Remember me on login
I frequently need to login to the mountaineers website, sometimes multiple times per day which is a bit annoying. It would be great to have a remember me checkbox to persist the login.
It appears this was a feature until 2023 https://feedback.mountaineers.org/forums/273688-general-feedback/suggestions/15859615-remember-me-function-on-log-in-page-is-broken-gh20
And a 2024 post was declined without reasoning https://feedback.mountaineers.org/forums/273688-general-feedback/suggestions/47641436-keep-me-logged-in
It would be great if an explanation could be given on why this isn't possible, or options for how some login persisting could be supported.
We have merged all the ideas related to persistent log ins into this idea and have marked it as complete! Volunteer developer Ian Henry and our contracting company worked together to come up with a secure solution to bring this feature back. Users can now select a checkbox "Keep me logged in" when signing in on mobile or desktop to persist their login.
To see other web updates our contractors and volunteers have made recently, check out our Technology Changelog!
-
Jacob Ward
commented
Bummer, but thank you for the extra details! I hope the decision to pursue this may change in the future. Thanks.
-
Jacob Ward
commented
Thanks for the context! Looking forward to hearing more soon. It would be a very nice feature if we're able to get it back!
-
Chris Pribbernow
commented
No, it only keeps me logged in for a fairly short period of time. I have to log in again EVERY time I visit the website!!! Very annoying, please fix!
-
Chris Pribbernow
commented
For the Mountaineers website when logging in there used to be a feature to check a check box that says "Remember Me" which would keep you logged in. Now that feature is no longer there and I keep getting logged out of the website, and have to keep logging back in which is a bit of an inconvenience and annoyance.
Can the Mountaineers add that feature back to the login so I can stay logged in and I'll have to keep logging in every time I visit the website?
-
Billie Bankston
commented
Add a checkbox labeled "Remember Me" on your login screen, typically below the username and password fields.When the user checks the "Remember Me" box and successfully logs in, create a long-lived or persistent session token that is stored on the user's device (usually in a cookie or local storage). This token should be used to authenticate the user automatically on subsequent visits.While the request mentions a longer expiration timer, it's important to strike a balance between security and convenience. Expiration times of 24 hours or a few days are common choices.Even when "Remember Me" is checked, provide a logout option so that users can log out if they wish, regardless of the session's expiration time.While the request suggests a lower concern for security, it's essential to ensure that user data and accounts remain secure. Use proper encryption and authentication mechanisms to protect user information.Inform users about the implications of checking the "Remember Me" box, such as the extended session duration, and advise them to use this feature only on trusted devices.Thoroughly test the feature to ensure that it functions as intended and doesn't introduce security vulnerabilities.Consider gathering user feedback on this feature to determine if it meets their needs and expectations.
-
It turns out that this feature was removed from our website platform for security and privacy reasons during our latest update in March 2023. It may be possible to add it back, but that will take some development work and considering the security/privacy implications. We'd like to propose that we look into this further, either to add this feature back or determine alternatives (password keychain, browser password management tools, etc).
-
Vineeth Madhusudanan
commented
"Remember me" on the log in page is not working and when I open new windows or close my browser I have to log in again.
-
Brian Baker commented
Some people though may have access to other people personal information. If that's the case, its something to consider with allowing persistent logins.
-
Dennis Miller
commented
Add "Remember Me" option so that my login persists until I deliberately logout. Or maybe increase the expiration timer to 24 hours or something like that. I just get tired of logging in 10 or 15 times a day. I'm not that concerned about the security risk--what's a hacker going to do...sign me up for a course?