about 1 year
For the auto-logout... once the user refreshes the page they lose their ability to see private data. Is it possible to check if the current user is active with each API/page request and force refresh them if they are inactive? Or redirect them to the /logout page?
Join the discussion!