hi
The remember me used by cookies.
The angular use access token, it will not delete by browser.
https://us05web.zoom.us/j/86723786925?pwd=TlkrMXhOdjdoNVBwSG9KT3BFOWdFZz09
There should be no problem. The ConfigureApplicationCookie is working as expected.
hi
Now the cookies are valid within 1 hour.
Click the Remember me
The cookies are session. It is deleted after I quit the Chrome browser(end process). I opened the URL again the cookies disappeared.
hi
https://support.abp.io/QA/Questions/5231#answer-3a0bd55f-37b2-1f28-914f-7b52bbf16f87
If you publish your site with custom lifetime configuration, I will check it online.
hi
Can you share your logs.txt with me?
liming.ma@volosoft.com
hi
I will confirm that. Thanks.
Your question credit was refunded.
The identity cookie's name is Identity.Application. If this cookie doesn't exist. Your login state will be invalid.
hi @ed_developer3
You have API and angular websites.
API use cookies and angular use access token.
You can control the cookies by ConfigureApplicationCookie.
remember me the cookies will be valid for 14 days by default. You can change the time by ConfigureApplicationCookieremember me the cookies is session will be invalid after close the browser. The behavior is different in different browsers.https://learn.microsoft.com/en-us/aspnet/core/security/authentication/identity-configuration?view=aspnetcore-7.0#cookie-settings
The access token lifetime control by
PreConfigure<OpenIddictServerBuilder>(builder =>
{
builder
.SetAccessTokenLifetime(TimeSpan.FromSeconds(120))
.SetIdentityTokenLifetime(TimeSpan.FromSeconds(365));
});
It will get a new access token after invalid. You can remove the offline_access scope from oAuthConfig to disable the refresh token feature.
