https://bugzilla.wikimedia.org/show_bug.cgi?id=47694

Steven Walling <swall...@wikimedia.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|REOPENED                    |RESOLVED
         Resolution|---                         |WONTFIX

--- Comment #42 from Steven Walling <swall...@wikimedia.org> ---
(In reply to comment #40)
> Furthermore, by telling the user that we
> are going to keep them logged in, then logging them out after 30 days we are
> effectively lying to them - can you tell me that's good UX?

Yes, I can elaborate. 

The goal of the checkbox is to help user stay logged in for longer than their
normal browser session. The label should provide only as much information is
needed for the user to decide, "Do I want to have this site remember my login
on this computer?" 

1. When asking about good UX in log in forms, etc. we can obviously look to
other sites, since we are far from the only people to have a user registration
systems. I cannot find a _single_ good example of a login form which specifies
an exact time limit on saved login sessions, even if cookie policies may
differ. This obviously supports the view that it would be unusual to present
this, and probably unnecessary. 

2. Even without differences in cookie policies, the information is not
necessary to decide "Do I want this site to remember me?". It's a simple yes or
no state. The user does not 

3. The fact that our cookie policy only allows for 30 days of remembering a
user _even if_ they opt in to being remembered is a broken UX. Numerous users
have complained about this, and with the upcoming privacy policy we will not
need to have a hard 30 day limit on cookies. This will soon make the need to
specify a time limit completely unnecessary, because our cookie policy for
users who opt-in via this checkbox will be just like other sites. 

4. Regardless of what time period the cookie lasts, we are fulfilling the
user's request to be remembered beyond the normal session. The idea that we're
lying to users without the 30 day mention is absurd. 

TL;DR: this will soon be obviated by the new privacy policy which won't require
30 day limits on cookies, and it's unnecessary information for the user to be
able to make a decision about whether they do or do not want to be remembered.

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
_______________________________________________
Wikibugs-l mailing list
Wikibugs-l@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l

Reply via email to