Summary: Login limit
           Product: MediaWiki
           Version: wikimedia-deployment
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: Normal
         Component: API

For the API Login, it would be nice if there was a modifiable session time

For example, a parameter lgsessionlimit=300

would mean that the sessionid would be valid for only 700 minutes (seconds
would be silly). 

This would be primarily a security enhancement and make session hijacking more
difficult if a bot op forgot (or couldn't) logout.

Configure bugmail:
------- You are receiving this mail because: -------
You are on the CC list for the bug.

Wikibugs-l mailing list

Reply via email to