X
Tap here to go to the mobile version of the site.

Support Forum

Restore session saves login token

Posted

When I close Firefox and open it again I am no longer logged into my Google account as is normal (I ask that my login information not be saved). However if I use the restore previous session option then I am logged back into my Google accounts. Why is the login token not expired on closing, and is still valid after restoring a previous session?

This happens even when disabling all add-ons.

When I close Firefox and open it again I am no longer logged into my Google account as is normal (I ask that my login information not be saved). However if I use the restore previous session option then I am logged back into my Google accounts. Why is the login token not expired on closing, and is still valid after restoring a previous session? This happens even when disabling all add-ons.

Chosen solution

Firefox stores cookies used in tabs that are currently open in the sessionstore.js file as part of saved session data, so those cookies will be restored if Firefox is closed without first closing these tabs.

You can set browser.sessionstore.privacy_level to 2 (never) or 1 (non-HTTPS) on the about:config page to disable saving cookies via session restore in the sessionstore.js file. The browser.sessionstore.privacy_level_deferred pref is used when you do not reopen the previous session automatically via "Show my windows and tabs from last time" and uses the same values.

You can open the about:config page via the location/address bar. You can accept the warning and click "I'll be careful" to continue.

Read this answer in context 2

Additional System Details

Installed Plug-ins

  • Adobe PDF Plug-In For Firefox and Netscape 15.9.20069
  • Creative Cloud Desktop Plugin.v_3_0_0_0
  • LastPass Plugin
  • NVIDIA 3D Vision Streaming plugin for Mozilla browsers
  • NVIDIA 3D Vision plugin for Mozilla browsers
  • VLC media player Web Plugin

Application

  • User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:42.0) Gecko/20100101 Firefox/42.0

More Information

FredMcD
  • Top 10 Contributor
4399 solutions 61743 answers

Helpful Reply

Where you logged in during that previous session?

Where you logged in during that previous session?

Question owner

Yes, when closing each session I am logged into Google. I have my Google settings set to not save login information. And when I launch FF again I am indeed not logged in. However if I restore my previous session it restores my login.

Yes, when closing each session I am logged into Google. I have my Google settings set to not save login information. And when I launch FF again I am indeed not logged in. However if I restore my previous session it restores my login.
FredMcD
  • Top 10 Contributor
4399 solutions 61743 answers

Belliger said

if I restore my previous session it restores my login.

That's because you were logged in.

''Belliger [[#answer-813462|said]]'' <blockquote> if I restore my previous session it restores my login. </blockquote> That's because you were logged in.

Question owner

So you don't think this is a security issue?

Because this is something new. I have always used the restore previous session feature, and until recently I have needed to log back into any account I did not have set to save my login information.

So you don't think this is a security issue? Because this is something new. I have always used the restore previous session feature, and until recently I have needed to log back into any account I did not have set to save my login information.
FredMcD
  • Top 10 Contributor
4399 solutions 61743 answers

There is no real security issue. Only your computer has the session restore, and to use your computer account, one needs the password.

There is no real security issue. Only your computer has the session restore, and to use your computer account, one needs the password.
cor-el
  • Top 10 Contributor
  • Moderator
17881 solutions 161774 answers

Chosen Solution

Firefox stores cookies used in tabs that are currently open in the sessionstore.js file as part of saved session data, so those cookies will be restored if Firefox is closed without first closing these tabs.

You can set browser.sessionstore.privacy_level to 2 (never) or 1 (non-HTTPS) on the about:config page to disable saving cookies via session restore in the sessionstore.js file. The browser.sessionstore.privacy_level_deferred pref is used when you do not reopen the previous session automatically via "Show my windows and tabs from last time" and uses the same values.

You can open the about:config page via the location/address bar. You can accept the warning and click "I'll be careful" to continue.

Firefox stores cookies used in tabs that are currently open in the sessionstore.js file as part of saved session data, so those cookies will be restored if Firefox is closed without first closing these tabs. You can set <b>browser.sessionstore.privacy_level</b> to 2 (never) or 1 (non-HTTPS) on the <b>about:config</b> page to disable saving cookies via session restore in the sessionstore.js file. The browser.sessionstore.privacy_level_deferred pref is used when you do not reopen the previous session automatically via "Show my windows and tabs from last time" and uses the same values. * http://kb.mozillazine.org/browser.sessionstore.privacy_level You can open the <b>about:config</b> page via the location/address bar. You can accept the warning and click "I'll be careful" to continue. *http://kb.mozillazine.org/about:config

Question owner

Thank you cor-el! Both for explaining why Firefox was acting the way it was and for the solution. This perfectly solved my issue.

Thank you cor-el! Both for explaining why Firefox was acting the way it was and for the solution. This perfectly solved my issue.