# session expired

1\. check ``SESSION\_SECURE\_COOKIE`` setting in ``.env`` or ``config/session``

if its true, then ssl is needed. if open webapp using ip without https. make it false

2\. force https in ``AppServiceProvider``

if its true, then ssl is needed.

3\. low ``output\_buffering`` in php.ini

\* open php.ini that been used in webserver  
\* increase output\_buffering eg. ``output\_buffering = 20000``

note: output\_buffering \[ob\_\](https://www.php.net/manual/en/function.ob-start.php) is used by php to cache the html that been render before submit to user. to increase client site performance.