This is an archived forum and the content is probably no longer relevant, but is provided here for posterity.
The active forums are here.
March 01, 2012 11:36am
Subscribe [2]#1 / Mar 01, 2012 11:36am
I have a membership site and am a little confused. I have cookies only set up for the front end. If a user logs in without the remember me or autologin, how long will their cookie last? I’m clearly confused. What is the duration set for a standard member login?
#2 / Mar 02, 2012 10:16am
Hello liquilife,
This is a good question!
You probably already know, but just for clarity, these settings are in the Control Panel under Admin->Security and Session Preferences.
With “Cookies Only” selected, when the browser is closed the session ends, if they have not chosen the tick box to stay logged in indefinitely.
If you chose Sessions then you can also specify the timeout which is of course more secure.
Does that makes sense?
If there is anything else I can help with, please let me know!
Cheers,
#3 / Mar 02, 2012 11:01am
HI Shane, yes. However, if I choose to use the session then it literally inserts the session in the URL which completely destroys an otherwise URL friendly website. Is there no way around this?
#4 / Mar 02, 2012 7:17pm
Hi liquilife,
Unfortuantely you cannot remove the session from the url. You could however embed a link on the page that users could copy and paste that would not contain the session.
Sean