How to set the Oak login token session expiration
This article addresses setting the login-token cookie expiration for ÃÛ¶¹ÊÓƵ Experience Manager 6.x. Edit the TokenConfigurationImpl in the OSGi console to set the desired timeout value, then update the corresponding configuration file in the JCR repository.
Description description
Environment
ÃÛ¶¹ÊÓƵ Experience Manager 6.x
Issue
How do I set the login-token cookie expiration for AEM?
This token affects the timeout for the session for default AEM authentication (token authentication) and SAML-based authentication.
Resolution resolution
Solution
For more documentation on the token configuration, see the  on Apache.org.
-
Go toÂ
http://aem-host:port/system/console/configMgr/org.apache.jackrabbit.oak.security.authentication.token.TokenConfigurationImpl and log in asadmin. -
Edit the value of the token configuration:
-
Token Expiration=Set this to desired timeout value in milliseconds (for example 3600000 would be 1 hour)
-
Token Length=8
-
Hash Iterations=1000
-
Hash Salt Size=8
Note: Ìý°Õ³ó±ðÌý default token expiration time  for AEM is 43200000 ms (12 hours).
-
-
Once you edit the TokenConfiguration  from the OSGI console, the fileÂ
/apps/system/config/org.apache.jackrabbit.oak.security.authentication.token.TokenConfigurationImpl.config is created in the JCR repository. -
Go toÂ
http://aem-host:port/crx/de/index.jsp. -
Browse to and open this fileÂ
/apps/system/config/org.apache.jackrabbit.oak.security.authentication.token.TokenConfigurationImpl.config. -
If the field passwordHashAlgorithm  exists in the file, then remove that line and save.
For example, your file might look like this:
code language-none passwordHashIterations=I"1000" tokenExpiration="3600000" tokenLength="8" passwordSaltSize=I"8"