Short cookie validity?

zkvvoob · September 4, 2016, 10:52am

Hello,

Ever since I updated my OC to v. 9.1, every user has had to login every time they close a browser. Now, I do have a 2FA (Google Authenticator) enabled, but only for the admin user. The behaviour in question affects everyone - but only in the browser, obviously - using an an app (say OC News reader on Android) is fine.

None of the browsers is set to clear cookies on exit, no other websites which preserve logins are affected. Tried under Chrome, Firefox and Opera.

Steps to reproduce

Open a browser (i.e. Google Chrome)
Login to OC
Do stuff
Close browser
Re-open browser and OC page

Expected behaviour
The requested page loads straight away

Expected behaviour
Login prompt appears.

Server configuration
Operating system: Ubuntu 14.04
Web server:Apache2
Database: MySQL
PHP version:
ownCloud version (see ownCloud admin page): 9.1
Updated from an older ownCloud or fresh install: 9.0.1
ownCloud log (data/owncloud.log, see How to find webserver or OC logfile / enable php logfile):

Special configuration (external storage, external authentication, reverse proxy, server-side-encryption): 2FA, but only for the admin user

Integrity status for oC9+

No errors have been found.

anon30676603 · September 4, 2016, 10:58am

Hi,

there have been some reports in IRC and at the bugtracker about this:

github.com/owncloud/core

owncloud 9.1 checkbox to stay logged in does not work

opened 07:54PM - 07 Aug 16 UTC

closed 06:09AM - 08 Aug 16 UTC

covici

### Steps to reproduce 1.log in to owncloud and check the box which says stay l…ogged in. 2. log out and log back in. 3. ### Expected behavior I should not have to enter user name and password again. Tell us what should happen ### Actual behavior I have to enter the user name and password. Tell us what happens instead ### Server configuration **Operating system**:linux **Web server:** apache **Database:**postgresql **PHP version:**5.5 **ownCloud version:** (see ownCloud admin page) 9.1.0 **Updated from an older ownCloud or fresh install:**updated from 9.0.2. **Where did you install ownCloud from:**Gentoo repository **Signing status (ownCloud 9.0 and above):** code integrity check succeeded after the upgrade ``` Login as admin user into your ownCloud and access http://example.com/index.php/settings/integrity/failed paste the results here. ``` **List of activated apps:** ``` If you have access to your command line run e.g.: sudo -u www-data php occ app:list from within your ownCloud installation folder ``` Enabled: - activity: 2.3.2 - calendar: 1.3.2 - comments: 0.3.0 - contacts: 1.3.1.0 - dav: 0.2.5 - federatedfilesharing: 0.3.0 - federation: 0.1.0 - files: 1.5.1 - files_pdfviewer: 0.8.1 - files_sharing: 0.10.0 - files_texteditor: 2.1 - files_trashbin: 0.9.0 - files_versions: 1.3.0 - files_videoplayer: 0.9.8 - firstrunwizard: 1.1 - gallery: 15.0.0 - notifications: 0.3.0 - provisioning_api: 0.5.0 - systemtags: 0.3.0 - templateeditor: 0.1 - updatenotification: 0.2.1 Disabled: - encryption - external - files_antivirus - files_external - user_external - user_ldap **The content of config/config.php:** ``` If you have access to your command line run e.g.: sudo -u www-data php occ config:list system from within your ownCloud installation folder or Insert your config.php content here (Without the database password, passwordsalt and secret) ``` { "system": { "instanceid": "occc0c1ec9dc", "passwordsalt": "**_REMOVED SENSITIVE VALUE**_", "datadirectory": "\/var\/www\/covici.com\/htdocs-secure\/owncloud\/data", "dbtype": "pgsql", "version": "9.1.0.15", "dbname": "owncloud", "dbhost": "127.0.0.1", "dbtableprefix": "oc_", "dbuser": "**_REMOVED SENSITIVE VALUE**_", "dbpassword": "**_REMOVED SENSITIVE VALUE**_", "installed": true, "forcessl": true, "loglevel": "1", "theme": "", "maintenance": false, "overwrite.cli.url": "\/owncloud", "trusted_domains": [ "covici.com" ], "secret": "**_REMOVED SENSITIVE VALUE**_", "trashbin_retention_obligation": "auto", "debug": false } } **Are you using external storage, if yes which one:** local/smb/sftp/... data directory is within owncloud **Are you using encryption:** yes/no no **Are you using an external user-backend, if yes which one:** LDAP/ActiveDirectory/Webdav/... no ### Client configuration **Browser:**internet explorer 11 **Operating system:**Windows 10 ### Logs #### Web server error log ``` Insert your webserver log here ``` #### ownCloud log (data/owncloud.log) ``` Insert your ownCloud log here ``` #### Browser log `````` Insert your browser log here, this could for example include: a) The javascript console log b) The network log c) ... ```Hi. I was using 9.0.2 and things worked, after upgrading to 9.1.0 the checkbox to stay logged in does nothing, so every time I go to my owncloud I have to log in again. I am using internet explorer 11 under windows 10. ``````

zkvvoob · September 4, 2016, 11:38am

Hi,

I can see that the issue has been closed. Does this mean no one will have a look at the reason behind this problem? Anything I could do to help with additional information?

Thanks!

anon30676603 · September 4, 2016, 11:49am

I had requested to re-open that issue but it seem no one has done this yet. So just create a new issue at:

and make sure to use the shown issue template there to avoid that the issue will be closed again.

zkvvoob · September 4, 2016, 12:16pm

Thanks, I’ve opened an issue here: "Stay logged in" checkbox doesn't work · Issue #26027 · owncloud/core · GitHub