Newer Version Available

This content describes an older version of this product. View Latest

ProfileSessionSetting

Represents a profile’s session settings. Use ProfileSessionSetting to retrieve the session settings for a given profile. This type extends the Metadata metadata type and inherits its fullName field.

File Suffix and Directory Location

ProfileSessionSetting components have the suffix .profileSessionSetting and are stored in the profileSessionSettings folder.

Version

ProfileSessionSetting components are available in API version 40.0 and later.

Fields

Field Name Field Type Description
profile string Required. Name of the user profile.
requiredSessionLevel SessionSecurityLevel Session security level.
sessionPersistence boolean Beta. If true, keep users logged in to their Experience Cloud site until the session times out—even if they close their browser. Use sessionPersistence to reduce how often users must log in to their site. Applies only to the External Identity profile.
sessionTimeout int Required. Specifies how many minutes of inactivity elapse before a user’s authenticated session times out. At the end of the session, the user must log in again. This session timeout value applies to users of the profile and overrides the org-wide timeout value. Changes to the org-wide timeout value don’t apply to users of this profile. Valid values:
  • 0—2 Hours
  • 15—15 Minutes
  • 30—30 Minutes
  • 60—1 Hour
  • 90—90 Minutes
  • 120—2 Hours
  • 240—4 Hours
  • 480—8 Hours
  • 720—12 Hours
  • 1440—24 Hours

SessionSecurityLevel

Session security levels control access to certain types of resources based on the type of authentication used for logging in to the current session. For example, username and password authentication requires the standard session security level. Multi-factor authentication (MFA) requires HIGH_ASSURANCE.

Field Name Field Type Description
SessionSecurityLevel (enumeration of type string) User’s security level for the current session.
  • The HIGH_ASSURANCE security level for this session meets the High Assurance requirements set in the org’s session settings under Session Security Levels.
  • The STANDARD security level for this session meets the Standard requirements set in the org’s session settings under Session Security Levels.
  • The LOW level isn’t available or used in the Salesforce UI. It’s used at the API level, but users assigned to this level experience unpredictable and reduced functionality.

Wildcard Support in the Manifest File

This metadata type supports the wildcard character * (asterisk) in the package.xml manifest file. For information about using the manifest file, see Deploying and Retrieving Metadata with the Zip File.