On Feb 7, 2008 11:09 AM, titetluc titetluc wrote:
> I am using the Apache::Session module to manage ... sessions.
> Apache::Session does not manage session expiration


Sure, it's a building block. You build the expiration part on top of
it. Either you use a timestamp column in your database or you update
a timestamp in the session data. Then you check that to see if too
much time has passed.

You can certainly build it on something else, like CHI (the new cache
module interface). Or look at Apache::SessionManager or mod_auth_tkt
for built-in support.

- Perrin