Ensure that the Autologin cookie is updated when the user changes his or her email address or password. This might require the user entering their password upon changing their email address (because the plaintext password and email address need to be fed to Autologin::save()).
Without this, the user will find themselves logged out upon their session expiring, because the cookie will have no-longer-correct credentials that fail to log them back in again.
Ensure that the Autologin cookie is updated when the user changes his or her email address or password. This might require the user entering their password upon changing their email address (because the plaintext password and email address need to be fed to
Autologin::save()).Without this, the user will find themselves logged out upon their session expiring, because the cookie will have no-longer-correct credentials that fail to log them back in again.