{{
`${userDetail.user.displayName}${userDetail.user.cachedBungieGlobalDisplayNameCode ? `#${standardizeBungieGlobalCode(userDetail.user.cachedBungieGlobalDisplayNameCode)}` : ""}`}}
{{getUserClans()}}
3/18/2013 5:53:09 PM
6
[quote][url=http://www.bungie.net/en-us/Forum/Post?id=59979970&path=1][b]Posted by:[/b] Achronos
Intended operation:
Bungie.net uses a session cookie to keep you signed in. Your session lasts for 60 (I think) minutes. It is renewed everytime you refresh the site. However, every 24 hours or if you close your web browser all the way down, you have to sign in again. Because we use external authentication systems, we can't just assume you still own the account you're using, and we've found that silent reauth generally doesn't work very well (it can lead to infinite refresh loops).
The best you can do is to click the "remember me" button in your chosen login method's sign-in screen. This will allow you to skip typing stuff in, but you will have to still manually initiate the process when your session expires.
We're unlikely to change this policy given the obvious security ramifications.[/quote][/url]
English
-
Edited by HurtfulTurkey: 3/23/2013 1:02:02 AMVery disappointing. Obviously it's a problem on a public computer, but I can't imagine how this could possibly be an issue on a personal computer. And even if someone else logged into another's account (which is statistically very unlikely since this isn't exactly a dense userbase), so what? Overall, the inconvenience of signing in on the mobile site and here seems much more significant than the very minor risk mentioned above. And if it's an "obvious security" risk, why wasn't this done earlier?
-
Signing in from the cell is a pain. It wouldn't be so bad if the browser didn't crash so often. I tried replying to this reply just now and it crashed..
-
God damnit. 2 minutes before me.
-
#swag
-
A screenshot of the text would be better now that we can post pics.
-
Edited by Verachi: 3/18/2013 6:54:11 PMThat's debatable.
