User should reenter his PIN code after 2 hours of inactivity

AnalogIO / coffeecard_app

Cross-platform coffee card app for Cafe Analog

https://www.cafeanalog.dk/app

MIT License

6 stars 1 forks source link

User should reenter his PIN code after 2 hours of inactivity #169

Open jonasanker opened 2 years ago

jonasanker commented 2 years ago

When a user has been inactive for X time or the app is restarted, a user should reenter (confirm) his password upon opening the app. E-mail is stored, so only the PIN code should be entered.

jonasanker commented 2 years ago

@TTA777 Any thoughts on this? What is the ideal idle time before a user should reenter his pincode?

Jens-Fastrup commented 2 years ago

Should this be P0?

jonasanker commented 2 years ago

I think there's a security consideration making this a P0 in the ideal case