From 232a5a8ad0b1914babca2ad71f7ea0607c1e9691 Mon Sep 17 00:00:00 2001
From: Jens Langhammer <jens.langhammer@beryju.org>
Date: Fri, 9 Apr 2021 11:50:09 +0200
Subject: [PATCH] root: set default session age to expire on browser close

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
---
 authentik/root/settings.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/authentik/root/settings.py b/authentik/root/settings.py
index 7962fc997..510d9e04a 100644
--- a/authentik/root/settings.py
+++ b/authentik/root/settings.py
@@ -184,6 +184,7 @@ DJANGO_REDIS_LOG_IGNORED_EXCEPTIONS = True
 SESSION_ENGINE = "django.contrib.sessions.backends.cache"
 SESSION_CACHE_ALIAS = "default"
 SESSION_COOKIE_SAMESITE = "lax"
+SESSION_EXPIRE_AT_BROWSER_CLOSE = True
 
 MESSAGE_STORAGE = "authentik.root.messages.storage.ChannelsStorage"