[keycloak-dev] social login and remember me

Stian Thorgersen stian at redhat.com
Mon Feb 24 09:22:34 EST 2014 

Added Gabriel to see if he has a good idea

With the current L&F I can only think of two solutions (neither of which I particularly like):

1. Have it under username/password - probably means no-one is going to associate it with a social login
2. Have on under username/password and one under all social logins - I think this will look weird, and not convinced people will associate it with a particular login

Is there a way we can not require this for social logins? Social networks would already provide this mechanism so if we can somehow integrate with that, we wouldn't need it. One idea would be to set a cookie when a user has used a social login, then test if they are still logged in with that automatically.

Another thing to consider is when we introduce a "trust this machine" option as well. For example when you use multi-factor auth on Google, and at least a few other sites, they give you an option of trusting a particular machine/device so it won't ask for totp on every login. AFAIK Google asks you again for password after some days (30?!), but never asks for totp again on the same machine.

----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: keycloak-dev at lists.jboss.org
> Sent: Monday, 24 February, 2014 2:05:22 PM
> Subject: Re: [keycloak-dev] social login and remember me
> 
> I should rephrase:  Suggestions on wehre "remember me" should go if
> there is a social login?
> 
> On 2/24/2014 9:04 AM, Bill Burke wrote:
> > Suggestions on where "remember me" should go then?  Patternfly has it
> > under the username/password boxes.
> >
> > On 2/24/2014 6:54 AM, Stian Thorgersen wrote:
> >> Having more than one "remember me" checkbox on the page would be
> >> confusing/messy I think.
> >>
> >> Links can be replaced with buttons by simply changing <a class="zocial
> >> ${p.id}"> with <button class="zocial ${p.id}">. No need for img buttons
> >> as the styling works for buttons as well.
> >>
> >> ----- Original Message -----
> >>> From: "Bill Burke" <bburke at redhat.com>
> >>> To: keycloak-dev at lists.jboss.org
> >>> Sent: Sunday, 23 February, 2014 4:35:16 PM
> >>> Subject: [keycloak-dev] social login and remember me
> >>>
> >>> I implemented "Remember Me" for regular login.  The problem is, it won't
> >>> work for social because social login using an href so "remember me"
> >>> checkbox will not get propagated.
> >>>
> >>> * Social login links need to be turned into a form containing a img
> >>> submit button for each, correct?
> >>> * Where should "Remember Me" go?   Have 2 Remember Me checkboxes?
> >>>
> >>>
> >>> --
> >>> Bill Burke
> >>> JBoss, a division of Red Hat
> >>> http://bill.burkecentral.com
> >>> _______________________________________________
> >>> keycloak-dev mailing list
> >>> keycloak-dev at lists.jboss.org
> >>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
> >>>
> >
> 
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>

More information about the keycloak-dev mailing list