I'm trying to simulate Login Status Timeout and can't seem to get it work. Below is my setting:
User Login Options
Disallow concurrent login = True
Maximum concurrent login count = 1
Logout concurrent login = False
Login status timeout (minutes) = 3
Advanced Setting
Session timeout period (minutes) = 2
Session keep alive internal (seconds) = 0
Session time out countdown period (seconds) = 60
I have tested a few scenario:
Login and leave the browser idle for 2 minutes:
- It will show session timeout after 1 minute. After 2 minutes it will auto logout and show "Your session has expired." (Correct).
Login using Firefox and try to login the same using using another browser (Chrome).
- Do not allow concurrent login (correct).
Login to website and then close the browser.
- Open the same browser using the same browser after 3 minutes (to be safe I opened after 4 minutes). Login status timeout setting of 3 minutes does not work. It still says "User 'xxx' already logged in.
The option "Login status timeout" not for this purpose or is there something else I did not set for this to work?
From documentation
The number of idle minutes after which the login status will be considered as logged out and login will be allowed again.
If a logged-in user does not explicitly log out (for example, close the browser directly), the user session is not closed and the user's login status will remain as "logged in". Attempts to login again will fail. This timeout setting ensures login will be allowed again after a period of idle time.