GithubHelp home page GithubHelp logo

Comments (8)

jeykon avatar jeykon commented on July 20, 2024

For what? Activation, password change, come back?

from huge.

panique avatar panique commented on July 20, 2024

Ah sorry, this is really a strange ticket. There should be a "remember me" checkbox on the login form that allows auto-login/permanently being logged in. Some links:

http://stackoverflow.com/questions/1354999/keep-me-logged-in-the-best-approach

http://stackoverflow.com/questions/1074831/remember-me-on-this-computer-how-should-it-work

http://stackoverflow.com/questions/2594960/best-practice-to-implement-secure-remember-me

from huge.

panique avatar panique commented on July 20, 2024

Notice: The user should be able to be logged in even when using the site/application on different computers (home + work or mobile+tablet+desktop etc.)

from huge.

blak3r avatar blak3r commented on July 20, 2024

Just curious if this was in progress already. Sorry if i missed anything in commit log / issues. I searched first.

from huge.

panique avatar panique commented on July 20, 2024

@blak3r Hey, i've not touched this yet, but my plans are to do this within the next few days.

from huge.

blak3r avatar blak3r commented on July 20, 2024

@panique cool thanks for the update.

from huge.

panique avatar panique commented on July 20, 2024

NOTE: best tutorial so far, by ircmaxwell, who has written the PHP 5.5 password hashing functions:
β€œKeep Me Logged In” - the best approach

from huge.

panique avatar panique commented on July 20, 2024

This feature has just been pushed into the develop branch ;)

Currently it's in 4-full-mvc-framework only. In general, all features should be available for 2- and 4- versions, but I simply don't have the time to do so. As PHP's session garbage collector is a tricky thing, I also have written a short guideline on that in the readme file. Gentlemen, have fun testing this ;)

Btw for testing I can recommend using these session settings in the php.ini: This means a session will live for 10 seconds, and every request to the app will trigger the garbage collector with a probability of 1/1 (which is "100%").

session.gc_maxlifetime = 10 // 10 seconds
session.gc_probability = 1
session.gc_divisor = 1

Update: While testing it's good to use 2 browsers at the same time, so 1 browser can reproduce a users behaviour while the other can trigger the gargabe collector.

Deep information on that topic in this really cool thread: How do I expire a PHP session after 30 minutes?.

from huge.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    πŸ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. πŸ“ŠπŸ“ˆπŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❀️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.