>I was experiencing a weird annoyance with C::P::Authentication today. I >saw reports of similar symptoms in the list, but nobody with my >particular solution. In Firefox everything was working fine, but in all >the IE browsers auth cookies weren't being stored. Eventually I grabbed >a HTTP Session inspector to see how the cookies were being set. The >expire time on the cookies was sent as GMT several hours in the past.
What I've done before is send the server time as part of the login screen and use some Javascript to warn if the server time is more than a set time away from the client PC time. Sometimes it's server time drift, sometimes client PC time drift. It's annoying that IE simply drops a historic cookie without warning and then you think the user is typing the password wrong. >As a side note, is there a way to control the session length of the >authentication cookie? In your conf set: cookie_expires http://search.cpan.org/author/NUFFIN/Catalyst-Plugin-Session-State-Cookie-0. 07/lib/Catalyst/Plugin/Session/State/Cookie.pm You can set session expiry with conf: expires http://search.cpan.org/~nuffin/Catalyst-Plugin-Session-0.18/lib/Catalyst/Plu gin/Session.pm You also need to extend an expiring cookie by calling session_expires() somewhere (e.g. in auto :Private in your main controller) to resend it otherwise by default it times out after 2 hours. Regards, Peter _______________________________________________ List: Catalyst@lists.rawmode.org Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/catalyst@lists.rawmode.org/ Dev site: http://dev.catalyst.perl.org/
