Session configuration options
-----------------------------

1) Introduction

	The ability to configure the duration of sessions is a basic requirement
	of any secure system.  However OpenDb has been rather limited in its 
	functionality in this area.

	The ability to configure both a maximum idle time and maximum session 
	time has been requested to provide much more control over session 
	durations.

1.1) No longer supported
	
	As of 0.55, the $opendb['timeout'] variable is no longer supported.

2)	Functionality provided

	The include/config.php configuration file provides for the setting of 
	several configuration parameters:

		$CONFIG_VARS['site.login_timeout']
		$CONFIG_VARS['site.idle_timeout']

	The 'login_timeout' variable if configured (to a numeric value) 
	configures how many seconds the session can remain active total.  This
	value ignores any activity against the session, and will expire the 
	session once the session has been active for the duration specified.

	The 'idle_timeout' is a little more flexible.  This value will expire
	the session if it has been _inactive_ for the specified duration.  
	Everytime OpenDb is successfully accessed the counter for this variable
	is reset.

3)	Issues

	If you change the include/config.php session variables these changed
	conditions will immediately effect users logged in.  This differs from
	previous versions of OpenDb because once the user was logged in, the
	$HTTP_SESSION_VARS['time'] was already calculated.  Now it is calculated
	on the fly.

	The users Session variables (including a Reservation Basket) is lost,
	when a session expires.