How can i keep users logged in when they return?

Asked May 22 '14 at 14:31

Active May 22 '14 at 14:45

Viewed 46 times

I am building a web platform, and it would be nice if I could keep users logged in on a semi-permanent basis as facebook / google etc do.

I am working in ASP.NET VB, and have created a basic login system (not using forms auth) whereby a user submits their username and password, it checks against the database (SQL Server 2012), if they match, the user is granted access (session("loggedin") = true) and their details are all stored as session variables to lower the amount of database calls during their site use.

What is the simplest, secure way to achieve this?

edited May 22 '14 at 14:45

asked May 22 '14 at 14:31

Digital Lightcraft

[MembershipProvider](http://msdn.microsoft.com/en-gb/library/system.web.security.membershipprovider.aspx)?? – huMpty duMpty May 22 '14 at 14:33
2

Been asked and answered. Do some research. http://stackoverflow.com/questions/1290837/how-do-i-keep-a-user-logged-in-for-2-weeks – Rick S May 22 '14 at 14:33
I knew it would have been but i couldnt find anything... Hmm no - looking at that, its an entirely different context, ive created a simple login system, not using anything pre-built. – Digital Lightcraft May 22 '14 at 14:37
Cookies as the answers suggested. – Yuriy Galanter May 22 '14 at 14:52
You will probably need to use cookies. – Rick S May 22 '14 at 14:52
@DarkcatStudios: Check the "most upvoted" answer in the linked question, not the "accepted" answer. That would be the method to use. Cookie holds a cryptographically unique hash, which matches the same hash as stored in your DB. – MrWhite May 22 '14 at 15:30
Ah yes! - I had thought something like that was the way forwards. – Digital Lightcraft May 22 '14 at 16:12

How can i keep users logged in when they return?

0 Answers0