Persistent Login for HTTP 
Use this IdeaSpace to post ideas about Domino Server.

: 144
: 145
: 1
: Domino Server / Web application server
: http, login
: Bruce Elgort12540 02 Jan 2008
: / Email

Web sites such as GMail, Facebook, FeedBurner and most other service oriented sites offer users the ability to stay "logged in" to their site using some type of cookie.  Idea Jam would like to use this type of authentication out of the box for Idea Jam and can't without building a custom DSAPI filter which is beyond our current capabilities.  With this I propose this idea to the Domino Web Server Team to consider providing such a capability via a web site configuration document in a future version of Domino.

1) Nathan T. Freeman2648 (03 Jan 2008)
I'm not 100% certain that you *can't* do this without a DSAPI filter today. In today's architecture, you're talking about an LTPAToken that's written to disk at the client. I bet there's SOME way to do that.

I'll still support the idea, though, 'cause it really should be a checkbox on a web site config form.
2) Roland Reddekop4539 (03 Jan 2008)
Absolutely needed. This is part of strategy to gain user acceptance and eliminate usability obstacles.
3) Harkpabst Meliantrop3799 (03 Jan 2008)
I don't see this as absolutely needed or even strategic. Enterprise wide Single sign-on might be, simply remembering a user of Domino application, rather not. But I would still like to have the option to simply enable it. Also, internet site documents look like a prefect place to me for configuration.
4) Kerr Rainey4990 (03 Jan 2008)
Pah, IdeaJam just ate my comment. It was good one where I agreed with Nathan. (I know!) Quick recap.

LTPA might work. Things to check:
1. Can LTPA tokens persist across browser shutdown or are they session only.
2. Can LTPA tokens be set to expire in the order of days / weeks rather than hours.

I also made some really hilarious and insightful points. Honest ;)
5) Vitor Pereira4271 (03 Jan 2008)
I agree that Domino should take care of this. In the meanwhile you might want to check Brendon Upson's blog. I remember him battling with SSO in Domino. Check this blog entry: { Link } where he talks about allowing "users to seamlessly access a Domino server without actually entering a username and password". In this case he is using NTLM but I'm sure there is a way to use cookies.
6) Richard Schwartz4594 (27 Jan 2008)
It can be done without DSAPI. You simply (well, that may be overstating it a bit ;-)) need to have application-level code make the calls to generate the LTPA cookie and then put the cookie into the response headers. Andrew Pollack has a product that does it. See here:

{ Link }
7) Jesper Kiaer260 (05 Aug 2008)
I created a Domino CRM Contacts solution used in a Blackberry Browser. We did not want the users to time out and have to login again, so a work around was needed.

So by storing username and password encrypted in cookies and some code in a java agent the user would only have to log in the first time. Then on the user would automatically be logged in.

Jesper Kiaer

/Jezzper Consulting


Welcome to IdeaJam

You can run IdeaJam™ in your company. It's easy to install, setup and customize. Your employees, partners and customers will immediately see results.

Use IdeaJam to:

  • Collect ideas from employees
  • Solicit feedback and suggestions from employees and customers
  • Run innovation contests and competitions
  • Validate concepts
  • Use the power of "crowd-sourcing" to rank ideas and allow the best ideas to rise to the top

IdeaJam™ works with:

  • IBM Connections
  • IBM Lotus Quickr
  • Blogs and Wikis
  • Websphere Portal
  • Microsoft Sharepoint
  • and other applications.

IdeaJam has an extensive set of widgets and API's that allow you to extend and integrate IdeaJam™ with other applications.

Learn more about IdeaJam >>

Use more customization features in ND9 NotesMail
Option to make integrated Sametime Client Notes Location aware?

IdeaJam developed by

Elguji Software Logo