Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Remember me isPersistent understanding #2079
This is more of a question but its not enough of a question that i could post it up on stack overflow without risking it just getting closed as primary opinion based or to broad. So i am going to put it here in hopes of getting an answer.
The issue is the understanding of how remember me is supposed to work. My problem is that its not doing what we would expect it to do.
Management expects when a user logs in and clicks remember me that they will then not be required to type their login and password again for a month. Whether or not they will still have to type in the 2fa code is up for debate.
What is actually happening is that i can close the browser reboot and come back for about an hour and 15 minutes and then i will be forced to type my password again. This still happens even with a valid
After digging around in the code i found that Remember me is actually isPersistent and it is defined as.
Which brings you to:
There are two different types of Cookies:
All this being said remember machine 2fa works as expected i am not prompted again for the 2fa and i have a cookie on my machine
So I guess my question is why are we not getting a
How is this supposed to work exactly? I am following the code here even though we have normal MVC and not razor pages like you have in the example. I am still just calling
Note: I am using Asp .net Identity in Identity server 4 application.