From 4d130fed011ce4a53a41b074296f407a9d83433d Mon Sep 17 00:00:00 2001
From: Adam Shimali <adam.shimali@gmail.com>
Date: Fri, 22 Jan 2016 15:05:13 +0000
Subject: [PATCH] Sessions expire after one hour

---
 config.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/config.py b/config.py
index eb417cd7e..b810d9229 100644
--- a/config.py
+++ b/config.py
@@ -21,6 +21,7 @@ class Config(object):
     SESSION_COOKIE_PATH = '/admin'
     SESSION_COOKIE_HTTPONLY = True
     SESSION_COOKIE_SECURE = True
+    PERMANENT_SESSION_LIFETIME = 3600  # seconds
 
     API_HOST_NAME = os.getenv('API_HOST_NAME')
     NOTIFY_API_SECRET = os.getenv('NOTIFY_API_SECRET', "dev-secret")
@@ -44,6 +45,7 @@ class Development(Config):
     API_HOST_NAME = 'http://localhost:6011'
     ADMIN_CLIENT_USER_NAME = 'dev-notify-admin'
     ADMIN_CLIENT_SECRET = 'dev-notify-secret-key'
+    WTF_CSRF_ENABLED = False
 
 
 class Test(Development):