@mark. Appreciate you’re doing this on a wing and a prayer 🙂
Because session cookies have an expiry default set to 14 days. That’s how the majority of the internet operates.
Yep, but using session cookies to define if a user is a paid up member or not is a clunky way of enabling persistence and access to websites.
Can you not stick an expiry date in the users database and have a check when a page is visted against that? That way you get login, across multiple devices, that doesn’t expire and assigns correct rights to paid-up members.
I’m not techie any more, but there’s plenty of IT bods here, so someone’s got the easy solution for ya 🙂