Cakephp 3 Auth in session is not deleted after leaving browser

release

#1

Hello,

I am using cakephp 3 in a new project with CakeDC users plugin. Making tests, I have noticed that when I leave the browser , the Session is not deleted and if I return to the website many hours later, my session is still there.

I have change my app.php file to delete the session every minute :

‘Session’ => [
‘defaults’ => ‘php’,
‘timeout’ => ‘1’
],

This doesn´t have changed anything.

When I click the button “logout” is not any problem, because the code delete the storage of the session, but there is not any way to delete this storage every “x” minute.

Can anyone help me?

Thanks!

Maite