[eluser]Chillahan[/eluser]
I have a question related to this, so it seemed like the right place to ask - is there a way to manipulate the session expiry on a per-user basis, so that I can use this ability to persist the session beyond browser close as a "remember me" feature (instead of using a separate cookie)?
It seems like an automatic negative, since the session already exists before a user logs in, right? It would need to be hacked to force a new session cookie to be set upon logging in. Probably easier to just add similar db-stored security keys to a "remember me" cookie to make it more secure, I think, than trying to use this.