MM5.10 Persistent login
By default, Media Manager will remember a user that has logged in and automaticallyĀ re-authenticate her on the next visit of the application.Ā
This presents a security impact in the unlikely event of a XSS attack on the application.Ā
Should a client choose to disable persistent login, this can be done by navigating to the SettingsĀ ā Portal Config Manager ā Configuration and unchecking the option "Enable persistent login".
Disabling persistent login will result in the user having to authenticate every time they access the application and after every page refresh.