Admin Timeout
Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=21744
Printed Date: 08 April 2026 at 6:14pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: Admin Timeout
Posted By: CMason
Subject: Admin Timeout
Date Posted: 27 October 2006 at 3:11am
I'm getting a bit frustrated with the Admin login. When a session expires what I see is something about "you don't have permissions to access this". I expect that it would be like most applications where it would redirect me to the login and after the login successfully posts I'd be redirected back to the page I was last accessing.
Instead I have click on Admin and relogin and then "remember" where I was and what information I was entering and then reenter it. I haven't met an application that forces me into that type of login process in a long time.
Is this because I'm demoing this with a localhost setup? Is this how the paid for version acts?
|
Replies:
Posted By: WebWiz-Bruce
Date Posted: 27 October 2006 at 11:51am
If you are talking about the actual admin section, then yes the login for that part is extra secure because if not and a hacker gains access to it they can not only delete your entire forum, but also delete of deface your entire web site.
The session time for the admin section login is 20 minutes after your last activity, or if you hit the logout button then it will be finished sooner.
This 20 minute session, after last activity, should be long enough for most people, if you are getting logged out sooner than this then it suggests an issue on the server with the servers application pool dropping application variables.
If you are unable to fix the server issue you can edit the file functions/functions_Session_data.asp and use the instructions in that file to enable the forum to use the database to store session data in, instead of the web servers memory.
-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting
|
Posted By: CMason
Date Posted: 27 October 2006 at 1:26pm
|
I don't have a problem with it timing out or the extra secure login, my problem is that a timeout doesn't redirect to to a login page which, if successful, then redirects back to the initial page.
|
Posted By: WebWiz-Bruce
Date Posted: 27 October 2006 at 2:15pm
You are right a failed login, which includes a time-out which is the server would see the same as an attempted login will take you to a insufficient permissions page, this is done to make it more difficult for hackers.
-------------
https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting
https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting
|
Posted By: CMason
Date Posted: 27 October 2006 at 2:24pm
|
Since the admin has another secure entry to make, I think you may have unnecessarily inhibited usability in the interests of security.
|
|