The session time is currently set to 1 day. This is handy for general login needs, but poses a problem for API token management. OKAPI tokens (used in Folio API to fetch realtime holdings data) are cached as part of each browser session. This means that all users accessing the site produce different tokens for the API and that some sessions will hang on to these tokens for too long. This is especially problematic in cases where there is a major FOLIO upgrade and all API tokens are invalidated. With 1 day session time (and token cache) many users will see errors within the first 24 hours of the upgrade. A 3 hour session time seems like a better balance.
The session time is currently set to 1 day. This is handy for general login needs, but poses a problem for API token management. OKAPI tokens (used in Folio API to fetch realtime holdings data) are cached as part of each browser session. This means that all users accessing the site produce different tokens for the API and that some sessions will hang on to these tokens for too long. This is especially problematic in cases where there is a major FOLIO upgrade and all API tokens are invalidated. With 1 day session time (and token cache) many users will see errors within the first 24 hours of the upgrade. A 3 hour session time seems like a better balance.