Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

Authentication question

edited May 2011 in Vanilla 2.0 - 2.8
When a user logs in to my Vanilla forum, then comes back a couple of days later, should he still be logged in? Assuming the answer is yes, does the forum verify that he's logged in based on a cookie? If so, would it be possible to set that cookie from another page on my site?

In addition to Vanilla, our site has a wiki, an embedded blog and a group calendar app that each require their own login. I'm exploring the possibility of a centralized login page that sets each of the various app cookies once login is authenticated.


  • Options
    If you make one application the main entry point for all authentication, then you can use the ProxyConnect plugin to allow Vanilla to authenticate against it. That is one approach.
Sign In or Register to comment.