Open rfgamaral opened 5 years ago
Hey, we don't set a specific expiration time for sessions - it's all set by Google. As a rule of thumb, the API auth tokens shouldn't really expire, and the signed in sessions should expire monthly-ish.
Let's see where the issue is though, we can see if there's anything we can do...
That's what I thought but I only have this problem within Wavebox (not on my main browser), that's why I opened up this issue.
The way I have this configured is one Google account with Gmail, Calendar, Contacts, Keep, etc... and 2 other Gmail services sandboxed on the same account.
It should be keeping you signed in longer than that then. Maybe try clearing cookies and browsing data might help, give this a try with one account...
Clear all browsing data
Do you use 2-factor auth on any of the accounts? If you do, just make sure you're checking "Don't ask again on this computer" when signing in
Hi, Iβm going to close this due to inactivity. If youβre still seeing the issue, feel free to re-comment and Iβll take another look. Thanks
Hi, I have seen this behavior as well. The "Must reauthenticate" page followed by a page for each additional login step is far more onerous than the "enter your password" screen that pops up once per month when used in the browser. No, the steps above do not fix the problem.
Wavebox completely forgets the authentication. It happens for me any time I log into google in the browser on any other machine, or when I have not logged in for more than 24 hours.
This is honestly super annoying, I have been dealing with it for over a year as a paid customer, but it would be great not to have to do it again. thanks.
Ok, since someone else is posting the same issue I'm going to share something I've been taking note for a while... I have 3 Google accounts on my Wavebox on my home PC and I've been logging when each one of their sessions expire:
For privacy reasons and bots, I've omitted the real e-mail address, only the domain part is real.
Based on the logging, one can find at least on pattern... Domain based accounts (@ricardoamaral.net
, G Suite) expire much more often than non-domain based accounts (@gmail.com
, Google). The @gmail.com
account hasn't expired since the last time on August 16, maybe it will expire tomorrow (30 days, every month).
@cellog Are you by any change also using a G Suite account with Wavebox?
yes, 3 of 4 accounts are G Suite accounts
yes, 3 of 4 accounts are G Suite accounts
Interesting. However, I don't observe the same expiration behavior on the browser with the same G Suite accounts.
From what we've been seeing here the expiration is pretty consistent every 14 days on Gsuite accounts and pretty much never on personal Gmail accounts. We tried this across a set of browsers too (Chrome, Firefox, Safari, Brave, etc...) and saw the same timeout on these.
On Gsuite the expiration time can be modified from the Admin console if you're the domain administrator (https://support.google.com/a/answer/7576830?hl=en). We've also pushed an over-the-wire fix that means that when you do get signed out, the app should remember the account you're signed in with so at least you can get signed in quicker.
There's also improved password manager support and native U2F key support coming down the line in the next major release, so it should make signing back in a bunch easier when it does happen.
@rfgamaral in our testing we've seen exactly the same behaviour in the browser. Which browser were you using & do you have any extensions installed? I'll have a try here to see if I can get it to stay signed in
On Gsuite the expiration time can be modified from the Admin console if you're the domain administrator (https://support.google.com/a/answer/7576830?hl=en). We've also pushed an over-the-wire fix that means that when you do get signed out, the app should remember the account you're signed in with so at least you can get signed in quicker.
This is what I have on mine... I don't have Web Session like it mentions in the Google documentation.
There's also improved password manager support and native U2F key support coming down the line in the next major release, so it should make signing back in a bunch easier when it does happen.
Is integration with all sorts of password managers coming? I use personally use Enpass.
@rfgamaral in our testing we've seen exactly the same behaviour in the browser. Which browser were you using & do you have any extensions installed? I'll have a try here to see if I can get it to stay signed in
I use Firefox and maybe I am logged out every 14 days but I probably don't notice as much because I have my Google passwords in Firefox Lockwise I quickly log back in (and usually I'm never asked for 2FA, only the password).
I don't have Web Session like it mentions in the Google documentation
The Google Cloud session control only applies to the Admin console. Google used to offer a free version of Gsuite, I don't think they allow you to customise the session length on these. We've got a couple of domains using this and the option just isn't there :(
Is integration with all sorts of password managers coming? I use personally use Enpass.
Yes. Haven't personally checked Enpass, but I'll add it to the list to give a try
I use Firefox and maybe I am logged out every 14 days but I probably don't notice as much because I have my Google passwords in Firefox Lockwise I quickly log back in (and usually I'm never asked for 2FA, only the password).
Something similar is in the next major release, so it should be more of a case of clicking next :)
Is your feature request related to a problem? Please describe. My Google accounts sessions expire too quick, every week or so I'm forced to enter my Google account password. On my main browser, which I use every day, Google accounts sessions don't expire as quickly.
Is your feature request related to an account type? Google (Gmail, Calendar, etc...)
Describe the solution you'd like If possible, allow to pick an expiration timeout for Google accounts sessions.
Additional info I'm not sure if this is some sort of limitation, a bug, or by design, but I've opened this as a feature request. Hope that's ok.