Something did change in Firefox recently wrt session cookies - it used to be that session restore kept session cookies alive indefinitely. And I see that there's been spec work around the max lifetime for session cookies, to get Chrome and Firefox behaviour aligned.
So it's very possible that your SID cookie has never had an Expires field (it really is completely missing from the value of the Set-cookie header), and that it's purely browser changes which are now surfacing the issue.
I seem to be signing in every hour or two on chrome for android.
Logged out again this morning, which puzzled me - but logging in, I see there's an Expires header now - so that's hopeful. Fingers crossed!
I'm somewhat tired with loggin in every day. So the last days I didn't. Now I tried it again, because I was curious about the Expire header. But I didn't see it.
Quoting BeateR
I'm somewhat tired with loggin in every day. So the last days I didn't. Now I tried it again, because I was curious about the Expire header. But I didn't see it.
It's a technical thing, you don't see it unless you specifically look for it with developer tool - but your browser does, and should now actually keep you logged in.
OK, thank you. And now I hope to stay logged in.
It worked only 2 days. And now I was logged out again.
Yeah, same here. :/ - and after logging in, the SID cookie has a lifetime of "Session"! The Expires header has disappeared again.
@Peter?
[ Edit: Edited on 15 Apr 2025, 13:13 GMT by Sander ]
Logged out again!!!
Likewise. And that while I had manually set the SID cookie to not expire until 2026. Something is actively terminating sessions... >.< @Peter: Could cloudflare be interfering here?