Lars Pind

internet software, coaching, and entrepreneurship

Lars Pind - internet software, coaching, and entrepreneurship
Check out Coach TV, my video blog on happiness and personal development for geeks.
Compiling the Native MySQL Ruby Gem on Debian Hacked again - lessons and next steps

We won't log you out

October 08, 2006 · 1 comment

wontlogyouout.pngMost sites have a “Remember me” checkbox of some sort, which will store a permanent cookie, rather than a session cookie, so you don’t have to login again the next time you visit.

JPG magazine takes that a step further with the following note:

“We won’t log you out automatically, so if you share this computer with anyone else, be sure to click “log out” (at the top, right of every page) when you’re done.”

blog comments powered by Disqus

1 response so far ↓

  • 1 Mark Aufflick // Oct 11, 2006 at 02:42 AM

    Seems a touch dangerous... I always liked the idea of the OpenACS 5 persistant login, where there are two levels of authentication. The basic level never timed out, but the higher level (required for eg. write operations rather than read-only operations) timed out. When you hit a page or operation requiring the higher level you would be asked to confirm your password. The actual implementation had a few tricks, but done well can lead to an excellent (and safe) ui. LinkedIn.com uses the same concept to good effect. In fact if I remember correctly, Lars you may have implemented the two level auth?