I know I had my login somewhere around here...

It is not appropriate to make cookies which contain my login information. Whether or not it is encrypted, subscripted, perscripted, or otherwise. When I log out - I expect every “Let’s hide this in the person’s browser” stuff to be eliminated. After all, what if I was in a public library? It is extremely easy to find out where I had been on a browser and if they then went here the intruder could cause significant harm to me or might get me banded from this forum. Please. Use best pratices, get rid of all cookies when someone logs out.

Thanks for reading.

Page 1 / 1

maybe it can add Post auth session evaluation with Identity Threat Protection like okta.

https://help.okta.com/oie/en-us/content/topics/itp/continuous-access-evaluation.htm?cshid=csh-continuous-access-evaluation

then someone login in other computer other area by the correct cookie and needs to mfa before login.

FreeLink/甫连信息

Docusign Partner | Partner Profile

Docusign 2024 APAC Reseller Growth Partner of the Year

The only Docusign Partner globally certified as both a Certified eSignature Administrator and eSignature Technical Consultant.

Docusign Community Leaderboard Top 5 contributor.

Expertise in Docusign integrations with on-premises systems for leading enterprises across various industries.

Sign up

You can login or register as either a Docusign customer or developer. If you don’t already have a Docusign customer or developer account, you can create one for free when registering.

Docusign Community

You can login or register as either a Docusign customer or developer. If you don’t already have a Docusign customer or developer account, you can create one for free when registering.

Scanning file for viruses.

This file cannot be downloaded