starred/pgbackweb
1
0
Fork 0
mirror of https://github.com/eduardolat/pgbackweb.git synced 2026-04-25 05:35:57 +03:00
Code Issues 93 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #162] Session expiration is too short – is there an ENV variable to extend it (e.g. 90 days)? #132

New issue
Open
opened 2026-02-26 21:34:33 +03:00 by kerem · 0 comments
kerem commented 2026-02-26 21:34:33 +03:00
Owner
Copy link

Originally created by @hermesalvesbr on GitHub (Dec 16, 2025).
Original GitHub issue: https://github.com/eduardolat/pgbackweb/issues/162

Hello,

First of all, thank you for building and maintaining pgbackweb — it’s a very useful and well-designed project, and it has been extremely helpful for managing PostgreSQL backups via a clean web interface. Great work 👍

I’m currently using pgbackweb through the official Docker image (eduardolat/pgbackweb) and noticed that the authentication/session expires quite quickly, requiring frequent re-authentication during normal usage.

I’d like to clarify a few technical points:

  1. How is authentication/session management implemented internally?

    • Cookies
    • JWT (access/access+refresh tokens)
    • Server-side sessions

  2. Is there any existing (or planned) environment variable to control the session or token expiration time?

    • For example: SESSION_TTL, SESSION_MAX_AGE, JWT_EXPIRES_IN, or similar.

  3. If this is not currently configurable via ENV:

    • Which file or function defines the session/token expiration?
    • What would be the recommended way to extend it to something like 90 days?

This would greatly improve usability for long-running admin dashboards where frequent logins can be disruptive.

Thanks again for the project and for your time.

Best regards,

Originally created by @hermesalvesbr on GitHub (Dec 16, 2025). Original GitHub issue: https://github.com/eduardolat/pgbackweb/issues/162 Hello, First of all, **thank you for building and maintaining pgbackweb** — it’s a very useful and well-designed project, and it has been extremely helpful for managing PostgreSQL backups via a clean web interface. Great work 👍 I’m currently using **pgbackweb through the official Docker image** (`eduardolat/pgbackweb`) and noticed that the **authentication/session expires quite quickly**, requiring frequent re-authentication during normal usage. I’d like to clarify a few technical points: 1. **How is authentication/session management implemented internally?** * Cookies * JWT (access/access+refresh tokens) * Server-side sessions 2. **Is there any existing (or planned) environment variable** to control the session or token expiration time? * For example: `SESSION_TTL`, `SESSION_MAX_AGE`, `JWT_EXPIRES_IN`, or similar. 3. If this is not currently configurable via ENV: * Which file or function defines the session/token expiration? * What would be the recommended way to extend it to something like **90 days**? This would greatly improve usability for long-running admin dashboards where frequent logins can be disruptive. Thanks again for the project and for your time. Best regards,
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
develop
coderabbitai/docstrings/8054b12
v0.5.1
v0.5.1-rc.1
v0.5.0-rc.4
v0.5.0
v0.5.0-rc.3
v0.5.0-rc.2
v0.5.0-rc.1
0.4.2
0.4.1
0.4.0
0.3.0
0.2.0
0.1.2
0.1.1
0.1.0
Labels
Clear labels   
bug

   
confirmed next step

   
duplicate

   
enhancement

   
help wanted

   
in progress

   
in progress

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
wontfix
No labels
bug
confirmed next step
duplicate
enhancement
help wanted
in progress
in progress
pull-request
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/pgbackweb#132
No description provided.