diff options
author | Roeland Jago Douma <roeland@famdouma.nl> | 2019-01-22 18:16:55 +0300 |
---|---|---|
committer | Roeland Jago Douma <roeland@famdouma.nl> | 2019-01-23 10:46:24 +0300 |
commit | e6333c8fe389aca4e1e8349f276de0058c20c6bb (patch) | |
tree | 09a98cfa0ed7706d830896a96fad7b33d10a7780 /config | |
parent | af36746d7cbcdb9a5be1c6843bf2bc658678490b (diff) |
Honor remember_login_cookie_lifetime
If the remember_login_cookie_lifetime is set to 0 this means we do not
want to use remember me at all. In that case we should also not creatae
a remember me cookie and should create a proper temp token.
Further this specifies that is not 0 the remember me time should always
be larger than the session timeout. Because else the behavior is not
really defined.
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
Diffstat (limited to 'config')
-rw-r--r-- | config/config.sample.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/config/config.sample.php b/config/config.sample.php index 299e67c98fe..9c3cc470995 100644 --- a/config/config.sample.php +++ b/config/config.sample.php @@ -225,8 +225,8 @@ $CONFIG = array( 'allow_user_to_change_display_name' => true, /** - * Lifetime of the remember login cookie, which is set when the user clicks - * the ``remember`` checkbox on the login screen. + * Lifetime of the remember login cookie. This should be larger than the + * session_lifetime. If it is set to 0 remember me is disabled. * * Defaults to ``60*60*24*15`` seconds (15 days) */ |