Description:
The application lacks session timeout functionality, which is essential for ensuring user security and privacy. Without session timeouts, user sessions remain active indefinitely, increasing the risk of unauthorized access and compromising user data.
Steps to Reproduce:
Log in to the application with valid credentials.
Leave the application open and inactive for an extended period of time.
Observe that the application does not log the user out automatically after the specified session duration.
Expected Result:
After a period of user inactivity exceeding the session timeout duration, the application should automatically log the user out to protect their account and data.
Actual Result:
The application does not include session timeout functionality, and users' sessions remain active indefinitely regardless of inactivity.
Description: The application lacks session timeout functionality, which is essential for ensuring user security and privacy. Without session timeouts, user sessions remain active indefinitely, increasing the risk of unauthorized access and compromising user data.
Steps to Reproduce:
Expected Result: After a period of user inactivity exceeding the session timeout duration, the application should automatically log the user out to protect their account and data.
Actual Result: The application does not include session timeout functionality, and users' sessions remain active indefinitely regardless of inactivity.