It seems like the lifetime of the user session (keeping track of which user is logged in) is a lot longer than the lifetime of the other session variables (the session variables I access directly). Is this correct, and if so, is there any way to change the timeout so that they expire at the same time?

I first assumed that all session variables would time out at the same time, meaning that I could set some session-stored data upon login and then safely access them as long as the user remained logged in, but this doesn't seem to be the case.

Hi Mads,

As far as I know this is the same session. It can of course be the case that you have persistent logon set to true on the login of a user (See: https://www.outsystems.com/help/ServiceStudio/9.1/index.htm#t=Handling_security%2FPersistent_Login.htm). This will cause the user to automatically be logged in again after a session timeout, but the session values will be reset to default.