Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 509
  • Last Modified:

"Remember me" login functionality

The "Remember me" login functionality is widely used in web sites (Experts exchange included), to automatically sign in the user with the last access userID.
Is a good practice provide this functionality in a web enterprise application, like an ERP or Business intelligence tool?

What is a best practice to implement it? In wich way should be set the cookies?

Thank you
0
Decisionisti
Asked:
Decisionisti
  • 2
2 Solutions
 
Imtiaz HashamTechnical Director / IT ConsultantCommented:
It's not a problem if the ERP is used internally only, however, if you have Active Directory for authentication, why don't you ask the ERP to authenticate from the LDAP Login Credentials?

As far as cookies go, the remember me functionality uses cookies to remember you so deleting the cookies will delete the stored information (passwords are stored separately and more securely).
0
 
Kamaraj SubramanianApplication Support AnalystCommented:
0
 
DecisionistiAuthor Commented:
Yes it's possibile to use LDAP, but not in this case. The itkamaraj comment is ok, the only remaing part is if is a good practice provide this functionality in a web enterprise application.

Thank you
0
 
Imtiaz HashamTechnical Director / IT ConsultantCommented:
Only if it's internally used because if it's being used externally and someone saves their password on another computer which doesn't have adequate security.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now