Sebastian Petters / 4wd media wrote:
Feedback?
For such a critical app like Webmail a cookie lifetime does not make any
sense. If the user closes the browser the session should be gone. I'm
really sure most users don't log out but just close the browser - this
would be a huge security hole!
The longer cookie lifetime makes sense for i.e. Google to remember
preferences without logging in, but not for Webmail.
A checkbox ("remember me for XXX days", defaults to 0) on the login page
might make most sense, so the users can decide what they want to have.
My 2 cents,
Mike
--
Michael Baierl
mbaierl.com http://mbaierl.com/
- - - - - - - - - - - - - - - - -
Windows Vista has been rumoured to be a complete port of the original
PERL Windows code into C. This would explain, well, everything.
_______________________________________________
List info: http://lists.roundcube.net/dev/
