remember user not working

[BAKTETE]

After installing the package the remember me stopped working i doubled checked but same scenario happens

[drbyte]

Agreed.
They made some improvements after I reported it in #11
But the problem still persists:

• "impersonated" session will log out after it expires, regardless of Remember Token.
• after leaving impersonation, "impersonator's" session will also log out after it expires, regardless of Remember Token

[MarceauKa]

Does the tests pass in your project? (this one)

[drbyte]

Upon impersonation, the remember_web_zzzzzzzzzzzzzzzz cookie is deleted from the browser, despite the login_web_zzzzzzzzzzzzzz still being present in the app's session store.

Without the remember cookie, when the session actually does expire, the browser can't negotiate to revive the remember-ed session.

The provided tests pass, but the tests don't test this factor.

[Livijn]

I'm having the same issue.

[MarceauKa]

Ok, I'll try to replicate. Any ideas?

[Livijn]

I have double checked what drbyte wrote, and it is true as well. I'm not sure whether you are required to delete that cookie in order to impersonate another user. I guess that is why you are deleting it, but in case it is not required – just don't delete it. 🤙

However, a naive way of solving this would be instead of deleting the cookie, you just rename it to temp_remember_web_xxxxxxx. Then upon "revert", you revert the name change. This would requiring always using the revert option unless we added some middleware checking for this temp cookie.

[MarceauKa]

See the 1.4