From c126e9f93eac1407eb73c0ffcccb856ce8a45e56 Mon Sep 17 00:00:00 2001
From: Jamie Cameron <jcameron@webmin.com>
Date: Mon, 19 May 2025 22:17:59 -0700
Subject: [PATCH] Allow sessions to have a max lifetime

---
 acl/acl-lib.pl | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/acl/acl-lib.pl b/acl/acl-lib.pl
index cff57ce0b..8fc1265a1 100755
--- a/acl/acl-lib.pl
+++ b/acl/acl-lib.pl
@@ -1411,20 +1411,20 @@ foreach my $s (keys %sessiondb) {
 dbmclose(%sessiondb);
 }
 
-=head2 create_session_user(\%miniserv, user)
+=head2 create_session_user(\%miniserv, user, [lifetime])
 
 Creates a new session ID that's already logged in as the given user
 
 =cut
 sub create_session_user
 {
-my ($miniserv, $username) = @_;
+my ($miniserv, $username, $lifetime) = @_;
 return undef if (&is_readonly_mode());
 &open_session_db($miniserv);
 my $sid = &generate_random_session_id();
 return undef if (!$sid);
 my $t = time();
-$sessiondb{$sid} = "$username $t 127.0.0.1";
+$sessiondb{$sid} = "$username $t 127.0.0.1".($lifetime ? " ".$lifetime : "");
 dbmclose(%sessiondb);
 return $sid;
 }