06-23-2011 09:47 PM
Can the timeout on the user id be extended to that of the old SAS forums? e.g. NEVER.
I am used to having the SAS Forums on line continously, and I wouild just go to the tab (in firefox) periodically to check for new content. This login every few hours is a pain.
06-24-2011 06:17 AM
Thanks to both of you for your comments on the new site. We will be updating and refining settings based on user feedback and experience.
I will be looking into both of these and will post when I have an update.
06-24-2011 08:33 AM
I would also like to say that I absolutely hate having to log in each time I visit the forum. This was never necessary before.
Furthermore, there ought to be a way to allow Firefox or Internet Explorer to remember your password each time you visit, but somehow you have disabled this. This is absurd, even bank websites allow this. Lastly, the new login screen ought to remember my userID as many other forums do, so I don't have to type it in each time.
I must say that until these features are changed, I'm much less likely to use these forums.
06-26-2011 12:20 AM
I like the new communities site but I'd also be keen to see a longer timeout (days-weeks) or a non-expiring login. I got a timeout whilst I was (slowly) writing a reply today - was very happy to see it kept my text though!
As a suggestion, perhaps there could be a user preference, where the default was a quick timeout as it is now, but a user could explicitly choose to have a long or non-expiring timeout if they know they have a secure browsing environment.
06-28-2011 03:34 PM
I'll add that I've typed half of a response, gotten interrupted, and by the time I finish the response and hit "Add Reply" I've been logged out! My response is now g-o-n-e. Nothing burns worse then spending a sizeable amount of time crafting a thoughtful reply, only to have it vanish into the ether.
06-28-2011 03:43 PM
There is so much to dislike about the new setup, I don't even know where to begin. The timeout is an issue, but why can't we just have our browser remember our user-ID and password, like it does on many other discussion forum boards? Why do I have to log-in each time? Why can't we set our browser to remember our password? Why can't the boards show some indication of what threads have new material and what threads do not?
The way this new forum is set up, I just won't use the forums here much. Somehow, I think the purpose of having a forum is defeated if there are all these impediments to use.
06-29-2011 08:01 PM
The timeout values have been changed. You should no longer experience the short time-out cycles that you were experiencing before. Please post back and let us know if this is better.
Thank you for your patience while we got this adjusted. We will continue to work on the issues and suggestions that you have made.
07-19-2011 07:58 AM
Hellind ... "NEVER", just like every other discussion forum???? That's a great idea. What do you think, SAS? What
And by the way, SAS folks, what about the other complaints that have been lodged about the new bulletin boards? Are we going to see any changes there?
07-19-2011 08:37 AM
The timeout settings are part of a larger security model for the sas.com web sites. I have asked the security team to review the 'never' request. I'll post updates as I get them.
As for logging in to support.sas.com and communities.sas.com.... We are transitioning from an older security/profile model to a newer one. The communities.sas.com site uses the newer model. Until all of the sites and applications are migrated to the new model, we have consistent sign-on, but not single sign-on. We understand how this can be annoying and are continually working to improve this experience. Note that some applications may always require you to 're-login' in order to verify who you are and to protect your data and access.
You can find a short article about the new profile in this blog post by Marci Russell.
07-19-2011 08:51 AM
We can appreciate your security team's desire for consistency. However, they should not be making the strategic decisions. Most of the things mentioned in Marci's article are very low risk activities. Perhaps you should do the risk assessment and assign some of the pieces of the security model based on that. For instance,
The activities involving money (e-learning, software orders) may need user authentication each time but those with just reputational risk for the user (and virtually no marginal risk for SAS) could allow the 'never' timeout.
At the very least, you could retain the user-id's. Mine is very long (as my name is very long), so it is a pain to type each time. I also have 4 different e-mails for work and sometimes must use one over another and retaining would save a few gray-matter memory cycles.