Azure Container Apps
An Azure service that provides a general-purpose, serverless container platform.
325 questions
User forced to reauthenticate after browser close - AppServiceAuthSession cookie has Expire/Max-Age as Session
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 25%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Milorad Savcic
71
Reputation points
I am using Azure container apps and its authentication feature. My use case is to provide users with an authenticated session which lasts as long as possible.
On a previous thread we have pinpointed the issue to the EasyAuthConfig/login/cookieExpiration/timeToExpiration after which I have set it to 30 days and this seems to work fine, but only in the case when the user does not close the browser or if there are browser specific settings which retain tab data.
The issue seems quite obvious now, it is that the AppServiceAuthSession cookie, which is issued after authenticating, has an Expire/Max-Age property set to Session, which explains why the user needs to reauthenticate (the cookie is gone after browser close).
Is there a way to change the Expire/Max-Age property to something else? If not, is there any other way to not force the user to reauthenticate after a browser close, in my use case it is important that users do not reenter credentials so often?