How to limit admin django session and renew time after user action

I am improving my django admin session security and I wanted to do 2 things:

  1. Limit my admin session time
  2. Renew my session time after every user action

What is the best way to do?

Found it. In Django you have 2 guys responsibles

  1. To limit admin session:

    SESSION_COOKIE_AGE = 30 # in seconds

  2. To renew session time

    SESSION_SAVE_EVERY_REQUEST = True

Вернуться на верх