Reputation:
Ionic 3 App - Keep logged even when app quits
How to keep logged in application even user closes app? Log in only if user logged out prior to closing application?
Upvotes: 0
Views: 2993
Answers (1)
Reputation: 3838
I would avoid storing the users' passwords at all costs. It's a bad security practice, not to mention your app would likely not know if they changed their password out of band from your app/session.
If you are using a common token-based authentication, then you can use the concept of Refresh Tokens to keep a user logged in. Effectively when the user logs in the first time, you also request a Refresh Token. This refresh token can then be used in the future to get another access token without requiring a username/password. See this link for an example implementation from Auth0. That's the product we use.
Additionally, you should likely not use Refresh Tokens for web-based logins. For web-based logins it is more common for a user to log in on public devices (or someone else's device). So keeping them logged in for those scenarios may put your users at higher risk.
Upvotes: 0
Related Questions
- How to keep the user logged in even after closing the app in ionic/angular project?
- Keeping a user logged in
- Ionic hybrid app, saving application state/data on exit
- How to Keep Users Logged In to App in ionic 4
- how to keep google login session alive till user manually logout in ionic 4 + angular mobile app?
- How to logout when token expires in ionic3?
- How to prevent the need login everytime without logout in Ionic App?
- How to make stay logged in when app not running in ionic
- How to keep user logged in with Firebase no matter what?
- Ionic 2. Check if Logged in during the launching of the app