Laravel session

@shan2590 not sure if I fully understand your question, but if you're using database driver for storing your session, you should find last_activity field in sessions table.

https://laravel.com/docs/5.7/session#driver-prerequisites

middleware only runs when the user sends a request. At that time, their session is set back to 30 minutes because they interacted with the back-end.

So, nothing will happen when their session has 15 minutes left.

@shan2590 Sugestions from a noob:

Cron a check logged user and last interaction.

Js countdown with ajax to interact with the backend.

@sti3bas can't use DB. If the user logged and the user didn't do any click or enter (application in the idle period 30 min) after 30 min application logout (if user try to access application). is that enough ? do I need to check user session if expired then redirect login page?

@snapey , I saw your answers regarding SESSION_LIFETIME , set SESSION_LIFETIME = 30. is that enough ? Do I want to check it again if session expire or not and redirect like thing inside middleware?

@pauljp i did not found any noob people ! , you are right, But the thing is i can't use cron or ajax.

do I need to check user session if expired then redirect login page?

This is done automatically by auth middleware.

https://laravel.com/docs/7.x/authentication#protecting-routes

Remember that session IS NOT CHECKED after the lifetime ends. It is checked when the user returns to the site and tries to continue. The framework does not find a valid session for the user so starts a new one.

What is the problem you are trying to solve?

@snapey I'm trying to change user logging session time to 30min. Within this 30min if the user didn't do anything to in the application the session will automatically destroy and the user will logout.

Then all you need to do is change the value in config/session.php

@snapey Thanks !