Hi All,
I have to deliver a secure web ASP.net site that after 20 minutes of inactivity wipes the users sessions and forces then to login again. I have set up all the necessary timeouts on the server and at the top of each of my master pages I have placed the following javascript:
setTimeout('top.location = "login.aspx"', 1200500)
The idea being that once the server has expired the session at 20mins of inactivity the browser will load in the login page. This works great until I use AJAX on my pages I suspect that as the page is only doing a partial reload, the timer keeps running as it were.
My questions are:
- Am I correct?
- Is there a way to reset the Client side timer through AJAX?
Any help much appreciated.