From fb589a7f4e151fe537c53beb2a5c0cea0da5cf6f Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Thu, 2 Feb 2017 16:29:37 -0500
Subject: [PATCH] Fix session timeout issues on browser close.

---
 CHANGELOG.md       | 1 +
 config/session.php | 4 ++--
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3c582aa84..8922f5620 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 ### Fixed
 * Bug causing error logs to be spammed if someone timed out on an ajax based page.
 * Fixes edge case where specific server names could cause daemon errors due to an invalid SFTP username being created by the panel.
+* Fixes sessions being removed on browser close, and set sessions to idle for up to 3 hours before being marked as expired.
 
 ### Changed
 * Admin API and base routes for user management now define the fields that should be passed to repositories rather than passing all fields.
diff --git a/config/session.php b/config/session.php
index 59ad9182f..f1b004214 100644
--- a/config/session.php
+++ b/config/session.php
@@ -29,9 +29,9 @@ return [
     |
     */
 
-    'lifetime' => 30,
+    'lifetime' => 120,
 
-    'expire_on_close' => true,
+    'expire_on_close' => false,
 
     /*
     |--------------------------------------------------------------------------