From 5d91487eae5ac19ca5ad46abbe2d349af2bd569d Mon Sep 17 00:00:00 2001
From: HelloDarkness <111370255+hellodarkness@users.noreply.github.com>
Date: Sat, 6 Jan 2024 15:20:05 +0000
Subject: [PATCH] Update config.sample.php

Comments to clarify the purpose of session_keepalive.
Fixes issue in Nextcloud Documentation (https://github.com/nextcloud/documentation/issues/7244)

Signed-off-by: HelloDarkness <111370255+hellodarkness@users.noreply.github.com>
---
 config/config.sample.php | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/config/config.sample.php b/config/config.sample.php
index ae37c3aec92..22e3bb1f44e 100644
--- a/config/config.sample.php
+++ b/config/config.sample.php
@@ -339,8 +339,10 @@ $CONFIG = [
 
 /**
  * Enable or disable the automatic logout after session_lifetime, even if session
- * keepalive is enabled. This will make sure that an inactive browser will be logged out
- * even if requests to the server might extend the session lifetime.
+ * keepalive is enabled. This will make sure that an inactive browser will log itself out
+ * even if requests to the server might extend the session lifetime. Note: the logout is   
+ * handled on the client side. This is not a way to limit the duration of potentially
+ * compromized sessions.
  *
  * Defaults to ``false``
  */