Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

<@U011D3UQKNY>, <@U01MTU9E4CF>, <@U010F2N7G2X>

I'm trying to create a `remember_me` function to extend a user's session to have a longer lifespan than the default setting. I don't see any specific API endpoints for this, nor is there anything I can see in the JavaScript SDK.

I'm referring to <https://www.ory.sh/docs/kratos/session-management/session-lifespan#session-cookie-max-age|these docs>, and possibly considering using the <https://www.ory.sh/docs/reference/api#tag/identity/operation/extendSession|admin API>, but:

1. If I set the `persistent` property to `false` in the cookie, as mentioned in the docs above, how can I tell the SDK to set a custom `max-age` for the session?
2. I need the session to be extended or not based on a checkbox that the user checks, if true the session is longer, if false the default will apply
3. If I try and use the admin session endpoint to extend a user session, how do I set the amount of time by which it needs to be extended?
4. Also, if I use the admin API to extend and there is no setting to specify the time, does this mean I need to extend the session every time I obtain it?
I'm trying to gauge how much I need to code on my side as a workaround, vs. how much the SDK actually provides by default. Any assistance or guidance here would be appreciated :pray::spock-hand: