[
https://issues.apache.org/jira/browse/WICKET-2591?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12793961#action_12793961
]
Marat Radchenko commented on WICKET-2591:
-----------------------------------------
Cookie stores pair of user login + randomly generated number.
Upon successfull authentication, I generate random number, store it in db
(associated with user) and set it into cookie. Cookie maxAge is much bigger
that http session age.
After that, on subsequent session creations, I check for cookie, and if it is
present (and matches data that i stored in db), i automatically mark session as
logged in without asking login/password.
Hey, even this jira has "remember me" feature.
> Allow subclasses of AuthenticatedWebSession to set "signedIn" field
> -------------------------------------------------------------------
>
> Key: WICKET-2591
> URL: https://issues.apache.org/jira/browse/WICKET-2591
> Project: Wicket
> Issue Type: Improvement
> Components: wicket-auth-roles
> Affects Versions: 1.4.3
> Reporter: Marat Radchenko
>
> My app implements "remember me" service by setting cookie in authenticate
> method of custom session that subclasses AuthenticatedWebSession.
> In order to automatically login user if cookie present, i need to set
> "signedIn" field to true when session is created, however it isn't possible
> since "signedIn" is private and no way to set it is available.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
