Sessions
There are two types of sessions:
|
•
|
Explicit sessions: During an explicit session, login or logout requests are initiated to start or to terminate a session. Each login request contains the client’s identity information. Once this identity is accepted and the session established, any following requests carry only the sessionID . |
|
•
|
Implicit sessions: During an implicit session, each request is initiated with the client's identity information. CMI Protocol creates such session on-the-fly, performs operations, and terminates the session once the response is sent. |
|
•
|
Session Timeout: For security reasons, each user session times out, and each sessionID becomes invalid after a configurable time period.
|
If a session times out, the CMI Protocol updates the audit log entry to status COMPLETED WITH ERRORS
, sends an ADVISORY
message to the private process, and removes the session content. Any following incoming requests using the timed-out sessionID
triggers an error message.
Edit Plug-in Properties - Session Expiry Settings
To define the time interval after which a session expires:
|
1.
|
Select BusinessConnect > System Settings > Activated Protocol Plug-ins and Properties. |
|
3.
|
In the dialog Edit Plug-in Properties: CMI enter the time interval for session expiry in the window cmi.sesson.expiry. Default is 1800 seconds. |
|
4.
|
Click Save to save the session settings. |