hook-javascript icon indicating copy to clipboard operation
hook-javascript copied to clipboard
verified publisher icon doubleleft

Auth: "keep me connected" when register/login

Open endel opened this issue 11 years ago • 1 comments

Maybe we should allow to configure the duration of auth token when registering / logging in.

endel avatar Mar 24 '14 21:03 endel

Why not in security.yaml? We could set expiration by token type:

  • mobile - never
  • web - 2 weeks
  • etc

And it wouldn't be exposed/exploitable from front-end!

lucasdupin avatar Feb 23 '15 13:02 lucasdupin