Skip to content

Add organization-level session timeout overrides#48376

Open
JerryK73 wants to merge 1 commit intokeycloak:mainfrom
JerryK73:feature/org-session-timeout
Open

Add organization-level session timeout overrides#48376
JerryK73 wants to merge 1 commit intokeycloak:mainfrom
JerryK73:feature/org-session-timeout

Conversation

@JerryK73
Copy link
Copy Markdown

Allows administrators to configure session idle timeout and max lifespan at the organization level, overriding realm defaults for members of that organization. Includes JPA schema changes, cache layer updates, Admin REST API exposure, frontend UI tab, and unit tests.

List of some changes we made:
-First we edited the OrganizationModel interface to add timeout attributes + getter/setter methods
-Added columns into OrganizationEntity for JPA
-Updated Liquibase changelog
-Implemented getter/setters into both instances of OrganizationAdapter
-Also added the getter/setters into KeycloakModelUtilsTest
-Created helper and override methods in SessionExpirationUtils to check for organization timeout (defaults to realm default if no org timeout has been set)
-Made our api calls more accurate by updating representationToModel and modelToRepresentation util files
-Implemented frontend interface (shown in gif)

keycloakOrgTimeoutDemo

Note: Used Claude to help with development

Closes #46549

@JerryK73 JerryK73 requested review from a team as code owners April 22, 2026 17:13
@JerryK73 JerryK73 marked this pull request as draft April 22, 2026 17:22
Allows administrators to configure session idle timeout and max lifespan
at the organization level, overriding realm defaults for members of that
organization. Includes JPA schema changes, cache layer updates, Admin
REST API exposure, frontend UI tab, and unit tests.

Closes keycloak#46549

Signed-off-by: JerryK73 <[email protected]>
Signed-off-by: Sebastian Capellan <[email protected]>
@JerryK73 JerryK73 force-pushed the feature/org-session-timeout branch from e459221 to 6c255e3 Compare April 23, 2026 00:51
@JerryK73 JerryK73 marked this pull request as ready for review April 23, 2026 00:52
@ahus1 ahus1 added the status/hold PR should not be merged. On hold for later. label Apr 23, 2026
@ahus1
Copy link
Copy Markdown
Member

ahus1 commented Apr 23, 2026

Adding a "hold" label until the value of this change has been evaluated. Sorry, just too many things in the queue at the moment.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

status/hold PR should not be merged. On hold for later. team/ui

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Session timeout per organization

2 participants