Drupal is a registered trademark of Dries Buytaert
Protected Pages 3.0.0 Major update available for module protected_pages (3.0.0). Commerce Core 3.3.8 Minor update available for module commerce (3.3.8). Search API HTML Element Filter 1.0.7 Minor update available for module search_api_html_element_filter (1.0.7). Layout Builder Reorder 2.0.1 Minor update available for module layout_builder_reorder (2.0.1). Ban 1.1.0 Minor update available for module ban (1.1.0). Field Formatter Range 2.0.0 Major update available for module field_formatter_range (2.0.0). Field Formatter Range 8.x-1.8 Minor update available for module field_formatter_range (8.x-1.8). Varbase Media Header 9.2.1 Minor update available for module varbase_media_header (9.2.1). Search API Solr 4.3.11 Module search_api_solr updated after 14 months of inactivity (4.3.11). Provus Mega Menu Module provus_mega_menu crossed 1,000 active installs.

This module helps prevent security risks and inconvenience by requiring users to re-authenticate after a period of inactivity. It blocks browser interactions and presents a modal with options to re-enter their password or log in as a different user. Administrators can configure the idle time and available re-authentication methods.

Authenticated users may leave their browser unattended. This may impose a security issue for the application and/or the managed data, or it may be an inconvenience, if the same browser is supposed to be used by multiple users.

To prevent those issues from happening, but also not disturbing the current user, this module blocks any interaction in the browser for the current session and shows a modal dialog box where the user returning to the screen has various options:

Administrators can configure the idle time before a session gets blocked and requires re-authentication. They can also configure, which of the re-authentication methods will be allowed.

This module does not only block the current browser tab, it also blocks the session. Otherwise, the user could simply open another browser tab and continue working. The module does not invalidate the current session because then the user couldn't easily continue working after re-authentication, i.e. an open form which was half filled before e.g. the phone rang or the user got distracted otherwise.

Activity

Total releases
5
First release
Feb 2025
Latest release
10 months ago
Releases (12 mo)
1 ▼ from 4
Maintenance
Slowing

Release Timeline

Releases

Version Type Release date
1.0.0-rc1 Pre-release Sep 8, 2025
1.0.0-beta3 Pre-release Feb 8, 2025
1.0.0-beta2 Pre-release Feb 7, 2025
1.0.0-beta1 Pre-release Feb 6, 2025
1.0.x-dev Dev Feb 4, 2025