Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...DNN.com "Remember Me" Login Option - Ridiculous!DNN.com "Remember Me" Login Option - Ridiculous!
Previous
 
Next
New Post
1/9/2008 1:21 AM
 

Joined: 1/1/0001
Posts: 0

Hello, I know this has been brought up before, but could we please have the "Remember Me" box work when logging into the website? The fact that it lasts for a day and a half (don't have exact figures) is completely puzzling. Usually these remember you until the cookies are cleared for for a "set" time period eg Yahoo remembers  you for a 2 week period if you wish.

Please could we get a regular time period for the "Remember Me" function! Thanks.
 
New Post
1/9/2008 11:02 AM
 
Terp

Joined: 4/2/2007
Posts: 484

I whined about this too, sir, but I doubt it gets changed in the not-too-distant future; would at least like to hear some reasoning: security? Are we to believe that someone is going to login, lose their laptop the following day, and *gasp* someone picks it up and makes a post to the forums, not having to login because of a longer cookie?

One of those *other* CMS competitors that I am evaluating let's me stay logged in for...get this...FOREVER.

I don't understand either, sir.  Perhaps Leo can shine some light on the logic with this decision.

http://www.bidlesstravel.com
http://www.egocodes.com
My P90X Results
 
New Post
1/9/2008 12:05 PM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212

the persistance time for the login cookie has been limited to ~ 1 day for security reasons. This shall protect cookies from being stolen. Sorry for bad explanation, Cathal would be the guy with best insight.

Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
1/9/2008 12:20 PM
 
Terp

Joined: 4/2/2007
Posts: 484

Sebastian Leupold wrote

the persistence time for the login cookie has been limited to ~ 1 day for security reasons. This shall protect cookies from being stolen. Sorry for bad explanation, Cathal would be the guy with best insight.

That's what I assumed, but are we to believe that every other major site on the net is assuming increased risks by allowing cookies to last longer than 24 hours? What if my cookies were stolen? What would be the result? Someone posts to these forums and get the moderated message, though not moderated, or get timeout errors when they try to do a compounded search? As the original poster mentioned, even Yahoo remembers your login credentials for weeks, not hours. I just don't get the security angle for a forum-centric site.

 

 

http://www.bidlesstravel.com
http://www.egocodes.com
My P90X Results
 
New Post
1/9/2008 12:48 PM
 
Erik van Ballegoij


Erik van Ballegoij's Avatar

erikvanballegoij.com
Joined: 4/7/2004
Posts: 4445

Although this might seem like a forum centric site, in fact it is far more than that. Although i have no insight in the actual number of roles on this site, it must be a huge amount by now: a few for different team roles: corporation, trustee, core team, project team lead, project team members (one per project), core team alumni, different levels of sponsors, etc etc. These  represent a lot of people. A small group compared to the 500000+ members, but still. So my best guess.. the many must suffer for the few... ... just like it seems to be in real life most of the time...

When it comes to sites like yahoo, google etc.. It would seem that those sites have a very homogenous group of users that do not require a lot of security apparently. Even google asks for credentials pretty often, depending on the things you are doing... 

So.. can we substract a feature request from this? IMO Yes... it would be very cool if we could set cookie length per role, instead of one length per application... If we could that, we could set cookie length for "registered users" to forever, and for site admins to "12 hours"..... Who will take up the glove to look into implementing this?

Erik van Ballegoij, Former DNN Corp. Employee and DNN Expert

DNN Blog | Twitter: @erikvb | LinkedIn: Erik van Ballegoij on LinkedIn
 
 Page 1 of 5
123...5Next 
Previous
 
Next
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...DNN.com "Remember Me" Login Option - Ridiculous!DNN.com "Remember Me" Login Option - Ridiculous!


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out