I’ve noticed that I have to sign in to my local controller, every single day. This happens on desktop (MacOS, using the same browser, without clearing cookies, website data, etc) and using the mobile iOS App.
I want that to stop, it’s annoying and completely unnecessary.
At least let us configure the session timeout, and extend the session every time the user interacts with the controller.
Interesting, the only time I ever get logged out of the local controller is when I update its software. You’re not using any sort of proxy? Browsing right to the controller URL?
Are you using iCloud private relay?
iCloud Private Relay is turned off on all devices, and no proxy is being used. I’m accessing the controller through the local.xxx.ddns.manage.alta.inc address, which resolves to the controller’s local, static management IP. I also checked the uptime, which is currently 21 days.
It’s not a big deal to log in again after performing an update or manually rebooting the controller, but in my case, these logouts occur every 1–2 days for an unknown reason. I initially suspected it might be caused by a session timeout.
I am also not logged out of my Control unless I perform an update. Is yours self-hosted, or our hardware unit?
I’m running the LXC version of the controller.
Regarding the issue on the desktop, it seems to be caused by a privacy-related browser feature. The controller saves the authentication token in local storage instead of a cookie. By contrast, services like Google, Meta, eBay, Amazon, etc use cookies, which likely explains why this issue only occurs with the Alta controller.
I’ll try adding an exception for the controller URL to prevent local storage from being cleared when the browser closes.
On mobile, these logouts happen far less frequent, but since debugging options are limited, I might just have to live with it.
@osc What is the name of the browser feature? That is correct that we use local-storage tokens for authentication instead of cookies.
I’m using the Brave browser, which has countless privacy / anti-tracking features.
I disabled “Delete cached images and files on exit”, not exactly sure if this was the solution, but I didn’t have to re-login again since then.