Reset expiry time when user returns to the site

Created on 7 March 2010, about 15 years ago

Updated 30 January 2023, about 2 years ago

The expiry time for a login is determined when a user first logs in, to be 30 days (by default) from that first login. This does not change even if the user returns to the site within those 30 days. I'd like it if the expiry time could be reset to a further 30 days every time the user returns to the site.

I've managed to implement this by changing a single line of code in _persistent_login_create_cookie(). This was line 417 in the 6.x-1.4 release. Originally, it read:

$expires = (isset($edit['pl_expires']) ? $edit['pl_expires'] : (($days > 0) ? time() + $days * 86400 : 0));

I changed it to:

$expires = (($days > 0) ? time() + $days * 86400 : 0);

Is there any unforseen security risk that I've introduced by doing this? Would it be possible to add this change as an optional feature?

✨ Feature request

Status

Needs review

Version

1.0

Component

Code

Created by

🇬🇧United Kingdom penguin25

Live updates comments and jobs are added and updated live.

Incomplete comments

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Comment about 2 years ago →
🇨🇦Canada gapple
Comment about 2 years ago →
System Message

gapple → committed bd3b5e72 on 8.x-1.x
Issue #735004: Allow extending expiry of tokens
Status changed to Fixed about 2 years ago5:59am 30 January 2023
Comment about 2 years ago →
🇨🇦Canada gapple
Status changed to Needs review about 2 years ago10:11pm 31 January 2023
Comment about 2 years ago →
🇺🇸United States hargobind Austin, Texas
Any chance you could commit the 7.x patch from #8?
Status changed to Fixed 3 months ago11:30pm 14 January 2025
Comment 3 months ago →
🇨🇦Canada gapple
Closing out 7.x issues
Comment 2 months ago →
System Message
Automatically closed - issue fixed for 2 weeks with no activity.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024