What the fuck is happening in 2025 where half the websites can't keep the session open?

How is it "good security practice" to require me to login every few hours?

Shit like this makes me think software has plateaued. If devs can't make a fucking session work in the big 2025, then there's no hope.

Noticed that too, so annoying

Don't forget about 2fa and email confirmation

Usually it's because dickhead politicians have decided you can't store personal data for any longer than necessary, and dickhead legal/compliance departments have decided that setting a session cookie might count as storing personal data, and told the devs they can't make the expiry of the cookie any longer than is necessary.

Well, llm's provide such things.

Confluent Cloud, hosted Kafka, puts a hard timeout at 30 min, even if you're actively doing stuff in the WebUI. It has a VS Code plugin .. which also has a hard 30 min limit, and requires to you re-auth, but the link/launcher in VS Code is perpetually in various states of broken. It's all so tiresome.

Why do you assume devs did that? It's llm coding at its best :)))

You guys are reminding me of snowflake, whose connector doesn't even handle their forced 2fa

COMPUTER BETRAYED US. MICROWAVE YOUR LAPTOP TODAY. CLIMATE CHANGE ISN'T REAL!!

In the era of people wearing personal computers on their wrists, the typical website assumes you're using a library computer to log on and do your taxes.

I'm in the middle of a coding tutorial where I’m building a session where the session expires after 24 hours if you are in idle State and no longer using the app within the 24 hours while the session automatically refreshes for the new 24 hours in the last four hours in case you become active again. This way you don’t get logged out unless you are literally not active for more than 24 hours

So yeah the session is basically programmable and if it logs you out frequently then either you are idle for too long or the session expiry is too short

@donkulator is right. It is all about the industry pivoting from science and technology to utility services. It happens to pretty much every disruptive technology.
Modern planes were invented by the same initiatives that brought people to the freaking moon and haven't seen many major conceptual upgrades since then. Even most of those few significant upgrades were invisible, like GPS and flight computers.
The internet is now a necessity, and with this classification comes regulation that privileges the ones who move the slowest and are there longer. Just like it did for legacy airlines and their seventy year old plane models.
But we haven't reached rock bottom yet.
I predict a future where there will be no markup moving around on the network, just protobuf-style binaries on the wire and llm-powered transcoders on each end. Bleak, indeed, for UX design will be non deterministic. That also means slow if you're unlucky.

@b2plane I think that's the first comment I've seen from you that isn't about your pelvic organs. It's certainly the longest.

Has your account been hacked?

If only devRant used a shorter-lived session cookie.