userSessionTimeoutSeconds
Learn about the userSessionTimeoutSeconds parameter for the Customer Password Policy API.
The userSessionTimeoutSeconds parameter specifies the period of time, in seconds, that a user session can remain idle before it times out. When the configured idle period is reached, Reltio signs the user out of all active sessions simultaneously, including sessions across multiple tenants, browser tabs, browsers, and devices. The user must then authenticate again to continue using Reltio.
{
"userSessionTimeoutSeconds": 1800
//rest of the fields
}If userSessionTimeoutSeconds is absent from your password policy, or if the value is set to 0, no user-level session timeout is applied. Sessions remain active until the user explicitly logs out or the identity provider terminates the session. Choose a timeout value based on your organization's security policy and the sensitivity of the data in your environment.
userSessionTimeoutSeconds to enforce session idle timeouts and reduce the risk of unauthorized access through inactive sessions. This setting requires coordination between your identity provider (IdP) and the Reltio IdP. Before enabling it, Submit a support request in the Reltio Support Portal. Reltio Support must validate the setup and confirm compatibility with your environment before applying the parameter.Actions that resets the timeout
The timeout timer resets each time the user performs an action that triggers a Reltio API call. The following actions reset the timer:
- Searching
- Opening an entity
- Editing data
- Running an export
- Scrolling
- Hovering
- Typing without submitting and action