Extending the Next.js appSession Cookie

gabriela.pantea · November 22, 2024, 9:19pm

Overview

This article explains why the appSession cookie has a 24-hour or 1-day expiry when session timeouts are configured to 30 days in the Auth0 Dashboard.

Applies To

Next.js SDK
Session Timeout

Solution

The session timeout settings in the dashboard control the server-side session only, and there is no correlation with the application-level session (appSession cookie). To control the application level session, the application level configuration variables can be used: ConfigParameters | @auth0/nextjs-auth0

For example: to extend the appSession cookie, configure the below within the application level config:

UTH0_SESSION_ROLLING='false'

AUTH0_SESSION_ABSOLUTE_DURATION='2592000' //30 days in seconds

Topic		Replies	Views
Expiration for session not working as expected, Nextjs Help sessions , authentication-sessions	0	1177	September 27, 2023
NextJs Cookie lifetime - Security concerns? Help auth0 , nodejs , security , cookie , nextjs	3	3228	December 22, 2022
I keep getting logged out even though I have set a long session in auth0 dashboard Help management-api , rules-configs	2	412	July 25, 2024
Custom SessionStore using with nextjs-auth0 session expiring rapidly Help sessions , authentication-sessions	0	310	May 13, 2024
Auth0 Session Timeout Not Working for Next.js SPA Knowledge Articles	1	936	January 17, 2024

Extending the Next.js appSession Cookie

Overview

Applies To

Solution

Related topics