SET YOUR PASSWORD PLEASE

We’ll be moving to secure pages only soon. (2 to 4 weeks)

To my surprise the browser does not associate any stored passwords for a domain to the SSL version of the same domain. You can tell you are viewing an SSL page by looking at your browser’s address bar. There will be a green padlock in front of the address. You can see this by going here:

https://www.in-depthoutdoors.com/community/forums/forum/fishing/

If you log out of your account and open the drop down login panel:

You can view your password by clicking on the eye icon next to it:

Once you have your password safely stored somewhere you can try logging in from the secure login page. Your browser should offer to save the password again.

Here is the secure login page:
https://www.in-depthoutdoors.com/login/

Please take care of this as soon as you can. Right now we’ll continue to serve up both secure and non secure pages but we’ll be forcing secure only pages down the road.

Thanks!

Dave, you lost me on this one. Are you just asking us to logout and log back in again?

Hey Dave – thanks for asking. Yes, but that is if you rely on your browser to remember your password. Once you are sure of your password and rely on it remembering for you then it is a good idea to log out and back in under the secure location so that it can offer to save your login info again.

We will be moving to serving only encrypted pages. One of the benefits of this is HTTP pipelining requests. That is, your browser can be sent supporting page objects such as images, javascript and style sheets under the same connection used to fetch the page. This = faster page loads.

Can they make browser cached passwords not expire so soon? I only log in now if I intend to post.

It’s still cookie based on the web. The remember me option during login will set a cookie that does not expire for a year. Then each time there after when the remember me cookie is used to generate a new login session the expiration time is reset to a year again. This should keep you logged in. But this is also influenced by browser privacy settings which isn’t something we can override.

I did give some thought to using local storage for the remember me cookie token. All modern browsers are capable of storing data locally once permission is granted for a site. This is more resilient than cookies and wont expire. Privacy settings may be less strict since you first have to allow local storage to be used.

I’ll add this to my list of things to look into when I have the time.

What you suggest is not working for me. Can you please contact me with what might be going wrong

@fishingdad – what isn’t working? What browser are you using?

If you log out and then go to https://www.in-depthoutdoors.com/login/ and login from there with your username/password the browser will offer to remember the credentials for you unless you have told it not to do so.

I have some final testing to do Friday night for the enforced SSL change over. If all goes well I will make the change on Saturday. (no specific time)

If you do not know what your password is you may want to set a new one. I have updated the settings page to make it easier for you to change your password.
http://www.in-depthoutdoors.com/profile-settings/