Update config.sample.php

Comments to clarify the purpose of session_keepalive. Fixes issue in Nextcloud Documentation (https://github.com/nextcloud/documentation/issues/7244) Signed-off-by: HelloDarkness <111370255+hellodarkness@users.noreply.github.com>
author: HelloDarkness <111370255+hellodarkness@users.noreply.github.com> 2024-01-06 15:20:05 +0000
committer: GitHub <noreply@github.com> 2024-01-06 15:20:05 +0000
commit: 5d91487eae5ac19ca5ad46abbe2d349af2bd569d (patch)
tree: e7ab8288d6ea13b1c2c3dc13ef051c53e9626465 /config
parent: 9416778ed2e21e961d1a0c5222f718c545138671 (diff)
download: nextcloud-server-5d91487eae5ac19ca5ad46abbe2d349af2bd569d.tar.gz
nextcloud-server-5d91487eae5ac19ca5ad46abbe2d349af2bd569d.zip
1 files changed, 4 insertions, 2 deletions
diff --git a/config/config.sample.php b/config/config.sample.php
index ae37c3aec92..22e3bb1f44e 100644
--- a/config/config.sample.php
+++ b/config/config.sample.php
@@ -339,8 +339,10 @@ $CONFIG = [
 
 /**
  * Enable or disable the automatic logout after session_lifetime, even if session
- * keepalive is enabled. This will make sure that an inactive browser will be logged out
- * even if requests to the server might extend the session lifetime.
+ * keepalive is enabled. This will make sure that an inactive browser will log itself out
+ * even if requests to the server might extend the session lifetime. Note: the logout is   
+ * handled on the client side. This is not a way to limit the duration of potentially
+ * compromized sessions.
  *
  * Defaults to ``false``
  */
author	HelloDarkness <111370255+hellodarkness@users.noreply.github.com>	2024-01-06 15:20:05 +0000
committer	GitHub <noreply@github.com>	2024-01-06 15:20:05 +0000
commit	5d91487eae5ac19ca5ad46abbe2d349af2bd569d (patch)
tree	e7ab8288d6ea13b1c2c3dc13ef051c53e9626465 /config
parent	9416778ed2e21e961d1a0c5222f718c545138671 (diff)
download	nextcloud-server-5d91487eae5ac19ca5ad46abbe2d349af2bd569d.tar.gz nextcloud-server-5d91487eae5ac19ca5ad46abbe2d349af2bd569d.zip