From d494b41a9e98e7d044f7c076d9e17d068ae8a611 Mon Sep 17 00:00:00 2001
From: Thomas Waldmann <tw@waldmann-edv.de>
Date: Thu, 18 Oct 2018 23:32:54 +0200
Subject: [PATCH] shorter default session expiry, fixes #381

otherwise too many not-expired sessions accumulate in the session store.
---
 nsupdate/settings/base.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nsupdate/settings/base.py b/nsupdate/settings/base.py
index 44fe1ff..b4576b2 100644
--- a/nsupdate/settings/base.py
+++ b/nsupdate/settings/base.py
@@ -278,7 +278,7 @@ CSRF_COOKIE_HTTPONLY = False
 SESSION_COOKIE_NAME = 'sessionid'
 SESSION_COOKIE_PATH = '/'
 SESSION_COOKIE_HTTPONLY = True
-SESSION_COOKIE_AGE = 14 * 24 * 60 * 60  # 14 days, in seconds (remember_me is True)
+SESSION_COOKIE_AGE = 10 * 60 * 60  # 10 hours, in seconds (remember_me is True), see #381
 SESSION_EXPIRE_AT_BROWSER_CLOSE = True  # more safe (remember_me is False)
 
 # Allow SHA1 for host update secrets