Skip to content

Update from code changes: document dashboard session security#6394

Open
mintlify[bot] wants to merge 6 commits into
mainfrom
mintlify/9b8e5050
Open

Update from code changes: document dashboard session security#6394
mintlify[bot] wants to merge 6 commits into
mainfrom
mintlify/9b8e5050

Conversation

@mintlify

@mintlify mintlify Bot commented Jul 6, 2026

Copy link
Copy Markdown
Contributor

Summary

Documents the new dashboard session security controls that let Enterprise admins configure session lifetimes, an idle session timeout, and an IP allowlist that restricts dashboard access to trusted networks — all from the Policies tab under Identity & access.

Changes

  • Added dashboard/session-security.mdx covering the two independent session lifetime controls (idle session timeout and maximum session lifetime), how they interact, allowed range (5 minutes to 14 days), per-setting enable toggles, and the related audit log actions.
  • Added a "Restrict dashboard access by IP" section covering the IP allowlist, IPv4/IPv6/CIDR entry format, Active/Disabled status, lockout warning, and current-IP guidance.
  • Pointed session lifetime and IP allowlist configuration at the Policies tab of the Identity & access page (/settings/organization/access?tab=policies).
  • Linked the new page from the "Dashboard access" group in the main and translated navigations.
  • Added Spanish, French, and Chinese translations of the page.

Context

Backs the org-level sessionDurationMinutes and maxSessionLifetimeMinutes settings shipped in mintlify/server#6392, the IP allowlist UI shipped in mintlify/mint#8881, and the session lifetimes UI shipped in mintlify/mint#8963.

Update history

  • Initial: documented dashboard session duration and maximum session lifetime settings (mintlify/server#6392).
  • Follow-up: wrapped translated headings in anchor divs so cross-language section links resolve.
  • Follow-up: extended the page with the "Restrict dashboard access by IP" section and mirrored the update to es, fr, and zh (mintlify/mint#8881).
  • Follow-up: relocated session lifetime and IP allowlist configuration to the new Policies tab under Identity & access, renamed "idle session duration" to "idle session timeout" to match the UI, added guidance on per-setting enable toggles and units, and mirrored the changes to es, fr, and zh (mintlify/mint#8963).

Note

Low Risk
Documentation and navigation-only changes; no application or security logic is modified.

Overview
Adds a new Session security doc page for Enterprise dashboard admins, wired into the Dashboard access nav in English and es, fr, and zh.

The page documents idle session timeout and maximum session lifetime (5 minutes–14 days, independent limits, Policies tab on Identity & access), how those limits interact, and the related org.session_security_* audit log actions. It also covers the IP allowlist (IPv4/IPv6/CIDR, Active/Disabled, lockout warning, current-IP check). Localized copies mirror the English content and wrap section headings in stable div id anchors for cross-language deep links.

Reviewed by Cursor Bugbot for commit 2b0269a. Bugbot is set up for automated code reviews on this repo. Configure here.

@mintlify

mintlify Bot commented Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Preview deployment for your docs. Learn more about Mintlify Previews.

Project Status Preview Updated (UTC)
mintlify 🟢 Ready View Preview Jul 6, 2026, 7:11 PM

@mintlify

mintlify Bot commented Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Preview deployment for your docs. Learn more about Mintlify Previews.

Project Status Preview Updated (UTC)
tomee 🟢 Ready View Preview Jul 6, 2026, 7:06 PM

💡 Tip: Enable Workflows to automatically generate PRs for you.

@mintlify

mintlify Bot commented Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Update from code changes updated this PR.

Added IP allowlist section to session security docs in four languages

Source PRs

@mintlify

mintlify Bot commented Jul 8, 2026

Copy link
Copy Markdown
Contributor Author

Update from code changes updated this PR.

Made no changes; docs already passed all best-practice checks

Source PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant