docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update security FAQ (#19528) 

* update faq

* add example

* update wording

* match wording in dd docs

* remove extra word
This commit is contained in:
Stephanie Aurelio 2024-02-29 11:57:58 -08:00 committed by GitHub
parent b5f6b6dd3b
commit 052b64161f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
content/faq/security/general.md
View File

@ -26,9 +26,11 @@ You can configure this through SSO using your IdP. Check with your IdP if they s
### How are sessions managed and do they expire?
If configured, the IdP manages sessions.
Docker Desktop uses tokens to manage sessions after a user signs in. Docker Desktop signs you out after 90 days, or 30 days of inactivity.
Docker Desktop sessions expire after 30 days, or after 7 days of inactivity. For Docker Hub, the IdP manages sessions, if configured. If you use application-level sign-in, users are signed out due to inactivity after 14 days and must sign in again after 30 days.
In Docker Hub, you need to re-authenticate after 24 hours. If users are authenticating using SSO, the default session timeout for the IdP is respected.
Custom settings per organization for sessions aren't supported.
### How does Docker attribute downloads to us and what data is used to classify or verify the user is part of our organization?