session expiration time now changed to 10 minutes to counter XSRF requests

This commit is contained in:
Prashant Singh 2019-03-30 18:14:54 +05:30
parent 5346312ad0
commit 8af43eb5cc
3 changed files with 3 additions and 4 deletions

View File

@ -16,7 +16,7 @@ DB_PASSWORD=secret
BROADCAST_DRIVER=log
CACHE_DRIVER=file
SESSION_DRIVER=file
SESSION_LIFETIME=120
SESSION_LIFETIME=10
QUEUE_DRIVER=sync
REDIS_HOST=127.0.0.1

View File

@ -29,9 +29,9 @@ return [
|
*/
'lifetime' => env('SESSION_LIFETIME', 120),
'lifetime' => env('SESSION_LIFETIME', 10),
'expire_on_close' => false,
'expire_on_close' => true,
/*
|--------------------------------------------------------------------------

View File

@ -75,7 +75,6 @@ class AdminServiceProvider extends ServiceProvider
if (substr_count($permission['key'], '.') == 2 && substr_count($item['key'], '.') == 1) {
foreach($allowedPermissions as $key => $value) {
if ($item['key'] == $value) {
// dd($item['key'], $value); --> setting.users, settings.users
$neededItem = $allowedPermissions[$key + 1];
foreach(config('menu.admin') as $key1 => $findMatced) {