Log SAML session_expires_at (SessionNotOnOrAfter) (!199173) · Merge requests · GitLab.org / GitLab

What does this MR do and why?

Log SAML session_expires_at (SessionNotOnOrAfter) to gain visibility when troubleshooting user SAML authentications.

Changelog: changed

References

SAML SSO support session timeout (!194914 - merged)
Introduced new FF for group_saml (!197293 - merged)

Screenshots or screen recordings

Before	After

How to set up and validate locally

Configure SAML
SAML Authenticate
Review entries in gitlab/gitlab-rails/auth_json.log for the presence of session_expires_at

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Edited Jul 24, 2025 by Jio Castillo

Log SAML session_expires_at (SessionNotOnOrAfter)

What does this MR do and why?

References

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports