|
How do I implement a "Remember Me" function in Grails so that the user can check it and he won't have to log in again for 2 weeks?
I'm using the jSecurity plugin and want to change the cookie's lifetime beyond the browser session.
Started by melling on
, 4 posts
by 4 people.
Answer Snippets (Read the full thread at stackoverflow):
Take a look at the AuthorizationController, you'll find that it supports... .
JSecurity already supports RememberMe functionality.
Cookies must be easy in grails.
I don't know grails, but the most common method is to write a cookie and read it back on page load .
|
|
Hi,
we have testserver for a ASP.NET MVC project. Everything works fine on dev machines, but we can't login if "Remember me" checked in on the login page (in this case the request is redirected to the login page, no exception occurs as far I know).
If...
Started by boj on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
(aside - always compare machine.configs too in cases like this!)
Pff...based on this article I found the answer quickly: the server... .
You don't happen to have multiple servers on your testbed do you? Sounds like a classic machinekey problem if so .
Hmmm...
|
|
I have a standard ASP.NET MVC (RC Refresh) web project, with the standard ASP.NET Membership provider and the Account controller that is included in the project template.
When I check "Remember me" in my Login form, I am still not being remembered by ...
Started by Tomas Lycken on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
If you are using RedirectFromLoginPage , set the createPersistentCookie.
The Remember Me box is checked.
|
Ask your Facebook Friends
|
Looking at Gmail's cookies it's easy to see what's stored in the "remember me" cookie. The username/one-time-access-token. It could be implemented differently in cases where the username is secret, as well. But whatever... the thing is not very high security...
Started by yar on
, 7 posts
by 7 people.
Answer Snippets (Read the full thread at stackoverflow):
The remember me cookie should identify the machine as well
What is the best way to implement ....
If one control back in certain scenarios.
I regularly use 2 or 3 machines simultaneously, and have "remember me" on all of them.
|
|
My client wants me to enable a "Remember Me" checkbox when the user logs in. I am encrypting and storing both the username and password in a cookie.
However, you cannot write to a textbox when it's in password mode.
I've seen this done numerous times,...
Started by ManiacPsycho on
, 8 posts
by 8 people.
Answer Snippets (Read the full thread at stackoverflow):
You can set the expiration....
How about instead of inserting the text into the login form, you just bypass the form completely and check the contents of the cookie right at the login page? Less work for the user, and it'll make it a little more seamless .
|
|
I want to add a "Remember Me" check box to the login form of my WPF App. What's the best way to do this?
Currently the app logs in via a websevice call that returns an authenticated token that it uses for subsequent calls. Should I simply two-way encrypt...
Started by Mark Boltuc on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
Edit: Oren's suggestion of using DPAPI to protect information is well and good, but it doesn't store anything:
An important point to remember is that ... .
You could also store it in Isolated Storage or create a User setting in your application's Settings .
|
|
If a user logs into the site, and says 'remember me', we get the unique identifier for the user, encrypt this with RijndaelManaged with a keysize of 256 and place this in a httponly cookie with a set expiration of say.. 120 days, the expiration is refreshed...
Started by meandmycode on
, 4 posts
by 4 people.
Answer Snippets (Read the full thread at stackoverflow):
In this article, I propose an improvement that retains.
The familiar "Remember Me" option for web sites.
|
|
When a user logs in to my site, the date of the visit is stamped in the database (User table). This is handled by the (custom) membership provider. However, if the user checks the "Remember me?" option when logging in, they are (naturally) not prompted...
Started by Milky Joe on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
When a user logs-in, set two cookies, one permanent (if Remember Me is checked) and one temporary.
I'm assuming that you are using cookies (I can't see how the "Remember me" would work otherwise).
|
|
I'm trying to add "remember me" functionality to a website using a cookie with the user's username and a token, which is also stored encrypted in a database. My question is how long should this token be? One website I read said 128bit, which in my thinking...
Started by Darryl Hein on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
I think it depends more on how the value is randomised... .
Many databases support them as a native type; they're easy to manipulate in most popular languages/frameworks; translate perfectly from one platform to another; and every one is unique .
Just use a GUID.
|
|
My Rails-app has a sign in box with a "remember me" checkbox. Users who check that box should remain logged in even after closing their browser. I'm keeping track of whether users are logged in by storing their id in the user's session.
But sessions are...
Started by Michiel de Mare on
, 9 posts
by 9 people.
Answer Snippets (Read the full thread at stackoverflow):
When the user checks the "Remember Me" box, I just set the session.
In summary the 'expires on' part of the session.
Specifically with rails this article goes to some length to explain 'remember me' best practices.
|
