[staging] Rebooted PC but account remained logged in

Question

Closed this issue 2 years ago · 5 comments

Answer 1 · 2022-12-08T09:04:39.000Z

@sherlock this is expected if you didn't logout and your session is still valid (2h)

Answer 2 · 2022-12-08T09:12:44.000Z

Let's reduce that to 30 minutes

Answer 3 · 2022-12-08T09:13:39.000Z

Its a config you can change on the BE

Answer 4 · 2022-12-08T09:15:19.000Z

There is a security vulnerability here, how is the FE handling it away from the BE?

Answer 5 · 2022-12-08T09:20:15.000Z

If the user makes any request after their session expires a 401 is thrown and they are logged immediately