Page tree
Skip to end of metadata
Go to start of metadata

Default Behavior

By default, when a user logs into FileCloud, his session remains authenticated for a specified amount of time.

DeviceTime Session is Valid
Web Browser

Specified by the value in Session Timeout in minutes setting. If the browser is closed, the session expires.

All other apps and clientsDoesn't expire. Session lasts till user logs out from app.


Enabling Session Expiration for all Devices

Prior to FileCloud version 19.3, session timeout was measured in days.

If you want all login sessions for all user devices (including web browsers) to expire and require re-login, set the policy to enforce session timeout for all devices.  

Note: We don't recommend requiring session expiration for devices and other clients as it might impact functionality and reduce user friendliness.

DeviceTime Session is Valid
Web Browser

Specified by the value in Session Timeout in minutes setting. If the browser is closed, the session expires.

All other apps and clientsSpecified by the value in Session Timeout in minutes setting.
Note: When app is logging in using username and password, it will automatically re-login
When app is logging in using Device Authorization code, it will require user to re-login into FileCloud using the web browser to extend the expiry 

Disabling Session Expiry when Browser is closed

Starting with 15.0, session expiry time is valid till timeout setting expires or if browser is closed. If the user re-opens the browser, they will need to re-login. If session should still be valid even when browser is closed, please set a config parameter to extend the browser timeout setting. For correct behaviour, please set this value to be significantly larger than the session timeout value. ie if the session timeout is 30 days, then set this configuration to be 90 days.


define("TONIDOCLOUD_BROWSER_COOKIE_TIMEOUT", 86400); // time in seconds that browser remains logged in irrespective of whether browser is closed

  • No labels