On 27 Jan 2014, at 1:04 PM, Thomas Eckert <[email protected]> wrote:
> > It just woke up - committed in r1560977 and proposed for backport to v2.4.x. > > Nice, thank you ! > > > > Isn't it curious how the expiry is inspected before the session is decoded? > > Why ? I was also confused by the comment. Currently the expiry of the session is a property of the session implementation, so we use the maxage of the cookie or a dedicated column in a sql table for the expiry. Currently, an expired message shouldn't get past the load step, the check is in case it does in some future module. Regards, Graham --
