[ https://issues.apache.org/jira/browse/WICKET-2591?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12793961#action_12793961 ]
Marat Radchenko commented on WICKET-2591: ----------------------------------------- Cookie stores pair of user login + randomly generated number. Upon successfull authentication, I generate random number, store it in db (associated with user) and set it into cookie. Cookie maxAge is much bigger that http session age. After that, on subsequent session creations, I check for cookie, and if it is present (and matches data that i stored in db), i automatically mark session as logged in without asking login/password. Hey, even this jira has "remember me" feature. > Allow subclasses of AuthenticatedWebSession to set "signedIn" field > ------------------------------------------------------------------- > > Key: WICKET-2591 > URL: https://issues.apache.org/jira/browse/WICKET-2591 > Project: Wicket > Issue Type: Improvement > Components: wicket-auth-roles > Affects Versions: 1.4.3 > Reporter: Marat Radchenko > > My app implements "remember me" service by setting cookie in authenticate > method of custom session that subclasses AuthenticatedWebSession. > In order to automatically login user if cookie present, i need to set > "signedIn" field to true when session is created, however it isn't possible > since "signedIn" is private and no way to set it is available. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.