Something like what we had when the soft-login was made directly against DHIS2 (my guess is that it's around 2 seconds)
Otherwise, if what we previously had was higher than 5 seconds, then use 5 seconds instead.
The idea is that a soft-login waits for the server answer before allowing the user to continue. If a timeout happens then the user is checked against the local copy of the authentication, so they want to limit that to 5 seconds maximum, in order to let them enter the app more quickly
In this order they would prefer:
The idea is that a soft-login waits for the server answer before allowing the user to continue. If a timeout happens then the user is checked against the local copy of the authentication, so they want to limit that to 5 seconds maximum, in order to let them enter the app more quickly