Please keep the list in Cc, as other people may be interested in this. What's _Zopeid ? You didn't talk about it in your first mail. Anyway what I propose works on one of my sites, you probably have some specific setup or requirements you didn't mention. Florent On Mon, 2002-06-10 at 09:19, gvd_76 wrote:
Nope, doesn't work: expires is set, but the browser receives a new _Zopeid and thus cannot be identified
probably permanent authentication cannot be achieved out of the box
--- In zope@y..., Florent Guillaume <fg@n...> wrote:
John Doe <gvd_76@y...> wrote:
I would like to make authentication permanent (ie once successfully logged in, no relogin required after closing browser). I've set the 'cookie lifetime' to 600 days but this does not seem to help.
Anyone knows how to achieve this permanent authentication?
Try to customize the setAuthCookie Python Script and add an expires='Wed, 19 Feb 2020 14:28:00 GMT' (or some other date) parameter to the setCookie call.
Florent
-- Florent Guillaume, Nuxeo (Paris, France) +33 1 40 33 79 87 http://nuxeo.com mailto:fg@nuxeo.com
On 10/6/02 3:32 pm, "Florent Guillaume" <fg@nuxeo.com> wrote:
Please keep the list in Cc, as other people may be interested in this.
Definitely! otherwise you miss things :)
What's _Zopeid ? You didn't talk about it in your first mail.
It's the default cookie name for Session objects. It has nothing to do with authentication. It does have a 'data object timeout' value associated with it, located at /temp_folder/session_data. There is a slot for a script to call when objects are deleted, but I doubt that this has anything to do with cookie expiry (although I haven't tried). Products such as cookiecrumbler and UserDB provide cookie authentication (login screens). I've not hacked UserDB to provide arbitrarily long login periods, but it can be done - there's no user interface for it though. Other products exist for cookie based authentication with timeout - exUserFolder for example. Hth, Tone -- Dr Tony McDonald, Assistant Director, FMCC, http://www.fmcc.org.uk/ The Medical School, Newcastle University Tel: +44 191 243 6140 A Zope list for UK HE/FE http://www.fmcc.org.uk/mailman/listinfo/zope
_Zopeid is a unique id per browser, assigned by the Browser Id Manager --- Florent Guillaume <fg@nuxeo.com> wrote:
Please keep the list in Cc, as other people may be interested in this.
What's _Zopeid ? You didn't talk about it in your first mail. Anyway what I propose works on one of my sites, you probably have some specific setup or requirements you didn't mention.
Florent
On Mon, 2002-06-10 at 09:19, gvd_76 wrote:
Nope, doesn't work: expires is set, but the browser receives a new _Zopeid and thus cannot be identified
probably permanent authentication cannot be achieved out of the box
--- In zope@y..., Florent Guillaume <fg@n...> wrote:
John Doe <gvd_76@y...> wrote:
I would like to make authentication permanent (ie once successfully logged in, no relogin required after closing browser). I've set the 'cookie lifetime' to 600 days but this does not seem to help.
Anyone knows how to achieve this permanent authentication?
Try to customize the setAuthCookie Python Script and add an expires='Wed, 19 Feb 2020 14:28:00 GMT' (or some other date) parameter to the setCookie call.
Florent
-- Florent Guillaume, Nuxeo (Paris, France) +33 1 40 33 79 87 http://nuxeo.com mailto:fg@nuxeo.com
__________________________________________________ Do You Yahoo!? Yahoo! - Official partner of 2002 FIFA World Cup http://fifaworldcup.yahoo.com
participants (3)
-
Florent Guillaume -
John Doe -
Tony McDonald