I’ve got a weird issue with Safari on iOS, where it’s deleting the cookie for the PHP sessions generated by my server after 20 minutes or so, even though I’ve set an explicit expiry a month in the future. It’s mostly affecting my Monocle installation, and it’s becoming a irritation to have to constantly login.
It doesn’t happen on the main “public” instance, or in desktop browsers, so it’s something specific to my setup that Safari doesn’t like.
After a little more experimenting, it seems to be related to the “prevent cross-site tracking” option. I need to confirm 100%, but since turning it off, I’ve yet to be logged out. I wonder if it’s anything to do with how I have the subdomains setup?