Enable login timeout

Use the Login Timeout node of the Configuration Manager to enable or disable the login timeout feature. When this feature is enabled, a WebSphere Commerce user that is inactive for an extended period of time is logged off the system and requested to log back on. If the user subsequently logs on successfully, WebSphere Commerce runs the original request that was made by the user. If the user logon fails, the original request is discarded and the user remains logged off the system.

for WebSphere Commerce tools (such as the Administration Console, WebSphere Commerce Accelerator, and so on), login timeout does not present a relogin page to the user. Instead, it closes the browser window and it is up to the user to log back on to the tool. Thus, in the case of tools, the original request that the user submits is not processed.

  1. Define the LoginTimeoutErrorView and ReLogonFormView views for the store as described in Views for login timeout.

  2. Open the Configuration Manager.

  3. Traverse to the Login Timeout node for your instance as follows: WebSphere Commerce > node > Instance List > instance > Instance Properties > Login Timeout

  4. To activate the login timeout feature, click the Enable check box.

  5. Enter the login timeout value, in seconds, in the Value field.

  6. To apply your changes to the Configuration Manager, click Apply.

  7. Upon successfully updating the configuration for your instance, you will receive a message indicating a successful update.

  8. Restart your WebSphere Commerce instance.



The login timeout value is stored in the WebSphere Commerce configuration file file in milliseconds, while the value in the Configuration Manager is entered in seconds.

 

Related tasks


Enhancing site security