On 11 Feb 21:40, ydjango wrote: > > > I put 15 minutes expiry/session cookie age in my django app > 1) I logged into my application > 2) I went to some page. > 3) Left that page open in browser. > 4) Came back after 16 minutes and clicked on a link on that open page > 5) I was thrown to login home page. > As a user it is very confusing, did I do something wrong or did app > fail? what happened here. Explicit message " logged out due to > inactivity" helps. > > Most bank and broker sites give explicit message " You have been > logged out due to inactivity "
OK - simplest way I can think of... off the top of my head... Add a *second* cookie as well as the session cookie, this magic second cookie just says wether or not they've visited the site, and if they did wether they were logged in. Set a higher timeout on that cookie (maybe, say, a day), and delete that cookie in the case of them actually logging out rather than their login timing out. Should be fairly easy to do from the login/logout views. Cheers, -- Brett Parker --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
