Question: Why relogin after browser close?

Question

Question: Why relogin after browser close?

rioradio opened this issue 2 months ago · comments

rioradio commented 2 months ago

Question

Why do I need to login again after closing the browser?

Semaphore UI v2.9.112 (Docker)

Related to

No response

rioradio · Answer 1 · Wed Jun 19 2024 03:09:37 GMT+0800 (China Standard Time)

As I understand it, when logging in, the server sets cookies without specifying the expiration date (Expires).

The browser set cookie as session cookie.

And session cookies are deleted when the browser is closed.
Therefore, you just need to add expiration dates to the cookies.

Denis Gukov · Answer 2 · Wed Jun 19 2024 21:24:42 GMT+0800 (China Standard Time)

Hi @rioradio
yes, you are right. What the right session life expectancy? @tboerger what do you think?

rioradio · Answer 3 · Wed Jun 19 2024 22:32:30 GMT+0800 (China Standard Time)

Hi @fiftin
I think the best thing is to allow this value to be configured through the config. For myself, I would use a cookie expiration time of 1 year

Thomas Boerger · Answer 4 · Thu Jun 20 2024 13:55:53 GMT+0800 (China Standard Time)

I don't have strong feelings about that. For me it's fine to kill the session if the browser is closed.

Adding an option for that which will give an empty value like now and can be set to anything sounds reasonable.