Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
"keep me signed in" #490
The user should be able to stay signed into a site if they like.
At the time a user selects an email address to sign into a site, they should be provided a checkbox that they can click to choose to stay signed into the site.
This checkbox will cause assertions to be automatically issued subsequently, without user prompting.
This feature will require UX feedback, and new APIs. Specifically, getVerifiedEmail() is no longer sufficient, as with this new feature several things change:
Suggest the following API changes:
A final implementation proposal - all persistent sign in is device local to start, it's cleared when you clear browsing data, and is cleared locally when you log out from a site. It works exactly as cookies do today (which the user is used to).
referenced this issue
Nov 8, 2011
OK, so the current behavior I see right now is this:
Now, with "Always sign in using this email" selected:
If I log out of beta.myfavoritebeer.org now and click "This is not me", everything on both sites is reset, as expected.
Closing a browser and reopening it with "Always sign in using this email" selected results in saved sessions for both sites.
Closing a browser and logging out/logging in to OS works.
Closing a browser and restarting the OS works.
If I leave the pages open and close the browser, re-opening the browser brings up the same open sessions/pages.
If I "logout" first, then click Sign In again, I can see that "Always sign in using this email" is still checked.
If I "logout", then click Sign In and uncheck "Always sign in using this email", once I Sign Out, I need to reselect an email, as expected.
I will assume that if the user clears the browser cache, cookies, and/or data, this will clear out the setting and he/she will have to start over.
Tested Safari on Mac, IE9 on Windows so far.