mirror of
https://github.com/discourse/discourse.git
synced 2024-12-13 03:23:47 +08:00
a1d2c46d28
By default, secure sessions expire after 1 hour. For OAuth authentication it should expire at the same time when the authentication cookie expires - `SiteSetting.maximum_session_age.hours`. It is possible that the forum will not have persistent sessions, based on `persistent_sessions` site setting. In that case, with next username and password authentication we need to reset information about OAuth. Bug introduced in this PR - https://github.com/discourse/discourse/pull/27547 |
||
---|---|---|
.. | ||
associate_accounts_controller.rb | ||
omniauth_callbacks_controller.rb |