Mailing List Archive

Extending login cookie lifetime
Hi,
I've noticed that the login cookie does not last very long -- usually no more
than a day. I can see how for security reasons you may not want it to last
forever, but I'd like to extend its life a bit, maybe to a week or so.

I noticed that in include/DefaultSettings.php there is a line
$wgCookieExpiration = 2592000;

which if it's in seconds would be 30 days. However my login cookie never gets
set for that long. Any ideas why that may be?

Thanks,
matias

PS: I know that be default the cookie is set so that if you set it at
seattlewiki.org it won't be sent for www.seattlewiki.org. However this behavior
happens even if I always use on or the other. I've also just now set the cookie
domain so that it works for both cases above.
Re: Extending login cookie lifetime [ In reply to ]
Matias Pelenur wrote:
> I've noticed that the login cookie does not last very long -- usually no more
> than a day. I can see how for security reasons you may not want it to last
> forever, but I'd like to extend its life a bit, maybe to a week or so.
>
> I noticed that in include/DefaultSettings.php there is a line
> $wgCookieExpiration = 2592000;
>
> which if it's in seconds would be 30 days. However my login cookie never gets
> set for that long. Any ideas why that may be?

That's for the "save my password" cookie and such.

The login session cookie expires at the end of the browser session.
There may also be a session expiration timeout; check your PHP
configuration about that.

-- brion vibber (brion @ pobox.com)