View Issue Details

IDProjectCategoryView StatusLast Update
0008916Talerlibeufin-bankpublic2024-06-13 18:28
ReporterMarcS Assigned ToAntoine A  
PrioritylowSeverityminorReproducibilityhave not tried
Status assignedResolutionopen 
Product Version0.12 
Target Version0.13 
Summary0008916: Idle logout of demo bank website
DescriptionI experienced that when trying to open bank.head.taler.net, the website showed an "internal error". Probably because my browser still sent an old session cookie but HEAD got updated. After I logged out, I could login again and it worked.

==> instead of showing some internal error, the website should directly go to the login dialog if the session is unknown (or timed out). No need to bug the user with more steps (clicking away that nasty error message plus manually logout) since they need to login anyway.

ALL commercial banks do logout users after 15min idle. We should do the same, and dismiss the session after 15min without user input. Please show a count-down telling the user when the session will be terminated, and reset that back to 15 minutes on each user action.
TagsNo tags attached.

Relationships

related to 0008942 assignedsebasjm log out the user when doing a request to account-info-endpoint returns 400 

Activities

sebasjm

2024-06-13 18:28

developer   ~0022597

after meeting we decided to split this into two issues:

 * handling http resp 400 with logout in some cases, it will be tracked with issue 0008916
 * enforcing short session like a commercial bank, will be tracked with this issue, implemented server side.

Issue History

Date Modified Username Field Change
2024-06-09 16:53 MarcS New Issue
2024-06-09 16:53 MarcS Status new => assigned
2024-06-09 16:53 MarcS Assigned To => sebasjm
2024-06-09 16:56 MarcS Description Updated
2024-06-12 18:37 sebasjm Priority normal => low
2024-06-12 18:37 sebasjm Severity major => minor
2024-06-12 18:37 sebasjm Target Version 0.12 => 0.13
2024-06-13 18:16 sebasjm Assigned To sebasjm => Antoine A
2024-06-13 18:16 sebasjm Category Web site(s) => libeufin-bank
2024-06-13 18:18 sebasjm Relationship added related to 0008942
2024-06-13 18:28 sebasjm Note Added: 0022597