<div dir="ltr"><div><br></div><div>"Nginx can't do much about it If the application behind deletes all the cookies."</div><div><br></div><div><p>Yes, I am fully aware that this issue needs to be resolved at the application level, and we should apply the merge request as soon as possible. My final question about Nginx is more focused on the issue of session expiration when accessing the application through Nginx. This problem doesn't occur when accessing the application directly. Even when using GitLab in isolation (without opening other sites on the same domain), the session still expires after a very short time when accessed via Nginx.</p><p> I’ve tried several timeout configurations in Nginx, but none of them have resolved the issue. Currently, the configuration looks like this, but it still hasn’t worked: </p><br> proxy_connect_timeout 600;<br> proxy_send_timeout 600;<br> proxy_read_timeout 600;<br> send_timeout 600;<br> client_header_timeout 600;<br> client_body_timeout 600;<br><p> I’m still conducting additional tests to determine if the cookie issue is also contributing to the problem of sessions expiring so frequently. </p></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, Jan 25, 2025 at 9:45 AM Reinis Rozitis via nginx <<a href="mailto:nginx@nginx.org" target="_blank">nginx@nginx.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">> Now, I’m wondering if the frequent logouts (session expiration) might be related to this cookie issue, and if there are any suggestions for addressing it via Nginx.<br>
<br>
Nginx can't do much about it If the application behind deletes all the cookies.<br>
So check what version of Gitlab you are running as the fix has been merged ~only 5 month ago <a href="https://gitlab.com/gitlab-org/gitlab/-/merge_requests/156213" rel="noreferrer" target="_blank">https://gitlab.com/gitlab-org/gitlab/-/merge_requests/156213</a><br>
<br>
rr<br>
_______________________________________________<br>
nginx mailing list<br>
<a href="mailto:nginx@nginx.org" target="_blank">nginx@nginx.org</a><br>
<a href="https://mailman.nginx.org/mailman/listinfo/nginx" rel="noreferrer" target="_blank">https://mailman.nginx.org/mailman/listinfo/nginx</a><br>
</blockquote></div>
<br>
<font face="Arial, Helvetica, sans-serif" size="1" color="#808080"><i>Esta mensagem pode conter informações confidenciais ou privilegiadas, sendo seu sigilo protegido por lei. Se você não for o destinatário ou a pessoa autorizada a receber esta mensagem, não pode usar, copiar ou divulgar as informações nela contidas ou tomar qualquer ação baseada nessas informações. Se você recebeu esta mensagem por engano, por favor avise imediatamente ao remetente, respondendo o e-mail e em seguida apague-o. Agradecemos sua cooperação.</i></font>