Core → Session

AgentSessionLimit

Sets the maximum number of active agents within the timespan defined in SessionMaxIdleTime.

Default value:

--- '100'

AgentSessionLimitPriorWarning

Sets the maximum number of active agents within the timespan defined in SessionMaxIdleTime before a prior warning will be visible for the logged in agents.

This setting is not active by default.

Default value:

--- '90'

AgentSessionPerUserLimit

Sets the maximum number of active sessions per agent within the timespan defined in SessionMaxIdleTime.

Default value:

--- '20'

CustomerPanelSessionName

Defines the name of the key for customer sessions.

This setting can not be deactivated.

Default value:

--- OTRSCustomerInterface

CustomerSessionLimit

Sets the maximum number of active customers within the timespan defined in SessionMaxIdleTime.

Default value:

--- '100'

CustomerSessionPerUserLimit

Sets the maximum number of active sessions per customers within the timespan defined in SessionMaxIdleTime.

Default value:

--- '20'

SessionAgentOnlineThreshold

Defines the period of time (in minutes) before agent is marked as "away" due to inactivity (e.g. in the "Logged-In Users" widget or for the chat).

This setting can not be deactivated.

Default value:

--- '5'

SessionCSRFProtection

Protection against CSRF (Cross Site Request Forgery) exploits (for more info see https://en.wikipedia.org/wiki/Cross-site_request_forgery).

This setting can not be deactivated.

Default value:

--- '1'

SessionCheckRemoteIP

Turns on the remote ip address check. It should not be enabled if the application is used, for example, via a proxy farm or a dialup connection, because the remote ip address is mostly different for the requests.

This setting can not be deactivated.

Default value:

--- '1'

SessionCustomerOnlineThreshold

Defines the period of time (in minutes) before customer is marked as "away" due to inactivity (e.g. in the "Logged-In Users" widget or for the chat).

This setting can not be deactivated.

Default value:

--- '5'

SessionDeleteIfNotRemoteID

Deletes a session if the session id is used with an invalid remote IP address.

This setting can not be deactivated.

Default value:

--- '1'

SessionDeleteIfTimeToOld

Deletes requested sessions if they have timed out.

This setting can not be deactivated.

Default value:

--- '1'

SessionDir

If "FS" was selected for SessionModule, a directory where the session data will be stored must be specified.

This setting can not be deactivated.

Default value:

--- <OTRS_CONFIG_Home>/var/sessions

SessionMaxIdleTime

Sets the inactivity time (in seconds) to pass before a session is killed and a user is logged out.

This setting can not be deactivated.

Default value:

--- '7200'

SessionMaxTime

Defines the maximal valid time (in seconds) for a session id.

This setting can not be deactivated.

Default value:

--- '57600'

SessionModule

Defines the module used to store the session data. With "DB" the frontend server can be splitted from the db server. "FS" is faster.

This setting can not be deactivated.

Default value:

--- Kernel::System::AuthSession::DB

SessionName

Defines the name of the session key. E.g. Session, SessionID or OTRS.

This setting can not be deactivated.

Default value:

--- OTRSAgentInterface

SessionTable

If "DB" was selected for SessionModule, a table in database where session data will be stored must be specified.

This setting can not be deactivated.

Default value:

--- sessions

SessionUseCookie

Makes the session management use html cookies. If html cookies are disabled or if the client browser disabled html cookies, then the system will work as usual and append the session id to the links.

This setting can not be deactivated.

Default value:

--- '1'

SessionUseCookieAfterBrowserClose

Stores cookies after the browser has been closed.

This setting can not be deactivated.

Default value:

--- 0