Open tomudding opened 3 months ago
Move session management back to the database, add support for session management, potentially 2FA while we are at it.
Redis is fast, but the amount of errors we still get too much. Furthermore, we have not real control over when a session expires.
Can be done before GH-1798 (as this will only cover user authentication and not API authentication).
https://github.com/matomo-org/device-detector
tomudding
commented
3 months ago tomudding
commented
3 months ago
What would you like?
Move session management back to the database, add support for session management, potentially 2FA while we are at it.
Why is this needed?
Redis is fast, but the amount of errors we still get too much. Furthermore, we have not real control over when a session expires.
Other information
Can be done before GH-1798 (as this will only cover user authentication and not API authentication).