Security aside (I'd need to delve deeper to fully understand it myself) there's the practical side of implementing it, which I can't see being straight-forward.
A typical remember-me feature just knows who you are when you first request a page on the site. Even if we invent a remember-me cookie for Domino we won't be able to use it in that way. Domino's authentication methods are fairly closed off to us.
What you'd have to do is have the page open and then have some JavaScript check for the cookie. If found the same script needs to POST the name/pass values to the server so it can initiate a session and return a valid DomAuthSessId cookie. At this point you're probably going to want to reload the page to make it user-specific. Even if it's really quick it might seem odd and confusing to the user. Maybe it could be done transparently before any content appears. Either way I don't think it's what a user would expect to happen.
As with most things Domino, there's a way to do just about anything. In this scenario though I think I'd suggest a user might use the built-in login-remembering features of the current browsers.
Hi Rob. You've done your homework then ;o)
Security aside (I'd need to delve deeper to fully understand it myself) there's the practical side of implementing it, which I can't see being straight-forward.
A typical remember-me feature just knows who you are when you first request a page on the site. Even if we invent a remember-me cookie for Domino we won't be able to use it in that way. Domino's authentication methods are fairly closed off to us.
What you'd have to do is have the page open and then have some JavaScript check for the cookie. If found the same script needs to POST the name/pass values to the server so it can initiate a session and return a valid DomAuthSessId cookie. At this point you're probably going to want to reload the page to make it user-specific. Even if it's really quick it might seem odd and confusing to the user. Maybe it could be done transparently before any content appears. Either way I don't think it's what a user would expect to happen.
As with most things Domino, there's a way to do just about anything. In this scenario though I think I'd suggest a user might use the built-in login-remembering features of the current browsers.
Jake