsulated by http or https, every second, even if the FirstSpirit user on the client is idle.

I'm new here

Hi Holger,

thanks for the input. I agree to your wording. I will test your suggsestions about idle session timeout in the next release.

About the idle user session.. i have to check that again. Some users complained about that issue. I would get back to you if i can verify it.

Community Manager
Community Manager

As mentioned by Holger, there already is a session timeout. Please contact our technical support if you're still experiencing "zombie sessions" so that we can identify root cause.

I'm new here

Thanks for the valuable insights on the session timeout!

It would be even better to mention this in the admin documentation, don't you think?