rainbownapkin/canopy

Remember-Me Cookies #167

New issue

Closed

opened 2025-09-16 06:32:43 -04:00 by rainbownapkin · 7 comments

rainbownapkin commented

2025-09-16 06:32:43 -04:00

(Migrated from gitlab.com)

Create "Remember-Me" check mark next to login.

Remember-Me tokens should be based on public key authentication, with public keys stored in a dedicated Mongoose collection, looked up by UUID to prevent attackers from attempting to auth against a specific target, or identifying exact remember-me DB collection size.

Further Reading:

https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#title.2.1

https://security.stackexchange.com/questions/44/how-to-securely-implement-a-remember-me-feature

https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API.

Create "Remember-Me" check mark next to login. Remember-Me tokens should be based on public key authentication, with public keys stored in a dedicated Mongoose collection, looked up by UUID to prevent attackers from attempting to auth against a specific target, or identifying exact remember-me DB collection size. Further Reading: https://paragonie.com/blog/2015/04/secure-authentication-php-with-long-term-persistence#title.2.1 https://security.stackexchange.com/questions/44/how-to-securely-implement-a-remember-me-feature https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API.

rainbownapkin commented

2025-09-16 06:36:58 -04:00

(Migrated from gitlab.com)

added #169 as child task

added #169 as child task

rainbownapkin commented

2025-09-16 08:22:13 -04:00

(Migrated from gitlab.com)

added #172 as child task

added #172 as child task

rainbownapkin commented

2025-09-16 08:29:39 -04:00

(Migrated from gitlab.com)

added #173 as child task

added #173 as child task

rainbownapkin commented

2025-09-16 08:32:48 -04:00

(Migrated from gitlab.com)

added #174 as child task

added #174 as child task

rainbownapkin commented

2025-09-16 08:36:21 -04:00

(Migrated from gitlab.com)

added #175 as child task

added #175 as child task

rainbownapkin added a new dependency 2025-09-25 05:39:59 -04:00

#173 Create Remember-Me Middleware

rainbownapkin added a new dependency 2025-09-25 05:40:11 -04:00

#172 Split sessionUtils.js authenticateSessions()

rainbownapkin added a new dependency 2025-09-25 05:41:01 -04:00

#169 Create Remember-Me Token Collection

rainbownapkin added a new dependency 2025-09-25 05:41:14 -04:00

#174 Kill Remember-Me Tokens with Sessions

rainbownapkin added a new dependency 2025-09-25 05:41:21 -04:00

#175 Add 'Stay Logged In' checkmark

rainbownapkin commented

2025-10-18 09:15:50 -04:00

Owner

Started work on Remember Me Tokens: 895a8201a5

Started work on Remember Me Tokens: 895a8201a5

rainbownapkin commented

2025-10-21 08:12:26 -04:00

Owner

Remember me tokens now nuked upon full account logout: bc0657a702
Cleaned up remember-me error handling: d874f5e2da

Remember Me Tokens Complete.

Remember me tokens now nuked upon full account logout: bc0657a702 Cleaned up remember-me error handling: d874f5e2da Remember Me Tokens Complete.

rainbownapkin closed this issue

2025-10-21 08:12:26 -04:00

Sign in to join this conversation.

No labels

Cleanup/Refactor

Performance Improvement

Security Improvement

UX/Accessibility

Unreproducable Bug

No milestone

No project

No assignees

2 participants

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Depends on

#169 Create Remember-Me Token Collection

rainbownapkin/canopy

#172 Split sessionUtils.js authenticateSessions()

rainbownapkin/canopy

#173 Create Remember-Me Middleware

rainbownapkin/canopy

#174 Kill Remember-Me Tokens with Sessions

rainbownapkin/canopy

#175 Add 'Stay Logged In' checkmark

rainbownapkin/canopy

Reference: rainbownapkin/canopy#167

No description provided.