I'm using Federated Login in my application. In the App Engine admin page, under Application Settings, I have Cookie Expiration set to 1 Day. When I authenticate with OpenID, I see that an ACSID cookie is created for my application's domain. It has an expiration time of just 2 hours after its creation time.
Is this the cookie that is supposed to be affected by the "Cookie Expiration" setting? If not, what is the best way to update the cookie expiration time for that cookie? Can I just use normal Java Cookie classes to modify it? Are there any behaviors of OpenID that I should know about, or will it work fine if every time a user accesses the page, I push their expiration time back by a few hours? I've seen questions about sessions and data being stored in Memcache. I don't think I have sessions enabled, but does Memcache come into play at all with Federated Login otherwise? Thanks -- You received this message because you are subscribed to the Google Groups "Google App Engine for Java" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine-java?hl=en.
