Notes on the time-out problem.

Output from JBoss server:

Login In at 11:59
2014-11-19 11:59:19,967 INFO  [STDOUT] IDCheckServlet:Redirecting to: https://SERVER_REDACTED.vha.domain.ext:9443/EWV2/
2014-11-19 11:59:20,233 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] In getRoles with: YOUR_SERVER1
2014-11-19 11:59:20,234 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got props: {EdiWebViewerApplication=24, allowDebug=true, ewvUser=33, showSampleError=false}
2014-11-19 11:59:20,234 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvAppId: 24
2014-11-19 11:59:20,234 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvUserId: 33

Still active at 12:14
2014-11-19 12:14:57,663 INFO  [STDOUT] IDCheckServlet:Redirecting to: https://SERVER_REDACTED.vha.domain.ext:9443/EWV2/Ewv2Home.seam
2014-11-19 12:14:57,863 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] In getRoles with: YOUR_SERVER1
2014-11-19 12:14:57,863 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got props: {EdiWebViewerApplication=24, allowDebug=true, ewvUser=33, showSampleError=false}
2014-11-19 12:14:57,863 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvAppId: 24
2014-11-19 12:14:57,863 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvUserId: 33 

Ten minutes later reawaken the app by running a query from main page:
2014-11-19 12:24:18,259 WARN  [org.jboss.seam.web.ExceptionFilter] exception root cause
javax.faces.FacesException: #{Ewv2AllClaimInfoAction.getAllClaimInfo()}: org.jboss.seam.security.NotLoggedInException

Error page displayed:
https://SERVER_REDACTED.vha.domain.ext:9443/EWV2/noAccess.seam?cid=31


Try one more time and hit it at 15-17 minutes:
12:29
2014-11-19 12:29:25,506 INFO  [STDOUT] IDCheckServlet:Redirecting to: https://SERVER_REDACTED.vha.domain.ext:9443/EWV2/
2014-11-19 12:29:25,826 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] In getRoles with: YOUR_SERVER1
2014-11-19 12:29:25,826 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got props: {EdiWebViewerApplication=24, allowDebug=true, ewvUser=33, showSampleError=false}
2014-11-19 12:29:25,826 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvAppId: 24
2014-11-19 12:29:25,826 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvUserId: 33

12:44 - still logged in..........
2014-11-19 12:44:48,520 INFO  [STDOUT] IDCheckServlet:Redirecting to: https://SERVER_REDACTED.vha.domain.ext:9443/EWV2/Ewv2Home.seam
2014-11-19 12:44:48,757 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] In getRoles with: YOUR_SERVER1
2014-11-19 12:44:48,757 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got props: {EdiWebViewerApplication=24, allowDebug=true, ewvUser=33, showSampleError=false}
2014-11-19 12:44:48,758 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvAppId: 24
2014-11-19 12:44:48,758 INFO  [gov.va.med.hac.edi.ewv2.security.EdiWebViewerAuthorizer] Got ewvUserId: 33


12:46 - session over........error page is displayed
2014-11-19 12:46:42,013 WARN  [org.jboss.seam.web.ExceptionFilter] exception root cause
javax.faces.FacesException: #{Ewv2AllClaimInfoAction.getAllClaimInfo()}: org.jboss.seam.security.NotLoggedInException

Appears to be working as expected based on setting in web.xml file

<<<<<<<<<<<< SPECS. >>>>>>>>>>>>>>>>
Page 58 of VA_6500.pdf
5. Timed Read: The maximum time allowed shall be set to 900 seconds for users to prevent unauthorized access to unattended workstations with the exception of some clinical staff. Providers may receive timed read up to 1200 seconds for ease of use in clinical settings based on Clinical Application Coordinator (CAC) recommendations. Requests for increased timed read should be handled on a case-by-case basis, require justification, approved by the OI&T Chief/CIO and should be submitted to the designated ISO for concurrence.

Current settings in applications' web.xml file:
 <session-config>
      <!-- in minutes - 900 seconds -->
      <session-timeout>15</session-timeout>
 </session-config>
  
  
Pages view...........
All OK in view source...............
WebContent\error.xhtml(49): Developed by Methodical, Inc.			- OK
WebContent\Ewv2Home.xhtml(28): Developed by Methodical, Inc. 			- OK
WebContent\Ewv2HomeDetailPF.xhtml(25): Developed by Methodical, Inc. 		- OK
WebContent\Ewv2HomeQuickviewPF.xhtml(25): Developed by Methodical, Inc. 	- OK 

