Hi
Need. help with plugin. Is there a way to renew session, or resend 2fa request with ttl without reconnect.
We have custom 2fa realization within plugin. And i’m trying to make renew 2fa session (some kind of session cache) each min. If session expired or user blocked in external system then disconnect user.
app.session_timeout not working
Server settings User Session Timeout makes reconnect (disconnect)
The two-step authentication cache documentation has more information. But the default is currently 7 days once the Pritunl Authentication Cache is enabled in the top right settings. For plugins the user_connect handler will include the kwarg has_token with a boolean value to indicate if the user connected with a valid cache token.
two-step authentication cache as i understand is for integrated 2fa. Integrated is not an option for us. So we wrote own 2fa service.
Main problem: user_connect is called only when a user attempts to connect. But we want to check if user a valid each 5 mins from 2fa. If not disconnect him. Also at this time we renew 2fa session ttl if user is still connected.
It can be achieved with User Session Timeout, but this cause full reconnection procedure.
It would be ideal if we could periodically check authentication without reconnection.