fix of #115, server relater config value added

diff --git a/inc/3rdparty/Session.class.php b/inc/3rdparty/Session.class.php
index 4ee5d1da80759fbbe62664e06e83d5731e2c7f77..da7a435372d7ad268158963812ba0955c6273734 100644 (file)
--- a/inc/3rdparty/Session.class.php
+++ b/inc/3rdparty/Session.class.php
@@ -73,6 +73,9 @@ class Session
         else {
             session_set_cookie_params('', $cookiedir, $_SERVER['HTTP_HOST'], $ssl, true);
         }
+        //set server side valid session timeout
+        //WARNING! this may not work in shared session environment. See http://www.php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime about min value: it can be set in any application
+        ini_set('session.gc_maxlifetime', self::$longSessionTimeout);
 
         // Use cookies to store session.
         ini_set('session.use_cookies', 1);