Description of problem: "Remember me" checkbox is gone from Red Hat Bugzilla 5 Version-Release number of selected component (if applicable): 5.0 How reproducible: everytime Steps to Reproduce: 1. come to main page next day 2. 3. Actual results: you need to enter you credentials agian since portal does not remmbers old session Expected results: something like "Remember Me" checkbox that was in old BZ that saves session coockies and restores the session to be implemented Additional info:
This site now uses similar security policies to other public facing Red Hat infrastructure, such as the portal. Long lived sessions are insecure and modern security practice discourages them. The linked bug has something we will implement, a long lived cookie to remember which SSO provider a users wishes to use. When a user lands in BZ if this cookie is detected it will trigger the SSO login chosen, if the user is already logged in on another site using that SSO provider, that would automatically log them in to Bugzilla.
But how about customers/external users that do not have any SSO provider? I have just tetsted in another browser. 1) login 2) close browser 3) open again in a few seconds - seesion is not saved. Here ^ we dont speak about long-living session - just couple of seconds and session is gone - very upractical. Can you comment of that ?
(In reply to Dmitry Zhukovski from comment #2) > But how about customers/external users that do not have any SSO provider? > > I have just tetsted in another browser. 1) login 2) close browser 3) open > again in a few seconds - seesion is not saved. > > Here ^ we dont speak about long-living session - just couple of seconds and > session is gone - very upractical. > > Can you comment of that ? This is how session cookies works.
*** This bug has been marked as a duplicate of bug 1410316 ***