I am trying to create my first authentication system. But there is one thing I do not understand and also cant find any info about.
To keep users logged in longer than a session, you can use persistent cookies. The persistent cookies has an expired date, which means that after a specific date and time, the cookie will expire.
My question now is what happens if a user is online and using the application and the persistent cookie date expires. Will the user be forced logged out?
If so, how can I prevent this?
There must be a way, I never got forced logged out on any page when i was using it.