flexi auth - A user authentication library for CodeIgniter

[eluser]haseydesign[/eluser]
@Jonny Blaze and as a general NEW FEATURE announcement!

Two new config settings have been added to the config file that define whether a user who has logged in via a password (Rather than via the 'Remember me' feature), should have their 'logged in via password' credential unset as soon as they close their browser.

Previously, if the user had logged in via a password, then closed the browser and reopened it, they would still be recognised as using the same browser session, and so their login status would remain as 'Logged in via password'.

With the new setting enabled, the user would be restricted to 'Logged in via "Remember me"' status (If they enabled this option on login), or else they would be logged out.

The config settings can be found in the usual flexi auth config file and are as follows:

Code:

$config['cookies']['login_via_password_token'] = 'login_via_password_token';

...

$config['security']['unset_password_status_onclose'] = TRUE;

The 'login_via_password_token' config setting defines the name of the cookie.
The 'unset_password_status_onclose' config setting defines whether the feature should be enabled.

The user guide has been updated with the new information @ http://haseydesign.com/flexi-auth/user_g...ion_config (You'll need to scroll down to find the corresponding settings).

The update as usual is available via the latest Github repo.