• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Solved [Solved] Session Timeout?

Savagedlight

Well-Known Member

Thanks: 94
Messages: 368

#1
I've noticed that I have to log into these forums every day, despite selecting "keep me logged in" when logging in. My IP hasn't changed, and I didn't clear my browser data.

Speculation: Are the sessions set to expire that quickly? Or maybe they're stored in a temporary store (memcache) which gets wiped every once in a while?
 

DutchDaemon

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 2,584
Messages: 11,212

#2
Re: Session Timeout?

Must be a local (to you) problem. I've been logged in since this forum re-started with phpBB. The cookie has served me since. I never need to enter my credentials. This is in Chrome on FreeBSD.
 

Savagedlight

Well-Known Member

Thanks: 94
Messages: 368

#3
Re: Session Timeout?

I'll try to figure out what causes it. First suspicion: I log in with https and browse with https, but when I first visit the forums in the morning I usually land on the non-https version. Although this makes no difference right now (I am logged in no matter which one I visit), I'll keep an eye out for it tomorrow.
 

phoenix

Administrator
Staff member
Administrator
Moderator

Thanks: 1,124
Messages: 3,944

#5
Re: Session Timeout?

I use HTTPS exclusively for the forums, and haven't had to re-login in ages.

If I land on an HTTP page (usually through a link from another site or the mailing list), then I have to login (and I uncheck the option to stay logged in). Or change the URL to HTTPS and reload. :)

I use that behaviour as a kind of canary for "are you actually using an encrypted session.
 

Savagedlight

Well-Known Member

Thanks: 94
Messages: 368

#6
Re: Session Timeout?

I've made sure to enter the forums via https://forums.freebsd.org/ the past two days, and I didn't have to log in again. Will try non-https tomorrow to see if I can make it conclusive that mixing https and non-https is what's causing it.

I'm still logged in when going to non-https after visiting the https-enabled forums, as long as I have a logged in session on the https-enabled visit.
 

Savagedlight

Well-Known Member

Thanks: 94
Messages: 368

#7
Re: Session Timeout?

And I just accidentially went to http://. It logged me out. Had to log in again, even when going to https:// afterwards.

Case closed, I guess. It's a http(s) mixing issue.
 

DutchDaemon

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 2,584
Messages: 11,212

#8
Re: Session Timeout?

In that case, make all your bookmarks HTTPS once and for all ;)
 
Top