问题
When using the timeoutable module for Devise, how can one determine how long it will be before the current user's session expires? The goal is to include this value in all responses so client side script can make use of it. I gather that Devise internally uses Warden for authentication, but I haven't found anything that explains how to pull the session expiration time out of the depths of Warden.
回答1:
Here is how you do it:
class User < ActiveRecord::Base
devise :authenticatable, :timeoutable, :validatable, :timeout_in => 20.minutes
end
回答2:
Looks like you can put it in the model as Benjamin Tan says, or you can put in config/initializers/devise.rb
# ==> Configuration for :timeoutable
# The time you want to timeout the user session without activity. After this
# time the user will be asked for credentials again. Default is 30 minutes.
# config.timeout_in = 30.minutes
See this StackOverflow question: Setting session length with Devise.
回答3:
For Rails 4:
config/initializers/devise.rb
if Rails.env.production?
config.timeout_in = 30.minutes
else
config.timeout_in = 7.days
end
user.rb
class User < ActiveRecord::Base
devise :timeoutable
end
来源:https://stackoverflow.com/questions/16681825/rails-devise-determining-when-user-session-will-expire