tirkarthi commented on issue #48787: URL: https://github.com/apache/airflow/issues/48787#issuecomment-2779290864
My understanding is that on fab login the session cookie is set to 31 days by default with jwt token expiring on 10 seconds. So after the jwt token expires the page redirects to login page and the login page which is from fab uses the session cookie sets the user as logged in and goes on to create the jwt token. My understanding is that jwt_expiration_time and PERMANENT_SESSION_LIFETIME should have the same value or less than jwt_expiration_time else the jwt token expires and redirects to login which takes the session cookie as current user and logs into the site. So PERMANENT_SESSION_LIFETIME is the setting for actual expiration. PERMANENT_SESSION_LIFETIME used to be configurable in Airflow 2 through webserver.session_lifetime_minutes in airflow.cfg but is no longer possible now. This is only for fab manager and I am seeing the automatic jwt renewal on fab based login. https://flask.palletsprojects.com/en/latest/config/#PERMANENT_SESSION_LIFETIME -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
