Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Honor remember_login_cookie_lifetime #13747

Merged
merged 1 commit into from
Jan 23, 2019
Merged

Honor remember_login_cookie_lifetime #13747

merged 1 commit into from
Jan 23, 2019

Conversation

rullzer
Copy link
Member

@rullzer rullzer commented Jan 22, 2019

If the remember_login_cookie_lifetime is set to 0 this means we do not
want to use remember me at all. In that case we should also not create
a remember me cookie and should create a proper temp token.

Further this specifies that is not 0 the remember me time should always
be larger than the session timeout. Because else the behavior is not
really defined.

@rullzer rullzer added bug 3. to review Waiting for reviews labels Jan 22, 2019
@rullzer rullzer added this to the Nextcloud 16 milestone Jan 22, 2019
nickvergessen
nickvergessen approved these changes Jan 22, 2019
View reviewed changes
Copy link
Member

@nickvergessen nickvergessen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐘

MorrisJobke
MorrisJobke approved these changes Jan 23, 2019
View reviewed changes
Copy link
Member

@MorrisJobke MorrisJobke left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code makes sense 👍

@MorrisJobke
Copy link
Member

Phpunit failed

@rullzer
Honor remember_login_cookie_lifetime
e6333c8 
If the remember_login_cookie_lifetime is set to 0 this means we do not
want to use remember me at all. In that case we should also not creatae
a remember me cookie and should create a proper temp token.

Further this specifies that is not 0 the remember me time should always
be larger than the session timeout. Because else the behavior is not
really defined.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
@rullzer rullzer force-pushed the fix/honor_session_lifetime_if_remember_cookie_is_disabled branch from 216aa81 to e6333c8 Compare January 23, 2019 07:46
@rullzer rullzer merged commit f2b118a into master Jan 23, 2019
@rullzer rullzer deleted the fix/honor_session_lifetime_if_remember_cookie_is_disabled branch January 23, 2019 09:12
@rullzer
Copy link
Member Author

rullzer commented Jan 23, 2019

/backport to stable15

@rullzer
Copy link
Member Author

rullzer commented Jan 23, 2019

/backport to stable14

@backportbot-nextcloud backportbot-nextcloud bot mentioned this pull request Jan 23, 2019
Merged
@backportbot-nextcloud
Copy link

backport to stable15 in #13758

@backportbot-nextcloud
Copy link

The backport to stable14 failed. Please do this backport manually.

@MorrisJobke MorrisJobke mentioned this pull request Jan 29, 2019
Merged
@GitHubUser4234 GitHubUser4234 mentioned this pull request Jul 20, 2020
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nickvergessen nickvergessen nickvergessen approved these changes

@MorrisJobke MorrisJobke MorrisJobke approved these changes

@ChristophWurst ChristophWurst Awaiting requested review from ChristophWurst

@schiessle schiessle Awaiting requested review from schiessle

Assignees
No one assigned
Labels
3. to review Waiting for reviews bug
Projects
None yet
Milestone
Nextcloud 16
Development

Successfully merging this pull request may close these issues.
3 participants
@rullzer @MorrisJobke @nickvergessen