Community Relations Archive
Thread: Shouldn't checking Save Your Password mean I don't have to sign in every time?
Page 1 of 1
EvengelyneS
Tue Jun 14, 2005 8:38 am
#1
Shouldn't checking "Save Your Password" mean I don't have to sign in every time?
Am I doing something wrong, or is that not what it means at all?
Not a big deal, but it would be nice to not have to sign in all the time.
Blimigerite
Tue Jun 14, 2005 8:54 am
#2
EvengelyneS wrote:
Shouldn't checking "Save Your Password" mean I don't have to sign in every time?
Am I doing something wrong, or is that not what it means at all?
Not a big deal, but it would be nice to not have to sign in all the time.
Currently that option does not work the greatest...
GarVa
Tue Jun 14, 2005 9:05 am
#3
Actually, no it does not mean that you should not have to log in each time.
What it means is that when you click login it will have your username
and password there already and you just have to click again instead of
typing (it currently works this way for some of us using firefox) we
have brought this up as an Issue and it is being worked on with our
other problems that we have given them as well
What it means is that when you click login it will have your username
and password there already and you just have to click again instead of
typing (it currently works this way for some of us using firefox) we
have brought this up as an Issue and it is being worked on with our
other problems that we have given them as well
 | GarVa Community Relations SOE Forum Usage Guidelines Galactic Home Show |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Ekymer
Joined: 22 Sep 2022 Posts: 211 |
so basically reading between the lines you say that we get logged out every 20-30 minutes is working as intended then? |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
GarVa
Joined: 22 Sep 2022 Posts: 1184 |
If you are not active on the forums for 45 minutes, yes you will get logged out, if you are active on the forums, no you will not. Save password is not the same as "auto login" which we did use at one point. I stay logged in from 7am-12pm when I go to lunch without having to relog in, but only because I'm active.
Powered by phpBB © 2001, 2005 phpBB Group |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| [ Time: 0.1017s ][ Queries: 17 (0.0041s) ][ GZIP on - Debug on ] |
Ekymer
Wed Jun 15, 2005 9:38 am
#4
DocSavag wrote:
GarVa wrote:
Actually, no it does not mean that you should not have to log in each time.
What it means is that when you click login it will have your username and password there already and you just have to click again instead of typing (it currently works this way for some of us using firefox) we have brought this up as an Issue and it is being worked on with our other problems that we have given them as well
Would be nice if it had EVER worked that way in IE
The only issue I have with the time out (which is a lot shorter than 45 mintues for me for some reason) is that I get a page cannot be displayed error and have to resubmit to get back to a screen where I can log in.
got that too, really annoying.
GarVa
Fri Jun 17, 2005 8:23 am
#5
"auto login" which we did use at one point.
The reason that it will not come back is because it NEVER loggs people
out so the server overhead became huge and performance took a major
dip. Log into the forums, leave the page open, go afk for 3
days.... server keeps your session active.
Hope that helps.
The reason that it will not come back is because it NEVER loggs people
out so the server overhead became huge and performance took a major
dip. Log into the forums, leave the page open, go afk for 3
days.... server keeps your session active.
Hope that helps.
| GarVa Community Relations SOE Forum Usage Guidelines Galactic Home Show |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
DaBarge
Joined: 22 Sep 2022 Posts: 37 |
If all you are going to do is troll then do not post. Message Edited by GarVa on 06-17-2005 10:33 AM |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Kaylais
Joined: 22 Sep 2022 Posts: 311 |
Fair enough, but please make it log you out after a few hours instead of 30-45 mins. A lot of the forum users are in work/school, and can only read/post every hour or two. |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Ekymer
Joined: 22 Sep 2022 Posts: 211 |
well, my skills > SOE/Lithium, so i stay logged in 24/7 again
|
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Buxley
Joined: 22 Sep 2022 Posts: 329 |
That's odd. So Amazon and eBay, which can greet me by name and don't require a login weeks and months after the last time I logged in, are keeping a session open for all those weeks? I don't think so. Sounds to me like the folks at Lithium are handing you a line... There's these wonderful things called "cookies". You might want to tell Lithium about them. Hope that helps. -Buxley |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Dewdus
Joined: 22 Sep 2022 Posts: 116 |
Exactly. This is like Web Design 101. "Remember Me" functionality is a cookie just like Buxley said. You set it, and you set when it expires (1 day, 30 days, 5 years, whatever you want). The user comes back to the site, it checks their cookie and logs them in. Ta Da. Now, while actually logged onto the site, the server may open a session in memory for you. But there's this little freaking concept called Session Inactivity Timeout. You dont do something for x amount of time the server cancels your session and removes it from memory. The same way it does if you close your browser and walk away. So your response does not hold water. Because when I close my browser it doesn't go tell you I left. The session inactivity timer eventually kicks in and removes my session from memory. Just like it would if I "Log into the forums, leave the page open, go afk for 3 days". These have been the industry standard way to do things for 10 years. 12 yr olds get this stuff. So either Lithium or SOE is full of it. Take your pick. |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
nikko11
Joined: 22 Sep 2022 Posts: 322 |
I've never used Lithium. But that really sound unlikely. Lithium doesn't contain any kind of inactivity timer? Although I guess some of the functions it offers like auto reload every few minutes and such would kind of disable such an inactivity timer, and yes, could be reloading a lot. Thanks for at least telling us the reason why. It does make it easier to deal with the problem. But it would be nice if some kind of cookie could be used to help the login process "be automatic". |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Demio_Olaron
Joined: 22 Sep 2022 Posts: 256 |
Freaking progamming n00bs I don't know how it's done in ASP but it must be similar to PHP (the lang im used to) when it comes to sessions and cookies. What I do as an auto-login (when I program), I save a cookie on the user's computer with a 2-week time-out for security reasons. That cookie has the user's password (encrypted with MD5) and the user's database ID. Then I do a check every time the user visits a page. If the session is active, then nothing changes. If the session is inactive and the cookie is in the user's computer, it does a login check (compares the values in the cookie to the ones in the server), and if they match then a new session is generated and the user logged in again. If theres no session and no cookie, then the muser must manually log in. Of course, I use an alternative method to encrypt the passwords with MD5, which adds two strings of text and number plus symbols in the beggining and end of each password when its encrypted so it's not so easy to bruteforce the code. (if the password is for example "hamster", then then it's encrypted as if it was "489dsjndhamster@3rtml"). The only security "breach" would be if someone hacked into the user's computer and stole the cookie. But then - if a user let's that happen then the hackers probably know his credit card number too and where he lives. |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Traie
Joined: 22 Sep 2022 Posts: 841 |
I dunno, I got my password and login setup at swgcraft.com and I'm always logged in over there. But yeah, like some already said, I'm usually at work when trolling these forums. So I can't sit here and browse all night. I may read a thread or two, then have to go away for an hour or two. Then I have to re-log to figure out what I've read and haven't read. |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
Kaylais
Joined: 22 Sep 2022 Posts: 311 |
They know about cookies....well they know enough to set the expiry date 35 years in the past. Opera currently tells me that expiry date for forums.station.sony.com is Jan 1st, 1970 !!!! |
|||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||
|
GarVa
Joined: 22 Sep 2022 Posts: 1184 |
Just passing a long what I'm told guys we did bring it up as issue.
Powered by phpBB © 2001, 2005 phpBB Group |
|||||||||||||||||||||||||||||||||||||||||||||||
| [ Time: 0.1071s ][ Queries: 17 (0.0044s) ][ GZIP on - Debug on ] |
RM-3PO
Thu Jun 23, 2005 11:41 am
#6
This is to thwart AFK Forum Time Grinding. To all those that want the fancy colors and Title you will just have to earn them
SeanBlader
Fri Jun 24, 2005 8:00 am
#7
GarVa wrote:
What it means is that when you click login it will have your username and password there already and you just have to click again instead of typing (it currently works this way for some of us using firefox) we have brought this up as an Issue and it is being worked on with our other problems that we have given them as well
What's especially ironic about this is that the functionality of saving the password in Firefox is a client side browser convenience created by the open source team behind Firefox, and it has nothing to do with what Lithium has done. Firefox saves my password for every site, not just this one. What proves this to me is that every time I login to the forum is that my password is there, but the save my password box is UNCHECKED. If I check it and login, the next time I login the box is UNCHECKED and my password is still there. If I leave it unchecked, and login, the next time I login the box is still UNCHECKED and my password is still there.
Your quote above explains to me why IE isn't inserting my client side saved password for me when I tab into the field, Lithium has some javascript code that's blocking IE from doing what it wants to do. Firefox just ignores the bad code.
SeanBlader
Fri Jun 24, 2005 8:33 am
#8
GarVa wrote:
If you are not active on the forums for 45 minutes, yes you will get logged out, if you are active on the forums, no you will not.
This is a target audience question. Does your target audience consistantly load a page in under 45 minutes. I only hit refresh on whatever page I was viewing when I get a second to be bored in game, waiting for someone or when I've finished up what I wanted to accomplish. Tends to be probably every 90 minutes. There will be times when my screensaver has been on for like an hour and I've been so engrossed in game that I didn't even notice the screen on my other system has been blank for all that time.
It's supposed to work like this:
Session saves for 45 minutes for active people who are spending time just reading the forums.
Cookie saves for 2 or 3 days and logs you in automatically anytime your session isn't active.
User login when they haven't been on the forums for a long time.
Garva, this way you're covered for the users that are active all the time, covered for the occassional browsers who are in game or who's job might get in the way of maintaining their session, and this also covers the weekend gamer who may want to keep a watch on things during the week at work and play on the weekend. You could even reduce the session timeout to like 30 minutes, as long as the page will allow you to login by your cookie when typing in a message that takes longer than the session to compose because you were interupted, and it still posts your message.
None of this is rocket science, any one of the real programmers there could've come up with a better system than Lithium in a few weeks of work
Message Edited by SeanBlader on 06-24-2005 08:35 AM
Page 1 of 1