Session timeout, has to be top priority!!!

Mark Edwards mark at
Fri Sep 8 02:30:05 CEST 2006

I don't see how this kind of attitude can possibly help Roundcube.

Squirrelmail has a timeout, as does Webmin, Cacti, and nearly every  
other web interface that has a login.

I am amazed that this is even an issue.

I agree that the timeout needs to not threaten the usability of the  
app, and that needs discussion, but saying "screw people if they  
don't log out" is ridiculous for an application that is supposed to  
offer a user-friendly interface for novices to use their email.

On Sep 7, 2006, at 5:24 PM, Sergio A. Kessler wrote:

> and how do you stop people from doing stupids things ?
> and where do you draw the line ?
> I mean, if I delete an important file or mail and clean the trash,
> how do you stop me ?
> shit happens, anyway...
> and doing something that affect to 99% of the people in a bad way,
> just because we want to "help" a stupid that forget to close the mail
> in a *public* computer, is nonsense IMO...
> btw, someone knows how does gmail or hotmail manage this ?
> On 9/7/06, Mark Edwards <mark at> wrote:
>> On Sep 7, 2006, at 4:26 PM, Martin Marques wrote:
>> > Closing the navegator SHOULD kill the session, AFAIK.
>> >
>> > So, the only reason I see is if you leave the web browser open.
>> Why is that not a good enough reason for a timeout safety feature?
>> Someone can have it open but hidden and not realize it.
>> Just because someone does something stupid or wrong doesn't mean
>> there shouldn't be a safety feature to help them.
>> --
>> Mark Edwards

Mark Edwards

More information about the Dev mailing list