Page History
...
- the browser's local storage will not be emptied after a period of time when Remember Me is set and a user does not log in again.
Session Idle Timeout
The JOC Cockpit uses the idle timeout period set in the shiro.ini configuration file for user sessions:
...
- the authorization token will remain valid for the specified period since the user's last user activity,
- the user session in the JOC Cockpit will be closed, however, the JS7 REST Web Service API will accept the authorization token for the specified period.
...
The JOC Cockpit ships with a default setting in the shiro.ini configuration file for the account "root" with the password "root" and with permissions to carry out all operations with the JOC Cockpit.
Please adjust Adjust the account and password to be used. For a secure configuration it is recommended that LDAP access to a directory service Directory Service is implemented configured for users with roles configured managed in the shiro.ini
file and that the "root" account is dropped. This guarantees that general policies such as password rotation or password complexity requirements are considered when using the JOC Cockpit.
...
The behavior of the JOC Cockpit when Remember Me is set or is not set depends on the situation. This behavior is specified in the following table:
Situation | Remember Me | Remember Me |
---|---|---|
User logs out, browser reverts to Log In page | Log In information displayed, credentials are available | Log In form is empty, input of credentials required |
Session expires, browser reverts to Log In page | Log In information displayed | Log In form is empty, input of credentials required |
Browser is closed during session and then reopened; Log In page is opened by user | Log In information displayed | Log In form is empty, input of credentials required |
...
- The Log In form will not be emptied after a period of time when Remember Me is set and a user does not log in again,
- The behavior specified in the table above is independent of whether or not the fact that the browser is set configured to save store login information.
Use of the Remember Me can be disabled by applying the following setting to the JETTY_BASE/resources/joc/joc.properties
file:
...