Currently writing tests for the pull request. I'll reopen once the tests are written.

Tests added to OrganizationAuthenticationTests (those I'll admit I let claude create them).

I ran those test with the pre-PR code and they fail, and only pass once the PR code is added. Those tests were written using Generative AI.

For the tests I originally tried to use a similar test to the login test but unfortunately the behavior is different, the box doesn't seem pre-checked when the remember me flag is set.
Checking the event didn't seem enough to guarantee the rememberMe flag is set.
So with some further research the AI settled on checking the rememberMe flag on the session list for the user. I'm not sure if there's a better way to check for it.

Thanks, @Esurnir. LGTM. Running CI.

@Esurnir Added a commit to keep remember-me enabled in the login form after the session expires or is destroyed (not on logouts, as the current behavior does not keep the cookie).

Also updated tests.

@Esurnir Would it be possible to create the new test case in the new test framework? In the /tests/base module.

Otherwise, the Testsuite Deprecation Check will always wail.

Thanks!

cc: @pedroigor

@Esurnir Would it be possible to create the new test case in the new test framework? In the /tests/base module.

Otherwise, the Testsuite Deprecation Check will always wail.

Thanks!

cc: @pedroigor

I'll try my best ! There's a few tests I modified in the old arquilian based test. Should I :
A. Migrate those old test to the new test file I'll create for my test cases.
B. Leave them in the old test files and modify them.
C. Migrate the full two test files (it would preserve history, but it might be a bit too much for the scope of this pr ?).

@mabartos done. pushed in the latest commit.
The two new tests now live in tests/base/.../organization/authentication/OrganizationRememberMeAuthenticationTest.java and I reset the legacy OrganizationAuthenticationTest.

A couple of choices worth flagging:

• Focused class name (OrganizationRememberMeAuthenticationTest) rather than OrganizationAuthenticationTest: wanted to leave the conventional destination empty so a future whole-file migration with migration-util/migrate.sh can preserve git history via commit-migration.sh.
• Small awaitNextEvent helper : events.poll() returned null intermittently in a 20× stability run because the LOGIN event isn't always persisted by the time the OAuth callback completes. Use Awaitility to retry until the event is available.

Thanks for your guidance!

cc: @pedroigor

AI code reviewer claim the bug would still be there in a multi org flow. So I'm letting it run a tiny bit more before shipping the PR.

Ok confirmed locally and fixed it (with gen ai assitance). A new test case has been added to cover the 'multi organization' flow so that remember me doesn't get cleared if the user go through the select-organization switch. The change become based on if the user has sent the rememberMe box inside the form or not.
I didn't realize the select organization box code was also running inside OrganizationAuthenticator.

Tests done locally :

• logging in with a user with two organization using organization scope and ticking the remember me box. Clicking one of the two organization. Entering my password. Then closing my browser. Reopening it. Expected : I'm still logged in.
• logging in with a user with two organization using organization scope and not ticking the remember me box. Clicking one of the two organization. Entering my password. Then closing my browser. Reopening it. Expected : I'm logged out.