0👍
You can do this by using the set_expiry
method on request.session
. The method takes either an integer for number of seconds to expire the session, a datetime
or timedelta
for when the session should expire, the integer 0 to indicate the session should expire at browser close time or None
to indicate that the session should fall-back to the default timeout policy.
You should be able to write a piece of middleware that evaluates the criteria you have for session expiration then call set_expiry
on the session before processing the request.
Source:stackexchange.com