I have a bit of a conundrum with using the "Remember Me" checkbox allowing users whos password has expired to keep accessing the website because they don't logout. In looking through the web config at ALL of the different cookies, timeouts, and other property values for these settings, I'm thinking of buying a barrel of Jack Daniels and just ignore this problem.
If anybody can shed some light on what properties need to be changed I would greatly appreciate it.
Thank You
Hi,
for remembering passwords, the setting is "PersistentCookieTimeout". It is a value in minutes, a value of 10080 would mean a week for instance (= 60 mins x 24 x 7).
Find more information here: https://www.dnnsoftware.c...sistentcookietimeout and here: https://www.dnnsoftware.c...-persistent-cookies.
Happy DNNing! Michael
Michael TobischDNN★MVP
Thanks Michael !
Part of my conundrum was at some point in time the value of the "PersistentCookieTimeout" was set very, very high. I am in the process of changing out login procedure and have reduced the timeout to two weeks. Needless to say there are many users that are still able to access the website after their password has expired because their cookie is set so with a long expiration date. I needed a way to determine which users have the cookie value that's longer than the "new" two week value and expire their cookie so that forces them to login at which time they are told that their password has expired. Whew.........I do need that barrel of Jack Daniels.
Anyway thank for the help, I was able to locate the cookie, determine it's expiration date, and if the expiration is longer than two weeks I expire the cookie and force them to login.
These Forums are dedicated to the discussion of DNN Platform.
For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:
Awesome! Simply post in the forums using the link below and we'll get you started.