Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

How can I use Vanilla at home and work, and not have to log in each time!?

3stripe3stripe ✭✭
edited January 2006 in Vanilla 1.0 Help
This is starting to do my nut in a wee bit. Is there any way to avoid the constant re-logging in process?


  • Bring your cookies with you.

  • Grill me a hamburger, and the problem will fix itself. Eh, I have no clue, I've never encountered programs of logging me out on one computer, from signing in on another computer, just Vanilla.
  • 3stripe3stripe ✭✭
    edited January 2006
  • It's a problem I have too. I think Mark said he set it up that way for security.
  • To hell with security, I gotta get my rambling done!
  • In theory it causes me to lose 2 seconds of work..... :P
  • 3stripe3stripe ✭✭
    edited January 2006
    2 seconds at home + 2 seconds at work = 4 seconds a day = 24+ minutes a year spent logging into Vanilla :-(
  • its for security. Quit your whining. You have the quick sign in now!
  • edited January 2006
    it's for security
    How, exactly?

    In the course of the average day I use three different computers, and I would like to be automatically signed in at all three. Judging by the IP address histories of my users, that is not an abnormal request.
    In theory it causes me to lose 2 seconds of work..... :P
    The issue is not the time; the issue is that it's an unnecessary hassle, and unnecessary hassles exist to be destroyed.
    You have the quick sign in now!
    Half the time I don't even notice it's there, and get an angry error message yelling at me for not signing in.
  • well if you used it once your browser should store the password and then you wouldnt even need to notice it was there. Security isn't my forte but the idea is that your cookies have a verification key in them which has to match up with the key in the database. That way if anyone ever gets hold of your cookies or whatever, chances are the verification key will have changed and they wont be able to get access. Atleast i think thats the theory.
  • Theoretically, yes. In reality, not usually.

    And I have no problem with cookies expiring, but the time span should be a few days at least, and probably more like a week.
  • Last i checked, the timespan is a year. There have been issues with cookies on 0.9.2 but i think theyre meant to be sorted. I'm sure if you can pinpoint anything mark would love to hear about it.
  • i wish i didnt have to keep logging in and my users are saying the same.
  • MarkMark Vanilla Staff
    I know this is a common request, but I'm not changing my authenticator. I made the authenticator so you guys could code your own and plug it in there easily enough. If you want to, please feel free. If someone comes up with a method that I think is better (more secure) than mine, I'd be happy to replace mine.
  • Biometrics?
  • I cant for the life of me find my fingerprint reader, most frustrating.
  • never ever let anyone tell you that biometrics are the way of the future. it's a terrible method to authenticate if someone is who they say they are, because... what if you lose your finger? (or - what if you melt your fingerprint?) what if someone manages to duplicate your finger? how do you change your password?
  • Mark: I'm just not sure why logging in on my laptop should have any effect at all on whether my desktop machine is still logged in.
  • if you lose 4 fingers on each hand (my software stores upto 4 of each, presumably little finger is too small) then chances are you dont really have much use for whatever it is you're authenticating into and have bigger worries.
  • mini... granted... but the more important argument was the second one, anyway. so there.
This discussion has been closed.