Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature] Space-aware session timeout #41080

Closed
rdrgporto opened this issue Jul 13, 2019 · 5 comments
Closed

[Feature] Space-aware session timeout #41080

rdrgporto opened this issue Jul 13, 2019 · 5 comments
Labels
enhancement New value added to drive a business result Feature:Security/Spaces Platform Security - Spaces feature Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!

Comments

@rdrgporto
Copy link

Describe the feature:

  • Configure a timeout session for any particular space (Management → Advanced Settings → Timeout Session)

Describe a specific use case for the feature:

  • Provide operations teams with a simple dashboard which shows a brief summary of alerts system, cluster health, applications uptime, and so on, with the objective of preventing an auto logout session.

Example:

Alerting
@azasypkin azasypkin added enhancement New value added to drive a business result Feature:Security/Spaces Platform Security - Spaces feature Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! labels Jul 15, 2019
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security

@azasypkin azasypkin changed the title [Feature] Spaces - Videowall [Feature] Space-aware session timeout Jul 15, 2019
@azasypkin
Copy link
Member

azasypkin commented Jul 15, 2019
edited
Loading

I've labeled issue accordingly, but it's hard to imagine how that would work in reality when user may use multiple spaces at the same time (tab 1 - Space A, tab 2 - Space B)? @rdrgporto can you give more details on the feature you're proposing?

Related: #17888

@rdrgporto
Copy link
Author

Hi, @azasypkin

Our use case would be to create a videowall role associated with a space called operations, with the role videowall assigned to a user.

Only the user with the admin role, could modify the configuration for this role, for example, timeout session.

I have just taken a look at the issue #17888 you mentioned and it is what the user @cjcenizal has suggested, with additional session timeout parameter.

@kobelb
Copy link
Contributor

kobelb commented Jul 15, 2019

There are quite a few issues we'd need to solve to move xpack.security.sessionTimeout to being an "Advanced Setting". Currently, the ability to change advanced settings is "all or nothing". A rather large number of users currently have the ability to create/edit the current advanced settings and this same set of users likely shouldn't be configuring the session timeouts. We'd need to introduce additional granularity to the advanced settings security model in a backward compatible manner.

I also agree with @azasypkin that it's difficult to comprehend how these sliding session expirations would work if they were per-space. Would you mind elaborating upon the desired user experience and also what benefit you get from having the session timeouts different per space?

@rdrgporto
Copy link
Author

Hi, @kobelb

Thank you for your explanation about how it would affect adding timeout’s option in Advanced Settings currently.

I'll be up to date Kibana news.

Cheer up! 💪

Regards

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New value added to drive a business result Feature:Security/Spaces Platform Security - Spaces feature Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@kobelb @azasypkin @rdrgporto @elasticmachine