Index: openacs-4/packages/acs-tcl/tcl/security-procs.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/acs-tcl/tcl/security-procs.tcl,v
diff -u -N -r1.101 -r1.102
--- openacs-4/packages/acs-tcl/tcl/security-procs.tcl	14 Jun 2018 08:46:42 -0000	1.101
+++ openacs-4/packages/acs-tcl/tcl/security-procs.tcl	23 Jun 2018 17:16:27 -0000	1.102
@@ -217,13 +217,20 @@
             # # if only they keep requesting pages frequently enough, but the alternative was that
             # # the situation where LoginTimeout = 0 (infinte) and the user unchecks the "Remember me" checkbox
             # # would cause users' sessions to expire as soon as the session needed to be renewed
-            # sec_generate_session_id_cookie
+            sec_generate_session_id_cookie
 
             # apisano 2018-06-08: as discussed in
             # https://openacs.org/forums/message-view?message_id=1691183#msg_1691183,
             # this would break sec_change_user_auth_token as a mean to
             # invalidate user login...
-            sec_login_handler
+            #
+            # GN: when we use "sec_login_handler" instead of the
+            # previous code using "sec_generate_session_id_cookie",
+            # persistent logins stop to work (people are logged out
+            # from time to time). So, i switched for the time being
+            # the to old code.
+            #
+            #sec_login_handler
         }
 
         #