Well, it's similar way here.
However, even if it's 'RememberMe', it's not forever!

IIRC, it's a 3-step process in the Login control:

1. FormsAuthentication.SetAuthCookie(username, isRememberMeSelected)
   In this, the timeout is set to DateTime.Now + TimeSpan.Parse(<forms
timeout="...">)
2. Raise the event LoggedIn
3. Response.Redirect(<redirect-from-login-page-url>)

In step1, the cookie is set with sliding-expiration (default) with the
timeout of 30 mins (default).

Hi Gary,

From your description, you found that the "Login" control's "remember me"
setting doesn't work as expected(make the authentiation cookie
persisted),correct?

Based on my understanding, the Login Control's "RememberMe" property play
the same role as the second boolean parameter of the
FormsAuthentications.Authenticate(Or RedirectFromLoginPage) method. Here is
the diassembled code of the LoginControl from reflector:

========================
private void AttemptLogin()
{
   if ((this.Page == null) || this.Page.IsValid)
   {
       LoginCancelEventArgs e = new LoginCancelEventArgs();
       this.OnLoggingIn(e);
       if (!e.Cancel)
       {
           AuthenticateEventArgs args2 = new AuthenticateEventArgs();
           this.OnAuthenticate(args2);
           if (args2.Authenticated)
           {
               FormsAuthentication.SetAuthCookie(this.UserNameInternal,
this.RememberMeSet);
               this.OnLoggedIn(EventArgs.Empty);
               this.Page.Response.Redirect(this.GetRedirectUrl(), false);
           }
           else
           {
               this.OnLoginError(EventArgs.Empty);
               if (this.FailureAction ==
LoginFailureAction.RedirectToLoginPage)
               {
                   
FormsAuthentication.RedirectToLoginPage("loginfailure=1");
               }
               ITextControl failureTextLabel = (ITextControl)
this.TemplateContainer.FailureTextLabel;
               if (failureTextLabel != null)
               {
                   failureTextLabel.Text = this.FailureText;
               }
           }
       }
   }
}
==========================

Also, for the authenticaiton ticket(cookie)'s timeout, as far as I know,
the only configuration option is in the web.config file's
<authentication>/<forms>/@timeout attribute.   This controls the cookie's
timeout (when you use persistent cookie).

=============
<authentication mode="Windows">
  <forms
    ...............
     timeout="30"
    .................>
    ........
  </forms>
  <passport redirectUrl="internal" />
</authentication>
==================

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead



==================================================

Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.



Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at
http://msdn.microsoft.com/subscriptions/support/default.aspx.

==================================================
   

This posting is provided "AS IS" with no warranties, and confers no rights.