GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 08:46:58 +08:00
Code Issues Packages Projects Releases Wiki Activity

ocserv: enforce a default auth timeout value

Browse Source 
That is to prevent processes hanging on inactive sessions.
This commit is contained in:
Nikos Mavrogiannopoulos
2016-05-16 14:47:13 +02:00
parent 465389a82a
commit 7f65577fbd
2 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/config.c
View File

@@ -912,6 +912,10 @@ size_t urlfw_size = 0;
READ_NUMERIC("session-timeout", config->session_timeout);
READ_NUMERIC("auth-timeout", config->auth_timeout);
if (config->auth_timeout == 0) {
config->auth_timeout = DEFAULT_AUTH_TIMEOUT_SECS;
}
READ_NUMERIC("idle-timeout", config->idle_timeout);
config->mobile_idle_timeout = -1;

4
src/vpn.h
View File

@@ -112,6 +112,10 @@ inline static const char *proto_to_str(fw_proto_t proto)
#define MIN_NO_COMPRESS_LIMIT 64
#define DEFAULT_NO_COMPRESS_LIMIT 256
/* The time after which a user will be forced to authenticate
* or disconnect. */
#define DEFAULT_AUTH_TIMEOUT_SECS 1800
/* The time after a disconnection the cookie is valid */
#define DEFAULT_COOKIE_RECON_TIMEOUT 120